From: OQ <ove...@gm...> - 2005-09-21 13:44:52
|
Cacti has horrible horrible code in it, do *not* use it. It passes variable= s directly to the command line, can you say remote command execution? Cacti did, couple versions back. Their solution, wrap some check_variable($foo) around it. Yea, how long will that last until somebody forgets to check_variable($bar) and you get another remote command execution vulnerability. use munin instead http://www.linpro.no/projects/munin/ On 9/21/05, Les Mikesell <le...@fu...> wrote: > > On Wed, 2005-09-21 at 08:15, Carl Wilhelm Soderstrom wrote: > > > Cacti does look interesting, and perhaps sometime I'll try it out in > > situations where a web-based solution is appropriate. > > Cacti uses snmp so it can monitor routers and managed switches > as well as any host with snmp enabled. If you only want the > local host traffic or can configure your switches to bridge > traffic to a monitoring port, ntop is really nice: > http://www.ntop.org. It will summarize the traffic in a number > of useful ways that are difficult to see otherwise. > > -- > Les Mikesell > le...@fu... > > > > ------------------------------------------------------- > SF.Net email is sponsored by: > Tame your development challenges with Apache's Geronimo App Server. > Download it for free - -and be entered to win a 42" plasma tv or your ver= y > own Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php > _______________________________________________ > BackupPC-users mailing list > Bac...@li... > https://lists.sourceforge.net/lists/listinfo/backuppc-users > http://backuppc.sourceforge.net/ > |