Damn – just had to replace the bloody source file zip for the Nagios book – a lot of the files in the one online seem to have become DOS type files rather than Unix ones. Bloody CRs and other crap all the way through them. I checked my copy and all was fine and then provided a new file to Apress. Most annoying. If you’ve experienced this – then my apologies and go to the Apress site in a couple of days to download a new version.
Archive for May, 2006
Nagios source code file – file formats wrong
May 30th, 2006First review of Nagios book
May 27th, 2006So I got the first review back. 10 outa 10. Very pleased and quite witty review too. *chuffed* 
The Concord Hymn – Ralph Waldo Emerson
May 25th, 2006 By the rude bridge that arched the flood,
Their flag to April’s breeze unfurled;
Here once the embattled farmers stood;
And fired the shot heard round the world.
The foe long since in silence slept;
Alike the conqueror silent sleeps,
And Time the ruined bridge has swept
Down the dark stream that seaward creeps.
On this green bank, by this soft stream,
We place with joy a votive stone,
That memory may their deeds redeem,
When, like our sires, our sons are gone.
O Thou who made those heroes dare
To die, and leave their children free, –
Bid Time and Nature gently spare
The shaft we raised to them and Thee.
Thomas Paine – Common Sense
May 23rd, 2006Society in every state is a blessing, but Government, even in its best state, is but a necessary evil; in its worst state an intolerable one: for when we suffer, or are exposed to the same miseries BY A GOVERNMENT, which we might expect in a country WITHOUT GOVERNMENT, our calamity is heightened by reflecting that we furnish the means by which we suffer. Government, like dress, is the badge of lost innocence; the palaces of kings are built upon the ruins of the bowers of paradise. For were the impulses of conscience clear, uniform and irresistibly obeyed, man would need no other lawgiver; but that not being the case, he finds it necessary to surrender up a part of his property to furnish means for the protection of the rest; and this he is induced to do by the same prudence which in every other case advises him, out of two evils to choose the least. Wherefore, security being the true design and end of government, it unanswerably follows that whatever form thereof appears most likely to ensure it to us, with the least expense and greatest benefit, is preferable to all others.
Excellent script for automatically updating root hints file for Bind
May 20th, 2006I was going to write a script to automatically update the root hints files on my Bind servers. Then I found this excellent script – you will need to modify it to suit your own environment:
#!/bin/sh
#
# Update the nameserver cache information file once per month.
# This is run automatically by a cron entry.
#
# Original by Al Longyear
# Updated for BIND 8 by Nicolai Langfeldt
# Miscelanious error-conditions reported by David A. Ranch
# Ping test suggested by Martin Foster
# named up-test suggested by Erik Bryer.
#
(
echo “To: root
echo “From: system
# Is named up? Check the status of named.
case `rndc status 2>&1` in
*refused*)
echo “named is DOWN. root.hints was NOT updated”
echo
exit 0
;;
esac
PATH=/sbin:/usr/sbin:/bin:/usr/bin:
export PATH
# NOTE: /var/named/master must be writable only by trusted users or this script
# will cause root compromise/denial of service opportunities.
cd /var/named/master 2>/dev/null || {
echo “Subject: Cannot cd to /var/named/master, error $?”
echo
echo “The subject says it all”
exit 1
}
# Are we online? Ping a server at your ISP
case `ping -qnc 1 somehost.net 2>&1` in
*’100% packet loss’*)
echo “Subject: db.cache NOT updated. The network is DOWN.”
echo
echo “The subject says it all”
exit 1
;;
esac
dig @e.root-servers.net . ns >db.cache.new 2> errors
case `cat db.cache.new` in
*NOERROR*)
# It worked
:;;
*)
echo “Subject: The db.cache file update has FAILED.”
echo
echo “The db.cache update has failed”
echo “This is the dig output reported:”
echo
cat db.cache.new errors
exit 1
;;
esac
echo “Subject: The db.cache file has been updated”
echo
echo “The db.cache file has been updated to contain the following
information:”
echo
cat db.cache.new
chown named.named db.cache.new
chmod 444 db.cache.new
rm -f db.cache.old errors
mv db.cache db.cache.old
mv db.cache.new db.cache
rndc reload
echo
echo “The nameserver has been restarted to ensure that the update is complete.”
echo “The previous root.hints file is now called
/var/named/master/db.cache.old.”
) 2>&1 | /usr/lib/sendmail -t
exit 0
Eurovision – like crack for sarcastics
May 19th, 2006Okay I will confess – I’ve never seen Eurovision before – now before RoD slaps me around I have an excuse. Oh wait. No I don’t.
Well being a boring chap I decided to watch it a little before catching the Chaser’s War on Everything. So I watched with some horror as band after band of weird Europeans came and sang – mostly badly. And then – Finland. Now I like Finland – I’ve been there and it’s an ace country – they share my like of alcohol and eating reindeer. But the Finnish entrant. Fascinating costumes – the band completely made up as monsters, demons and what looked like a mummy (of the Egyptian variety not the new parent variety). And the crowning achievement – what appeared to be some kind of animal head attached to the lead singer’s groin. Wow I thought – they are so taking the piss. But no. A little Google later and I discover they are a real band. A real metal band called Lordi or something. But singing some piss-weak pop song. It was absolutely surreal. Now I know why so many people like Eurovision – especially when combined with alcohol – it’s like crack for sarcastic people.
Postfix does Milter
May 17th, 2006Wietse Venema has announced that Postfix 2.3 will have support for Sendmail milter (mail filter) applications. The Postfix 2.3 release will support Sendmail 8 Milter protocols up to version 4 and all requests except message body replacement. I haven’t had a chance to play around with the still beta code yet but the documentation looks most interesting. There are a lot of solid milter apps out there – Domain keys and SPF being the two that immediately spring to mind – that will now hopefully be relatively easy to integrate with Postfix. The suggestion has also been tossed around for a Postfix-Milter integration book. It’s a very interesting idea.
Love Goes Anyway
May 16th, 2006Sitting at my desk trying to write the tail end of an RFI and listening to The Go-Betweens. One of these things I am enjoying. No prize for guessing which.
Are security professionals failing?
May 11th, 2006Noam Eppel at Vivica IS has published a fairly damning indictment of security professionals and what he perceives as our failure to combat security threats. It’s pretty strong reading and I suspect it’ll provoke some powerful responses. At first glance many of his arguments do seem valid. I am not sure however how many of the weaknesses he demonstrates are purely the responsibility or within the ability of most security professionals to fix. Truly getting an edge on the threats out there may well be impossible but if it at all feasible it will require the cooperations of vendors, security professionals, corporations, companies and other organsations but most important – the end user. Security professionals alone cannot be expected to carry the burden as well the banner.
Nagios book selling most well
May 10th, 2006Absolutely thrilled – my new book on Nagios 2.0 is selling extremely well. Haven’t had any reviews yet but the consistently good Amazon sales suggest that it has been a hit. According to the publisher it has also done very well for technical books (via its’ Neilsen BookScan ratings). All in all it is bloody great. According to Amazon 42% of the people who view the book’s page buy it.
I also poked into the Nagios stats for usage today which are housed the Nagios home page and realised a lot more people and organisations used it than I had previously realised. And that is just the ones that reported their use. A lot of corporates also seem to use it without the desire to mention they are Nagios installed. Hopefully the book makes a good contribution to the body of knowledge about how to install and utilise Nagios. Very chuffed.
