You can only monitor systems that you know!
GLPI is a very successful open source ITSM solution, the project follows a modular approach and can therefore be extended by many very useful plugins. And yes … GLPI is mainly “French” !
In this very short introduction, I’ll will give you a rapid overview how to:
– automate your IT inventory to manage pc’s, servers, vm’s, vmware, …
– add printers and network components via “snmp”
– add special assets like databases, appliances, URL’s, lines, racks, datacenters…
– add additional information’s to all this components
– add people from your LDAP / AD
– add plugins to GLPI
– build reports
– import / export your data
– handle tickets, problems, changes, or projects
In my second presentation “Monitoring @ G&D ” I will later show you how we’ve automated our monitoring with the help of GLPI, some db view’s and python scripts.
OSMC 2019 | NeDi – Why it’s still here by Remo RickliNETWAYS
NeDi is an open source software tool which discovers, maps and inventories your network devices and tracks connected end-nodes. It contains a lot of features in a user-friendly GUI for managing enterprise networks. When the project started around 18 years ago, there was not much else around. With many successful open source projects appearing in the meantime, it’s a different story today. So why is NeDi still alive and kicking?
OSMC 2021 | On the Bleeding Edge of OpenTelemetryNETWAYS
Tracing and telemetry are popular topics right now, but the development is so quick that it also confuses:
– Starting with OpenTracing, then W3C Trace-Context, and now OpenTelemetry there are plenty of standards, but what do or don’t they cover?
– How do the Cloud Native Computing Foundation (CNCF) and its projects like Jaeger play into that.
– Where is OpenTelemetry headed, and how can projects tie into it?
This talk gives an overview of standards, projects, and how they all tie together.
OSMC 2021 | pg_stat_monitor: A cool extension for better database (PostgreSQL...NETWAYS
The pg_stat_monitor is the statistics collection tool based on PostgreSQL’s contrib module pg_stat_statements. PostgreSQL’s pg_stat_statements provides only basic statistics, which is sometimes not enough. The major shortcoming in pg_stat_statements is that it accumulates all the queries and statistics, but does not provide aggregated statistics or histogram information. In this case, a user needs to calculate the aggregate, which is quite expensive. Pg_stat_monitor provides the pre-calculated aggregates. pg_stat_monitor collects and aggregates data on a bucket basis. The size and number of buckets should be configured using GUC (Grand Unified Configuration). The buckets are used to collect the statistics and aggregate them in a bucket. The talk will cover the usage of pg_stat_monitor and how it is better than pg_stat_statements.
OSMC 2021 | Still directing the director… and more!NETWAYS
For the monitoring of our systems, we make extensive use of Icinga, its director, and the business process monitoring module. We also make broad use of automation (at least we try to!). In this talk we would like to tell you how we automated the monitoring of our services using our self-written Ansible collections. We will cover how we developed the Ansible components and how we use them. We’ll also show you what we plan to do with them in the future.
OSMC 2021 | Icinga-Installer – the easy way to your IcingaNETWAYS
This presentation shows you how the Icinga-Installer can be used: ranging from an easy Single-Icinga-Installation with agents to integrating Satellites and using it in HA-Environments.
Nomad is popular as an efficient, lightweight container orchestrator. But a truly efficient, lightweight deployment environment can only be built on a minimal Linux that is designed specifically for running containers.
In this talk, we introduce Flatcar Container Linux to the Hashicorp/Nomad community. Already well known and widely deployed by Kubernetes users, Flatcar works just as well – or perhaps even better! – for Nomad.
Flatcar Container Linux is a secure, immutable, auto-updating, lightweight Linux operating system. This makes Flatcar a perfect match for Linux containers running on Nomad: nodes will update automatically and stay secure in a simple way, without the administrator having to do the heavy lifting.
This talk will explain best practices for deploying Nomad on Flatcar and demonstrate a Nomad cluster running on Flatcar.
OSMC 2019 | NeDi – Why it’s still here by Remo RickliNETWAYS
NeDi is an open source software tool which discovers, maps and inventories your network devices and tracks connected end-nodes. It contains a lot of features in a user-friendly GUI for managing enterprise networks. When the project started around 18 years ago, there was not much else around. With many successful open source projects appearing in the meantime, it’s a different story today. So why is NeDi still alive and kicking?
