Re: server administration

["Gregory A. Gilliss" <ggilliss () netpublishing com>]

Hi Harry,

No, this isn't really the place for this - you want comp.*.sysadmin or
similar.

Having said that, you're going to be disappointed in what snmp will
provide unless you want to start writing MIBs (you don't). So you will
be doing some sort of client/server model maybe with *NIX tools like
vmstat and traceroute and wget. We did something similar in 1998 I
recall.

Try Google for Sysadmin and LISA (Usenix' Sysadmin SIG).

G

On or about 2004.06.21 12:58:37 +0000, harry (Rik.Bobbaers () cc kuleuven ac be) said:

> hi all,
>
> i know this is not really a security thing, so if someone could tell me 
> where the correct place to ask is... i would really appreciate it...
>
> but for the question now (this could be interesting for a lot of people 
> i think):
>
> we have some 100+ servers here, and we would like to make an inventory 
> of all the servers. each server has a service tag etc... all servers 
> have one or more services running on it.
>
> the idea is: we would like everything (config, static information, 
> dynamic info,...) on a central server in a secure intranet.
> the first problem:
> how do you collect the data, how do you store it,what software do you 
> use to get info out of a server (static info as wel as dynamic info).
>                                  ^^^^^^                ^^^^^^^
>                                  a script?               snmp
> second problem:
> what soft can you use for pushing the config to the servers and 
> restarting servers, without having to log in to each one individually 
> (something like rdist?) sshkeys?
>
> all has to be as easy as possible off course ;)
>
> at first i was thinking of a wiki and rdist, but wiki is not the best 
> way to go for documentation i think, and rdist is ... well... old 
> (latest news: 23/10/2001)
>
> anyone some ideas?
>
> ps. for operational status checks, we use nagios, for graphs: cacti
> and sorry for the off-topicness, i really don't know where else to ask
> -- 
> harry
> aka Rik Bobbaers
>
> K.U.Leuven - LUDIT             -=- Tel: +32 485 52 71 50
> Rik.Bobbaers () cc kuleuven ac be -=- http://harry.ulyssis.org
>
> "\x4e\x65\x76\x65\x72\x20\x74\x72\x75\x73\x74\x20\x61\x6e\x20\x6f"
> "\x70\x65\x72\x61\x74\x69\x6e\x67\x20\x73\x79\x73\x74\x65\x6d\x20"
> "\x79\x6f\x75\x20\x64\x6f\x6e\x27\x74\x20\x68\x61\x76\x65\x20\x73"
> "\x6f\x75\x72\x63\x65\x73\x20\x66\x6f\x72\x2e\x0a\x00"
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

-- 
Gregory A. Gilliss, CISSP                              E-mail: greg () gilliss com
Computer Security                             WWW: http://www.gilliss.com/greg/
PGP Key fingerprint 2F 0B 70 AE 5F 8E 71 7A 2D 86 52 BA B7 83 D9 B4 14 0E 8C A3

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html