Comments (6)
This helped: https://carteryagemann.com/psad-on-pi.html
But when using psad -H
it still says [-] psadwatchd daemon not running.
from how-to-secure-a-linux-server.
So it looks like you have to set another setting for psadwatchd
to start. I will update the guide.
from how-to-secure-a-linux-server.
This helped: https://carteryagemann.com/psad-on-pi.html
But when usingpsad -H
it still says[-] psadwatchd daemon not running.
in the config file adding (/etc/psad/psad.conf):
ENABLE_PSADWATCHD Y;
and then follow the instructions at https://carteryagemann.com/psad-on-pi.html
worked for me
from how-to-secure-a-linux-server.
Yup. I added the ENABLE_PSADWATCHD
thing to my guide.
from how-to-secure-a-linux-server.
HIi, I'm still having the “psad: psadwatchd is not running on” after I added “ENABLE_PSADWATCHD Y;” and followed the above guide.
I also correctly added this in before.rules
:
# log all traffic so psad can analyze
-A INPUT -j LOG --log-tcp-options --log-prefix "[IPTABLES] "
-A FORWARD -j LOG --log-tcp-options --log-prefix "[IPTABLES] "
However, I still see:
psad --fw-analyze
[+] Parsing INPUT chain rules.
[+] Parsing INPUT chain rules.
[-] Errors found in firewall config.
emailed to root@localhost
[+] Results in /var/log/psad/fw_check
[+] Exiting.
Mail shows:
You may just need to add a default logging rule to the 'filter' 'INPUT' chain on
I'm not good with iptables.
from how-to-secure-a-linux-server.
I'm still having the “psad: psadwatchd is not running on” after I added “ENABLE_PSADWATCHD Y;”
psadwatchd does indeed start and run, but stops running after a few seconds. Is it expected?
psad --fw-analyze
[+] Parsing INPUT chain rules.
[+] Parsing INPUT chain rules.
[-] Errors found in firewall config.
emailed to root@localhost
[+] Results in /var/log/psad/fw_check
[+] Exiting.
This is due to the fact I set IPV6
to no
in /etc/default/ufw
file.
from how-to-secure-a-linux-server.
Related Issues (20)
- Translate into Mandarin HOT 2
- SSH options HOT 2
- psad fails to update signatures HOT 1
- Implementing Post‑quantum Cryptography
- Gmail SMTP: You can no longer use the account's password HOT 2
- exim4 Gmail - TLS connection errors / "Authentication Required" HOT 3
- SSH keypair not able to login with passpharase HOT 1
- Fail2ban fails on fresh Debian12
- Disabling bash history on root account? HOT 3
- HashKnownHosts set to yes HOT 4
- psad missing ufw log setting
- msmtp configuration wrong in multiple ways HOT 2
- NTP for Ubuntu 16.04 and above HOT 3
- Suggestion: Consider switch Fail2Ban with Crowdsec HOT 2
- Version this guide and create tags
- Ubuntu Guide is Unreachable HOT 1
- Suggestion: UFW Firewall for Cloudflare
- Please add Postgres section HOT 2
- Conflicting statements on CIS benchmarks HOT 1
- A dead article. HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from how-to-secure-a-linux-server.