Got rkhunter working for HIDS; operational fixes for Sharingan
This commit is contained in:
33
roles/Sharingan/files/monit/checks/system
Normal file
33
roles/Sharingan/files/monit/checks/system
Normal file
@@ -0,0 +1,33 @@
|
||||
###############################################################################
|
||||
## Services
|
||||
###############################################################################
|
||||
#
|
||||
## Check general system resources such as load average, cpu and memory
|
||||
## usage. Each test specifies a resource, conditions and the action to be
|
||||
## performed should a test fail.
|
||||
check system $HOST
|
||||
if loadavg (1min) per core > 2 for 5 cycles then exec "/etc/monit.d/scripts/critical Load average is high"
|
||||
if memory usage > 75% then exec "/etc/monit.d/scripts/critical Memory is overused."
|
||||
if swap usage > 25% then exec "/etc/monit.d/scripts/critical Swap is overused."
|
||||
group system
|
||||
#
|
||||
## Check filesystem permissions, uid, gid, space usage, inode usage and disk I/O.
|
||||
## Other services, such as databases, may depend on this resource and an automatically
|
||||
## graceful stop may be cascaded to them before the filesystem will become full and data
|
||||
## lost.
|
||||
check filesystem rootfs with path /
|
||||
if space usage > 80% for 5 times within 15 cycles then exec "/etc/monit.d/scripts/critical Root filesystem is too full."
|
||||
if read rate > 500 operations/s for 5 cycles then exec "/etc/monit.d/scripts/critical Too many reads on root filesystem."
|
||||
if write rate > 500 operations/s for 5 cycles then exec "/etc/monit.d/scripts/critical Too many writes on root filesystem."
|
||||
if service time > 50 milliseconds for 3 times within 5 cycles then exec "/etc/monit.d/scripts/critical Root filesystem performing slowly -- check iostat."
|
||||
group system
|
||||
#
|
||||
## Check a network link status (up/down), link capacity changes, saturation
|
||||
## and bandwidth usage.
|
||||
#
|
||||
# check network public with interface eth0
|
||||
# if failed link then alert
|
||||
# if changed link then alert
|
||||
# if saturation > 90% then alert
|
||||
# if download > 10 MB/s then alert
|
||||
# if total uploaded > 1 GB in last hour then alert
|
||||
29
roles/Sharingan/files/monit/checks/vips
Normal file
29
roles/Sharingan/files/monit/checks/vips
Normal file
@@ -0,0 +1,29 @@
|
||||
check program https_aninix with path "/usr/lib/monitoring-plugins/check_http --ssl -H aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical aninix.net not reporting OK"
|
||||
|
||||
check program https_foundation with path "/usr/lib/monitoring-plugins/check_http --ssl -H foundation.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical foundation.aninix.net not reporting OK"
|
||||
|
||||
check program https_geth with path "/usr/lib/monitoring-plugins/check_http --ssl -H geth.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical geth.aninix.net not reporting OK"
|
||||
|
||||
check program https_lykos with path "/usr/lib/monitoring-plugins/check_http --ssl -H lykos.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical lykos.aninix.net not reporting OK"
|
||||
|
||||
check program https_maat with path "/usr/lib/monitoring-plugins/check_http --ssl -H maat.aninix.net -r PASS"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical maat.aninix.net not reporting OK"
|
||||
|
||||
check program https_password with path "/usr/lib/monitoring-plugins/check_http --ssl -H password.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical password.aninix.net not reporting OK"
|
||||
|
||||
check program https_sharingan with path "/usr/lib/monitoring-plugins/check_http --ssl -H sharingan.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical sharingan.aninix.net not reporting OK"
|
||||
|
||||
check program https_singularity with path "/usr/lib/monitoring-plugins/check_http --ssl -H singularity.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical singularity.aninix.net not reporting OK"
|
||||
|
||||
check program https_wolfpack with path "/usr/lib/monitoring-plugins/check_http --ssl -H wolfpack.aninix.net"
|
||||
if status != 0 then exec "/etc/monit.d/scripts/critical wolfpack.aninix.net not reporting OK"
|
||||
|
||||
#check program https_yggdrasil with path "/usr/lib/monitoring-plugins/check_http --ssl -u /web/index.html -H yggdrasil.aninix.net"
|
||||
# if status != 0 then exec "/etc/monit.d/scripts/critical yggdrasil.aninix.net not reporting OK"
|
||||
Reference in New Issue
Block a user