Exploring Osquery, Kolide’s Fleet and Graylog for Endpoint Visibility

Why? Desire for fleet visibility Visibility on both clients and hosts Ability to be alerted if something changes, but not necessarily enforce There's one of me Easy to stand up Easy to maintain Automation As much as I wish I had time to "dev" it- I just need it to work. This stack There's a… Continue reading Exploring Osquery, Kolide’s Fleet and Graylog for Endpoint Visibility

NEMS – Nagios for your Pi

NEMS or Nagios Enterprise Monitoring Server developed by Robbie Ferguson is a modernized version of NagiosPi. NEMS is a modern pre-configured, customized and ready-to-deploy Nagios Core image designed to run on the Raspberry Pi 3 micro computer. At its core it is a lightweight Debian Stretch deployment optimized for performance, reliability and ease of use. I had used FAN (Fully… Continue reading NEMS – Nagios for your Pi

LinuxFest Northwest

I am super excited to announce be presenting at LinuxFest Northwest May 6th on "Managing macOS, without macOS(almost)" you can read more about the session here. LinuxFest Northwest is an annual OpenSource event held at Bellingham Technical College. What is LinuxFest Northwest? LFNW features presentations and Exhibits on various F/OSS topics, as well as Linux distributions and… Continue reading LinuxFest Northwest

MunkiAdmin sync on “Save”

The idea was to use MunkiAdmin's script features to automatically rsync changes from a management machine to a machine hosting the repo for clients access. My testng case was syncing from a macOS machine to Ubuntu 16.04. This utilizes rsync with psk's, great documentation specifically on check out Digital Ocean's article. The Script The main bread and butter… Continue reading MunkiAdmin sync on “Save”

MacOS, Beats and Graylog. Learning for better logging.

Background Until recently I've had to dump the entire syslog to the syslog server, now trying to  begin using Filebeat collector for macOS  and Graylog Elastic Beats Input Plugin which one can send a specific log or set of logs to a syslog server. How I was doing it: Edit the syslog conf at /etc/syslog.conf *.*    … Continue reading MacOS, Beats and Graylog. Learning for better logging.

Munkireport-PHP on Ubuntu 16.04 w/ SQL

Overview After deciding Docker wasn't a direction I wanted to head infrastructure wise I decided to pursue Ubuntu host... but I also wanted to update the infrastructure, so I decided to pursue an option like this: Ubuntu 16.o4 PHP 7 Non-local SQL I've cited him once and I'll do it again, Clayton Burlison has a great… Continue reading Munkireport-PHP on Ubuntu 16.04 w/ SQL