OSMC 2021 | On the Bleeding Edge of OpenTelemetryNETWAYS
Tracing and telemetry are popular topics right now, but the development is so quick that it also confuses:
– Starting with OpenTracing, then W3C Trace-Context, and now OpenTelemetry there are plenty of standards, but what do or don’t they cover?
– How do the Cloud Native Computing Foundation (CNCF) and its projects like Jaeger play into that.
– Where is OpenTelemetry headed, and how can projects tie into it?
This talk gives an overview of standards, projects, and how they all tie together.
OSMC 2021 | pg_stat_monitor: A cool extension for better database (PostgreSQL...NETWAYS
The pg_stat_monitor is the statistics collection tool based on PostgreSQL’s contrib module pg_stat_statements. PostgreSQL’s pg_stat_statements provides only basic statistics, which is sometimes not enough. The major shortcoming in pg_stat_statements is that it accumulates all the queries and statistics, but does not provide aggregated statistics or histogram information. In this case, a user needs to calculate the aggregate, which is quite expensive. Pg_stat_monitor provides the pre-calculated aggregates. pg_stat_monitor collects and aggregates data on a bucket basis. The size and number of buckets should be configured using GUC (Grand Unified Configuration). The buckets are used to collect the statistics and aggregate them in a bucket. The talk will cover the usage of pg_stat_monitor and how it is better than pg_stat_statements.
OSMC 2021 | Still directing the director… and more!NETWAYS
For the monitoring of our systems, we make extensive use of Icinga, its director, and the business process monitoring module. We also make broad use of automation (at least we try to!). In this talk we would like to tell you how we automated the monitoring of our services using our self-written Ansible collections. We will cover how we developed the Ansible components and how we use them. We’ll also show you what we plan to do with them in the future.
OSMC 2021 | Icinga-Installer – the easy way to your IcingaNETWAYS
This presentation shows you how the Icinga-Installer can be used: ranging from an easy Single-Icinga-Installation with agents to integrating Satellites and using it in HA-Environments.
Nomad is popular as an efficient, lightweight container orchestrator. But a truly efficient, lightweight deployment environment can only be built on a minimal Linux that is designed specifically for running containers.
In this talk, we introduce Flatcar Container Linux to the Hashicorp/Nomad community. Already well known and widely deployed by Kubernetes users, Flatcar works just as well – or perhaps even better! – for Nomad.
Flatcar Container Linux is a secure, immutable, auto-updating, lightweight Linux operating system. This makes Flatcar a perfect match for Linux containers running on Nomad: nodes will update automatically and stay secure in a simple way, without the administrator having to do the heavy lifting.
This talk will explain best practices for deploying Nomad on Flatcar and demonstrate a Nomad cluster running on Flatcar.
Nagios Conference 2014 - Rob Hassing - How To Maintain Over 20 Monitoring App...Nagios
Rob Hassing's presentation on How To Maintain Over 20 Monitoring Appliances.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
Securing Prometheus exporters using HashiCorp VaultBram Vogelaar
Things like Infrastructure as Code, Service Discovery and Config Management can and have helped us to quickly build and rebuild infrastructure but we haven't nearly spend enough time to train our self to review, monitor and respond to outages. Does our platform degrade in a graceful way or what does a high cpu load really mean? What can we learn from level 1 outages to be able to run our platforms more reliably.
This talk will focus on on creating a secure prometheus exporter ecosystem using HashiCorp Vault where we can we be sure that we are not leaking any business metrics from our observability stack. After which we ll investigate how to automatically rotate the certificates we created to do so.
Raymond Kuiper - Working the API like a Unix ProZabbix
Communicating with the Zabbix API can be quite cumbersome, especially if you don't have a background as a programmer. For a sysadmin, it would be very nice if one could just run some CLI commands to control Zabbix behavior.
Wouldn't it be wonderful if you could fetch a list of active triggers and parse it with grep or sed to find the specific triggers you are looking for? Or perhaps you need a list of historic values that you can parse in a custom script? How about a cronjob that downloads and emails all the graphs in the system matching a certain regex?
