Re: Draft for hosted cgi

[Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Justin Knox wrote:
> Indeed, having apache invoke nmap directly would a bad idea.
>
> Julien, that's a well done description. as far as having a daemon on
> the back-end, why not simply use cron to schedule the scans?

Exactly.

Today, I have a site that you can sign-up to, and lets you specify some http and https resources to
be monitored. The database is updated with your settings, including scan frequency, and a cron job,
based on the scan frequency as main selecting factor, triggers the monitoring system and updates the
database accordingly (so statistics work).

So, I believe that's quite a good approach.

Actually, the cron job is CLI-php based.

- --
Arturo "Buanzo" Busleiman - VPN Mail Project - http://vpnmail.buanzo.com.ar
Consultor en Seguridad Informatica - http://www.buanzo.com.ar
My Linux and Security Blog at http://linux-consulting.buanzo.com.ar/

Romper un sistema de seguridad los acerca tanto a ser hackers como
encender autos puenteando los convierte en ingenieros automotrices.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEddRvAlpOsGhXcE0RAimTAJ4iduLOiuM7kBTOo1tE/z8Imwc/IgCeOuXz
+Pb1NegWlw5chej/VxKh3xU=
=DXK7
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev