Project

General

Profile

Global description

The EGI CSIRT operates several monitoring services that collect various information from the sites and provide an overview of the infrastructure in terms of operational security. Currently two services are in production: the EGI security Nagios box launching security-related probes and system Pakiti evaluating the patching status of the compute resources. Other services may appear in the future.

These monitoring services provide their own interfaces to access results, which is obviously not suitable for routine operations. The goal of the EGI security dashboard will be to aggregate data produced by the EGI security monitoring and provide ways of manipulating with the data. The dashboard will be linked to the EGI information services (namely GOC DB) and other operation tools (ticketing system) so that the EGI security people could have a single interface to view the data and handle them.

Find how and where here : Get Started

Entry points

Contacts

Role Name Email
EGI CSIRT Team mailing-list
Project supervisor Daniel Kouril
Dev. team operations-portal team
Nagios probe Christos Triantafyllidis
Pakiti Michal Prochazka
LDAP service Martin Kuba
Security incident report CSIRT

Bookmarks

CSIRT https://wiki.egi.eu/wiki/EGI_CSIRT:Main_Page
Issue Handling Summary https://wiki.egi.eu/wiki/SVG:Issue_Handling_Summary
Alerts https://wiki.egi.eu/wiki/EGI_CSIRT:Alerts
Operational Security Procedures https://documents.egi.eu/public/ShowDocument?docid=47
REST - Request Tracker Wiki http://requesttracker.wikia.com/wiki/REST
Pakiti https://wiki.egi.eu/wiki/EGI_CSIRT:Monitoring:PakitiDocumentation
Pakiti product http://pakiti.sourceforge.net
Common CVEs http://cve.mitre.org
CVE code definition example https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1494
Nagios https://wiki.egi.eu/wiki/EGI_CSIRT:Monitoring:NagiosInstallationGuide
Nagios states http://nagios.sourceforge.net/docs/3_0/statetypes.html

Glossary

CSIRT Computer Security Incident Response Team
CVE Common vulnerability & exposures
SVG Software vulnerability Group
SSO Single Sign-On

Technical project details