In this presentation Raymond Kuiper will talk about some of these possibilities and show you how he achieved these things in his Zabbix setup.
Zabbix Conference 2015
Things like Infrastructure as Code, Service Discovery and Config Management can and have helped us to quickly build and rebuild infrastructure but we haven't nearly spend enough time to train our self to review, monitor and respond to outages. Does our platform degrade in a graceful way or what does a high cpu load really mean? What can we learn from level 1 outages to be able to run our platforms more reliably.
We all love infrastructure as code, we automate everything ™. However making sure all of our infrastructure assets are monitored effectively can be slow and resource intensive multi stage process. During this talk we will investigate how we can setup nomad cluster that can automatically scale our infrastructure both horizontally as vertically to be able to cope with increased demand by users/
This talk will focus on making sure we on configuring Nomad and its new autoscaler component to be able to make data driven decisions about scaling nomad jobs in or out to fit current customers usage.
Mike Guthrie - Revamping Your 10 Year Old Nagios InstallationNagios
Mike Guthrie - Revamping Your 10 Year Old Nagios Installation - Mike Merideth from VictorOps talks about the challenges of
sharing responsibility for monitoring in the DevOps world. Learn several strategies for keeping your configuration correct,
consistent, and up-to-date when several people are working on it.
Janice Singh - Writing Custom Nagios Plugins - New to Nagios and wanting to expand its use with your own
custom plugins? This presentation will show you how to write your own plugins and integrate it into Nagios.
VCL template abstraction model and automated deployments to FastlyFastly
Neeraj Mendiratta Sr. Director of Devops, A+E Networks at Fastly Altitude 2016
Hosting hundreds of websites and backend services for multiple environments at the Content Delivery Network level presented a challenge for us at A+E. We solved this problem by applying the DevOps concept of “Infrastructure as Code”. First, a VCL templating framework was created to support a multitude of services and environment agnostic configurations. Then we integrated our CI tool with GitHub and Fastly to make a scalable way of managing our many services. This walkthrough is based on our real-world experiences. We discuss: using the template framework; how to handle the workflow between development, QA, and production environments; and the API calls and integrations necessary for automating deployments to Fastly.
Testing your infrastructure with litmusBram Vogelaar
We have been able to test our puppet modules using rspec-puppet and
serverspec for a while now and the quality of our code is improving because
of it. This talk will introduce the new kid on the block litmus. This talk will show you how
to use litmus to test puppet modules and how to convert your existing modules to make use of litmus.
Nagios Conference 2014 - Mike Merideth - The Art and Zen of Managing Nagios w...Nagios
Mike Merideth's presentation on The Art and Zen of Managing Nagios with Puppet.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
FPV Streaming server system built by Go with ffmpeg.
Receive analog video transmitted by drone, convert it to digital video and streaming to mobile devices.
Product Engineering teams have started to realize the importance of software security. This has resulted in the trend where teams are taking efforts to include it as part of their software development life cycle; as opposed to treating it as another item in their checklist prior to release. However, the real challenge is in trying to find the balance between agility and quality which is where many team find this an uphill task.
While there is no golden standard when it comes to implementing software security, product teams should focus on bringing about systematic and cultural practices within their teams. This should help them to bring about the required efficiency to enable software security as a market differentiator.
This slide-deck on Software Security Initiative focuses on translating a plan of action into sustainable activities as part of the secure software development life cycle that can be adopted by engineering teams. The slides will delve deep into aspects like identifying and designing security checkpoints in the SDLC alongside concepts such as Threat Modelling in Agile, AppSec Toolchain and Security Regressions.
This was presented as a we45 Webinar on April 12, 2018
Aaron Mildenstein - Using Logstash with ZabbixZabbix
Logstash is a terrific tool for capturing, filtering, parsing and enriching data from a number of sources—including logs, of course. But Logstash is also able to capture from many other sources, including social media streams, databases, and many more. Data streams like these are a potential gold mine for Zabbix trending and alerting of all kinds.
In this talk Aaron Mildensten will provide an overview of how to configure and integrate Logstash with Zabbix to:
* capture data
* parse data events into key/value pairs
* associate an event with the time-stamp provided by the data
* generate metrics from the data
* output these values to Zabbix, with the associated time-stamp
Zabbix Conference 2015
Nagios Conference 2014 - Janice Singh - Real World Uses for Nagios APIsNagios
Janice Singh's presentation on Real World Uses for Nagios APIs.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
Slides used at CNCF Paris Meetup 02/15/18.
