Security Basics mailing list archives

Re: live monitoring TCP sessions (how to secure NTOP console)

From: Brent Gardner <brent.gardner () gmail com>
Date: Tue, 07 Aug 2007 09:57:05 -0700

sfmailsbm () gmail com wrote:

Talking about NTOP, this tool does not provide an easy way to control access to the console


Access is open to everyone (who knows where and how its installed)


Has someone been able to secure access to NTOP's console?


Thanks to all

Use stunnel with verify=3 (only allows known client certs to connect) toredirect the traffic over an encrypted port. Distribute client certs tothose who need access to the NTOP console. Use firewall rules on theNTOP box to block traffic to the unencrypted NTOP port except from 127.0.0.1



Brent Gardner

Current thread:

Re: live monitoring TCP sessions (how to secure NTOP console) sfmailsbm (Aug 06)
- Re: live monitoring TCP sessions (how to secure NTOP console) Brent Gardner (Aug 07)
- RE: live monitoring TCP sessions (how to secure NTOP console) Maxime Ducharme (Aug 08)