[prev in list] [next in list] [prev in thread] [next in thread] 

List:       debian-user
Subject:    Re: Tying debsecan & Zabbix (or RT) together?
From:       "Richard Hartmann" <richih.mailinglist () gmail ! com>
Date:       2008-12-14 20:21:56
Message-ID: 2d460de70812141221xdd8240et5cf2554f30e84cd1 () mail ! gmail ! com
[Download RAW message or body]

On Sun, Dec 14, 2008 at 20:29, Florian Weimer <fw@deneb.enyo.de> wrote:

> What would be required for Zabbix integration?

Bascially, the zabbix agent would need a plugin/module/script which
it can use to forward data.


>  What kind of data does Zabbix need?

It can collect, and then trigger on, arbitrary data. In this case, it
would probably make sense to collect CVE number, remote/local,
the package in question, the version in question, the severity and
if there is a fix available. If any of this changes (probably only the
availability of a fix or if a fixed package has been installed), it
should send new data.

I will poke the zabbix guys about specifics and get back to you
on this.
I take it you have an interest in this to make centralised host
security management easier?


Richard


-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

[prev in list] [next in list] [prev in thread] [next in thread]