This covers how we setup Prometheus at Deezer and his architecture. We also give some configuration examples and tweaks.
Talk on Fluentd with introduction on what it is, how it works, and some real life feedback on its usage. This was presented at the Cloud Native Paris Meetup on 15th February 2018 : https://www.meetup.com/Cloud-Native-Computing-Paris/events/247273583/
At G&D we have one ICINGA system specialized in monitoring our complex SAP environment. To keep ICINGA “up to date” the “Config Build” is automated with the help of GLPI.
All technical information’s are collected by GLPI’s “Fusioninventory” plugin, some custom ICINGA fields are added with the “Fields” plugin to our Server- , Database- and SAP Objects.
To build the ICINGA configuration we use various database views (GLPI’s mysql) and some python scripts … but it would be possible to use the “Icinga Director” as well.
Finally, we are informed if the monitoring configuration would change due to system changes detected by GLPI. This means that we can adjust our monitoring fully- or semi-automatically.
InSecure Remote Operations - NullCon 2023 by Yossi SassiYossi Sassi
Every admin tool is an attack tool, yet there are no good or bad shells - that part is up to you. Coming from dozens of engagements consulting various role-based remote operations architectures & Red Team assessments for organizations in 4 continents, with a fresh research hijacking full tokens from network logon-type sessions - we’ll dive into a technical, hands-on set of examples for both Offensive and Defensive teams, of what SUCKS and what ROCKS on the Windows ‘Living off the land’ remote admin operations, Protocols, and APIs. We'll talk about the Pros and Cons of jump server architectures, as well as role-based shells, limiting PowerShell in creative ways. We'll also introduce fresh research to achieve Full Token hijack from network logon-type sessions, without any hash and/or TGT!
Nagios Conference 2014 - Rob Hassing - How To Maintain Over 20 Monitoring App...Nagios
Rob Hassing's presentation on How To Maintain Over 20 Monitoring Appliances.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
Securing Prometheus exporters using HashiCorp VaultBram Vogelaar
Things like Infrastructure as Code, Service Discovery and Config Management can and have helped us to quickly build and rebuild infrastructure but we haven't nearly spend enough time to train our self to review, monitor and respond to outages. Does our platform degrade in a graceful way or what does a high cpu load really mean? What can we learn from level 1 outages to be able to run our platforms more reliably.
This talk will focus on on creating a secure prometheus exporter ecosystem using HashiCorp Vault where we can we be sure that we are not leaking any business metrics from our observability stack. After which we ll investigate how to automatically rotate the certificates we created to do so.
Raymond Kuiper - Working the API like a Unix ProZabbix
Communicating with the Zabbix API can be quite cumbersome, especially if you don't have a background as a programmer. For a sysadmin, it would be very nice if one could just run some CLI commands to control Zabbix behavior.
Wouldn't it be wonderful if you could fetch a list of active triggers and parse it with grep or sed to find the specific triggers you are looking for? Or perhaps you need a list of historic values that you can parse in a custom script? How about a cronjob that downloads and emails all the graphs in the system matching a certain regex?
In this presentation Raymond Kuiper will talk about some of these possibilities and show you how he achieved these things in his Zabbix setup.
Zabbix Conference 2015
Things like Infrastructure as Code, Service Discovery and Config Management can and have helped us to quickly build and rebuild infrastructure but we haven't nearly spend enough time to train our self to review, monitor and respond to outages. Does our platform degrade in a graceful way or what does a high cpu load really mean? What can we learn from level 1 outages to be able to run our platforms more reliably.
We all love infrastructure as code, we automate everything ™. However making sure all of our infrastructure assets are monitored effectively can be slow and resource intensive multi stage process. During this talk we will investigate how we can setup nomad cluster that can automatically scale our infrastructure both horizontally as vertically to be able to cope with increased demand by users/
This talk will focus on making sure we on configuring Nomad and its new autoscaler component to be able to make data driven decisions about scaling nomad jobs in or out to fit current customers usage.
