Hello, I am thinking of using PSAD to monitor the server. However when I try to install using yum or via virtualmin nothing is found.

I searched internet and found that I need to install the EPEL repo. However I would like your thoughts before I proceed.

Thanks for your time.

Aswin R \|/

Status: 
Active

Comments

Howdy -- I unfortunately don't know much about PSAD, and don't have any experience with that particular package. So I can't offer specific advice regarding it.

However, since it's coming from a third party repository, you might want to test it out on a test server before installing it on your live server. That said, of all the repos, EPEL packages are the least likely to conflict and cause problems with the ones Virtualmin uses.

Another alternative is to use Webmin's built-in monitoring. You can access that in Webmin -> Other -> System and Server Status.

From there, you can setup monitoring for any number of things on your server.

Thanks as always Andrey.

PSAD is more of an intrusion detection system. It supposedly monitors ports for potential attacks etc.

I will try it out on a test server. \|/

Joe's picture
Submitted by Joe on Sat, 02/07/2015 - 21:33 Pro Licensee

EPEL is great...except the clamav packages are broken from EPEL, so you'd want to make sure to exclude their packages so ours remain in place. Otherwise, I think EPEL is good.

Thanks Joe. However if I have both EPEL and virtualmin repo which repo will yum pick up from? Thanks \|/

I have a more generic question too. What repo should we be using to install packages from? Should we be using only Virtualmin Universal repo and disabling all our other repos? Thanks \|/

Regarding which repos to have enabled -- we suggest not enabling third party repositories, and using all the repositories that are enabled by default. Installing packages from the CentOS repos, and the Virtualmin repo, is well supported and known to work well.

It's normally okay to enable the EPEL repo, though if possible I'd suggest just pulling in the packages you need from it, rather than pulling in all packages from it. If a package is available both in it and in Virtualmin, the one that will be pulled in is difficult to predict. It's related to the package versions, as well as how the dependencies are setup.

Thanks Andrey

\|/