Security Basics mailing list archives

RE: live monitoring TCP sessions (how to secure NTOP console)

From: "Maxime Ducharme" <mducharme () cybergeneration com>
Date: Wed, 8 Aug 2007 11:48:35 -0400

 

Hello sfmailsbm () gmail com

I suggest using a web server security features.

Look at the bottom of this page :
http://www.ntop.org/UsageNotes.html

"Proxying ntop through Apache" section is a good start,
then use http://httpd.apache.org/docs/ to add more security
to your setup.

I suggest you also use a firewall to protect access to
either Apache proxy or ntop web server itself, if you run
ntop on linux use iptables.

have a nice day

Maxime
www.cybergeneration.com
 

-----Message d'origine-----
De : listbounce () securityfocus com [mailto:listbounce () securityfocus com] De
la part de sfmailsbm () gmail com
Envoyé : 6 août 2007 08:10
À : security-basics () securityfocus com
Objet : Re: live monitoring TCP sessions (how to secure NTOP console)

Talking about NTOP, this tool does not provide an easy way to control access
to the console


Access is open to everyone (who knows where and how its installed)


Has someone been able to secure access to NTOP's console?


Thanks to all

Current thread:

Re: live monitoring TCP sessions (how to secure NTOP console) sfmailsbm (Aug 06)
- Re: live monitoring TCP sessions (how to secure NTOP console) Brent Gardner (Aug 07)
- RE: live monitoring TCP sessions (how to secure NTOP console) Maxime Ducharme (Aug 08)