Mike Guthrie - Revamping Your 10 Year Old Nagios InstallationNagios
Mike Guthrie - Revamping Your 10 Year Old Nagios Installation - Mike Merideth from VictorOps talks about the challenges of
sharing responsibility for monitoring in the DevOps world. Learn several strategies for keeping your configuration correct,
consistent, and up-to-date when several people are working on it.
Janice Singh - Writing Custom Nagios Plugins - New to Nagios and wanting to expand its use with your own
custom plugins? This presentation will show you how to write your own plugins and integrate it into Nagios.
VCL template abstraction model and automated deployments to FastlyFastly
Neeraj Mendiratta Sr. Director of Devops, A+E Networks at Fastly Altitude 2016
Hosting hundreds of websites and backend services for multiple environments at the Content Delivery Network level presented a challenge for us at A+E. We solved this problem by applying the DevOps concept of “Infrastructure as Code”. First, a VCL templating framework was created to support a multitude of services and environment agnostic configurations. Then we integrated our CI tool with GitHub and Fastly to make a scalable way of managing our many services. This walkthrough is based on our real-world experiences. We discuss: using the template framework; how to handle the workflow between development, QA, and production environments; and the API calls and integrations necessary for automating deployments to Fastly.
Testing your infrastructure with litmusBram Vogelaar
We have been able to test our puppet modules using rspec-puppet and
serverspec for a while now and the quality of our code is improving because
of it. This talk will introduce the new kid on the block litmus. This talk will show you how
to use litmus to test puppet modules and how to convert your existing modules to make use of litmus.
Nagios Conference 2014 - Mike Merideth - The Art and Zen of Managing Nagios w...Nagios
Mike Merideth's presentation on The Art and Zen of Managing Nagios with Puppet.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
FPV Streaming server system built by Go with ffmpeg.
Receive analog video transmitted by drone, convert it to digital video and streaming to mobile devices.
Product Engineering teams have started to realize the importance of software security. This has resulted in the trend where teams are taking efforts to include it as part of their software development life cycle; as opposed to treating it as another item in their checklist prior to release. However, the real challenge is in trying to find the balance between agility and quality which is where many team find this an uphill task.
While there is no golden standard when it comes to implementing software security, product teams should focus on bringing about systematic and cultural practices within their teams. This should help them to bring about the required efficiency to enable software security as a market differentiator.
This slide-deck on Software Security Initiative focuses on translating a plan of action into sustainable activities as part of the secure software development life cycle that can be adopted by engineering teams. The slides will delve deep into aspects like identifying and designing security checkpoints in the SDLC alongside concepts such as Threat Modelling in Agile, AppSec Toolchain and Security Regressions.
This was presented as a we45 Webinar on April 12, 2018
Aaron Mildenstein - Using Logstash with ZabbixZabbix
Logstash is a terrific tool for capturing, filtering, parsing and enriching data from a number of sources—including logs, of course. But Logstash is also able to capture from many other sources, including social media streams, databases, and many more. Data streams like these are a potential gold mine for Zabbix trending and alerting of all kinds.
In this talk Aaron Mildensten will provide an overview of how to configure and integrate Logstash with Zabbix to:
* capture data
* parse data events into key/value pairs
* associate an event with the time-stamp provided by the data
* generate metrics from the data
* output these values to Zabbix, with the associated time-stamp
Zabbix Conference 2015
Nagios Conference 2014 - Janice Singh - Real World Uses for Nagios APIsNagios
Janice Singh's presentation on Real World Uses for Nagios APIs.
The presentation was given during the Nagios World Conference North America held Oct 13th - Oct 16th, 2014 in Saint Paul, MN. For more information on the conference (including photos and videos), visit: http://go.nagios.com/conference
Slides used at CNCF Paris Meetup 02/15/18.
This covers how we setup Prometheus at Deezer and his architecture. We also give some configuration examples and tweaks.
Talk on Fluentd with introduction on what it is, how it works, and some real life feedback on its usage. This was presented at the Cloud Native Paris Meetup on 15th February 2018 : https://www.meetup.com/Cloud-Native-Computing-Paris/events/247273583/
At G&D we have one ICINGA system specialized in monitoring our complex SAP environment. To keep ICINGA “up to date” the “Config Build” is automated with the help of GLPI.
All technical information’s are collected by GLPI’s “Fusioninventory” plugin, some custom ICINGA fields are added with the “Fields” plugin to our Server- , Database- and SAP Objects.
To build the ICINGA configuration we use various database views (GLPI’s mysql) and some python scripts … but it would be possible to use the “Icinga Director” as well.
Finally, we are informed if the monitoring configuration would change due to system changes detected by GLPI. This means that we can adjust our monitoring fully- or semi-automatically.
InSecure Remote Operations - NullCon 2023 by Yossi SassiYossi Sassi
Every admin tool is an attack tool, yet there are no good or bad shells - that part is up to you. Coming from dozens of engagements consulting various role-based remote operations architectures & Red Team assessments for organizations in 4 continents, with a fresh research hijacking full tokens from network logon-type sessions - we’ll dive into a technical, hands-on set of examples for both Offensive and Defensive teams, of what SUCKS and what ROCKS on the Windows ‘Living off the land’ remote admin operations, Protocols, and APIs. We'll talk about the Pros and Cons of jump server architectures, as well as role-based shells, limiting PowerShell in creative ways. We'll also introduce fresh research to achieve Full Token hijack from network logon-type sessions, without any hash and/or TGT!
Monitoring is an key part of operating and maintaining a cloud environment. In the first part of this talk Alexander shows how CloudStack and the components it depends on can be monitored. In the second part he shows how its possible to build a central monitoring system which can be used by the customers too.
We talked about the Sysdig open source projects (Sysdig and Falco), as well as the Sysdig Container Intelligence Platform, Sysdig Monitor and Sysdig Secure.
BSides London 2015 - Proprietary network protocols - risky business on the wire.Jakub Kałużny
When speed and latency counts, there is no place for standard HTTP/SSL stack and a wise head comes up with a proprietary network protocol. How to deal with embedded software or thick clients using protocols with no documentation at all? Binary TCP connections, unlike anything, impossible to be adapted by a well-known local proxy. Without disassembling the protocol, pentesting the server backend is very limited. However, when you dive inside this traffic and reverse-engineer the communication inside, you are there. Welcome to the world full of own cryptography, revertible hash algorithms and no access control at all.
We would like to present our approach and a short guideline how to reverse engineer proprietary protocols. To demonstrate, we will show you few case-studies, which in our opinion are a quintessence of ""security by obscurity"" - the most interesting examples from real-life financial industry software, which is a particularly risky business regarding security.
New Approaches for Fraud Detection on Apache Kafka and KSQLconfluent
Speakers: Dale Kim, Sr. Director, Products/Solutions, Arcadia Data + Chong Yan, Solutions Architect, Confluent
When it comes to corporate fraud, early detection is integral to mitigating and preventing drastic damage.
Modern streaming data technologies like Apache Kafka® and Confluent KSQL, the streaming SQL engine for Apache Kafka, can help companies catch and detect fraud in real time instead of after the fact. Kafka is ideal for managing fast, incoming data points, and KSQL provides the de facto standard for reading that data. Combine this with Arcadia Data visualizations designed for modern data types, and you have a powerful foundation for combating fraud.
You will learn:
-Why traditional batch-driven approaches to fraud detection are insufficient today
-Why Apache Kafka is widely used for real-time fraud detection
-How KSQL and real-time visualizations open more opportunities for searching for fraud
Denis Zhuchinski Ways of enhancing application securityАліна Шепшелей
In this lecture we will talk about what you should know and consider in the construction of an application developer to ensure the safe use of confidential user data.
OSMC 2011 | Case Study - Icinga at Hyves.nl by Jeffrey LensenNETWAYS
Hyves.nl wird mit fast 3000 Servern betrieben, die alle eine lückenlose Überwachung erfordern. Jeffrey wird darüber reden wie Hyves.nl Puppet anwendet um den kompletten Icinga Cluster automatisch zu konfigurieren und so eine totale Monitoring-Konfiguration zu gewährleisten. Ein weiteres Thema wird die Integration von Icinga in einigen der anderen Tools sein, die mit Hilfe von MK Livestatus und dem Icinga API genutzt werden. Er wird Tools vorstellen, die speziell für Kunden konzipiert wurden um Statusinformationen von Icinga zu überwachen und anzufordern.
Android 5.0 Lollipop brings huge change, compare to before.
This report includes statistics from source code with data and hidden features from source code & git log investigation.
CONFidence 2014: Jakub Kałużny: Shameful secrets of proprietary protocolsPROIDEA
There is a big bunch of tools offering HTTP/SSL traffic interception. However, when it comes to penetration tests of specialized embedded software or thick clients, we often encounter proprietary protocols with no documentation at all. Binary TCP connections, unlike anything, impossible to be adapted by a well-known local proxy. Without disassembling the protocol, pentesting the server backend is very limited. Though, based on our experience, it very often hides a shameful secret - completely unsecured mechanisms breaking all secure coding practices.
To demonstrate, we will show a few case-studies - most interesting examples from real-life industry software, which in our opinion are a quintessence of "security by obscurity". We will challenge the security of proprietary protocols in pull printing solutions, FOREX trading software, remote desktops and home automation technologies.
Unmasking Careto through Memory Forensics (video in description)Andrew Case
My presentation from SecTor 2014 on analyzing the sophisticated Careto malware with memory forensics & Volatility
Video here: http://2014.video.sector.ca/video/110388398
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
PHP Frameworks: I want to break free (IPC Berlin 2024)
OSMC 2021 | ITSM by Asterix and friends
1. SAP Basis Team
Giesecke & Devrient
ITSM by Asterix
and friends
You can only monitor
systems that you know!
2. About:
Name: Karsten Fischer – SAP Basis Team
Company: Giesecke and Devrient (G+D) https://www.gi-de.com/
Areas of technical responsibility for my last 20 years @ G&D:
Firewalls, VPN, Proxys, Routers, Switches, HP-NNM, Identity Management, Oracle, PKI,
Smartcards, Certificates, Kaltura, bigsister, Cacti, Icinga1, CMK, NagioSQL, ELK, Mysql, …. ,
SAP, Icinga2, GLPI, DB2, k8s, …
2
3. About: Giesecke and Devrient
G+D: founded 1852 , +11k employees, revenue € +2.3 billion, HQ Munich
Banknote: Design, Security, Production, Cash Cycle, Cash Automation, …
Digital Payment: Onboarding, Authentication, Mobile & Wearable Payment, …
Payment Cards: Banking and Credit Cards, Card Issuance Services, …
Connectivity: 5G, eSIM, SIM, IoT Security, Connected Cars, Digital Car Key, …
Enterprise Security: Hard- & Software-Based Authentication, Signature Card, …
Health: Card, Health Card Application Management, …
Veridos: Passport, Border Control & Management, National ID, Residence Permit,
Driver's License, Vehicle Registration, ...
Secunet: SINA, EasyPASS
3
4.
5. GLPI – “Gestionnaire Libre de Parc Informatique“
5
• started in 2003 by the INDEPNET association, URL https://glpi-project.org/
• later some “support” companies created around the project
• 2015 TECLIB became “editor” (roadmap, development leadership, core support)
• start as Asset Inventory, later added Assistance, Management, etc …
• many plugins available, see https://plugins.glpi-project.org/
• plugins can be migrated to the core … and some plugins disappeared …
• 2012 the French Prime Minister urged all authorities to use
opensource software whenever possible
74. Come on … why so complicated?
74
Advantages of automated generation via GLPI:
the solution scales
can't forget anything in your Icinga2 configuration
relevant changes on all systems are “immediately” visible
full automation is possible (because GLPI “feeds” Icinga2 with “sys data” )
system administrator has an GUI inside GLPI to change I2 settings
Easy setting of downtimes for entire “landscapes”
.. dependencies become transparent (VM >> ESX >> Switch)
…. and “YOU” (the I2 Admin) can concentrate on more important things
77. Special views and tables added to GLPI
v_info: all basic information’s on servers, network, SAP, etc in one view
v_icinga2_computer: special information’s from fields plugin
v_sap_instances , v_sap_instances_hosts:
v_sap_database , v_sap_db_instances: all special information’s from the
database plugin and fields plugin inside “databases”
v_ip , v_network_interfaces: technical network information’s
info_process: special table with processes extracted from the hosts xml file
tcp_scan: tcp scan results ( glpi host id, IP , tcp port, ssl, certificate, … )
v_icinga2_sap_maintenance: special view to set maininance in icinga
v_docu: all link’s and dokuments for glpi objects like computer, network, etc
77
78. Additional tools to enrich data in GLPI
scanhostmulti.py >> purpose: TCP scan of the host to determine all open TCP
ports and put these in a special GLPI table
xml_to_db.py >> purpose: extra process information’s from xml files in
glpi/files/_plugins/fusioninventory/xml/computer/… on GLPI
server, reason: <PROCESSES> section is ignored during import
further planned personal expansions for fusioninventory:
Link between TCP Port and Process, so what process is “listening” on the
servers TCP port
prozess.ps1 >> purpose: add running processes list to fusioninventory xml on
Windows systems (unfortunately process information's are missing in fi4win )
Transfer of Interesting config settings to an additional GLPI table:
Ansible values, SAP Profile, DB2 settings, mysql config, etc …
78
79. host
script
(py)
-
overview
79
GLPI-DB
table Tabelle Tabelle Tabelle
View
GET GROUPS
GET SERVER LIST
GET USERS
Tabelle
Missing files ?
Redundant files?
Updates?
LOOP SERVER Host Info SQL
EXIT
SQL
Disc Info
Network Info
SQL
SQL
Process Info SQL
CONFIG
FILES
START
80. python scripts and other files to extract the
Icinga config from GLPI
glpi-to-sap-host.py ( 1300 lines only )
Parameter’s -p sap-process , -t sap-tcp , -d sap-disk , -z “Icinga-Parent-Zone”
reads the host table, check for rescan & monitoring = yes and dst file exists
If there are any changes or missing files:
Create complete list of Users / Groups
Loop through this host for:
Info’s: v_info, v_icinga2_computer, v_icinga2_computer_group
Disk: Looping with for computer through glpi_items_disks
IP & Interfaces: looping glpi_ipaddresses, v_ip
Processes: looping through info_process
TCP Ports: looping through tcp_scan
80
81. python scripts and other files to extract the
Icinga config from GLPI
sap-process:
# 1: programm to search
# 2: display name in icinga
# 3: process check string - if field is X it will be ignored
# 4: number of process for warning (X = ignored )
# 5: number of process for critical (X = ignored )
# 6: user (X = ignored )
# 7: mail or sms&mail or ignore M/S/C/I , default is I OR X for Ignore
# 8: hostname filter - starting with string
# 9: variable that will be created when we found this process
Example: %/squid -f%;squid proxy;X; 0:20;0:40;X;M;;SQUID;
81
82. python scripts and other files to extract the
Icinga config from GLPI
sap-disk:
# 1: 1=enabled , 0 = disabled !
# 2: warning - X is host default
# 3: critical - X is host default
# 4: mail or sms&mail or ignore M/S/I , default is Ignore
# 5: pattern , like om1
Example: /db2/.*/log_dir;1;20%;15%;S;p;
82
83. python scripts and other files to extract the
Icinga config from GLPI
sap-tcp:
# 1: portnumer
# 2: display
# 3: warntime # 4: crittime
# 5: ssl # 6: certificatewarndays
# 7: http # 8: httpSearchString
# 9: checkIntervall # 10: retryInterval
# 11: mail or sms&mail or ignore M/S/I , default is Ignore
Example: 4443;https;2;3;Y;30,7;X;X;X;X;S
Example: 5044;logstash beats;2;3;X;X;X;X;X;X;M
83
84. Host Configuration – additional GLPI views
84
View
created
from
standard
GLPI
tables
View
created
from
standard
tables
and
tables
created
by
fields
plugin
95. Database configured – additional views
95
View
created
from
standard
tables
and
database
/
fields
plugin
tables
View
created
from
standard
tables
and
database
plugin
tables
101. SAP Instance configured – additional views
101
View
created
from
standard
tables
and
SAP
/
fields
plugin
tables
View
created
from
standard
tables
and
SAP
plugin
tables
102. SAP Instance in Icinga generated from GLPI – mostly via RFC – RZ20
102