| Open-AudIT https://www.open-audit.org/phpBB3/ |
|
| how is audit information transported? https://www.open-audit.org/phpBB3/viewtopic.php?f=5&t=1097 |
Page 2 of 2 |
| Author: | Max [ Thu Jul 27, 2006 8:43 am ] |
| Post subject: | |
[quote="d.l.dave"]I would have thought that you could get the ie submit method to work over ssl without any code changes. The yesxml method may or may not work. But you can increase your chances by making sure the server certificate is signed by a known certificate authority. Remember that this will only stop people from snooping the data that gets sent to the Open-Audit server by your clients. It won't stop people from accessing the Open-Audit site from anywhere else unless you take other precautions. It also won't stop anyone from connecting to the Open-Audit page and submiting whatever random data they feel like. well the idea is to have what ever script (audit.vbs?) run silently in the background and post the goods via https. i understand the app issue, i can firewall things off to where if src adder does not = what i say, deny. these hosts are behind nat gateway and all share 1 adder per site. |
|
| Author: | d.l.dave [ Thu Jul 27, 2006 6:14 pm ] |
| Post subject: | |
Cool. I was hoping you would say all that! |
|
| Author: | A_Hull [ Thu Jul 27, 2006 8:24 pm ] |
| Post subject: | https support |
I added VERY basic https support to Winventory, see the following post http://www.open-audit.org/phpbb2/viewtopic.php?t=974 Once things settle down I will do the same for open-audit, but the method used in this post should work. NOTE: Apache / IIS must support https for this to work. If you use XAMPP or similar it should work as described in the post. |
|
| Author: | Max [ Fri Jul 28, 2006 2:08 am ] |
| Post subject: | Re: https support |
[quote="A_Hull"]I added VERY basic https support to Winventory, see the following post http://www.open-audit.org/phpbb2/viewtopic.php?t=974 Once things settle down I will do the same for open-audit, but the method used in this post should work. NOTE: Apache / IIS must support https for this to work. If you use XAMPP or similar it should work as described in the post. that looks good, dosent look very complicated. thx. i hope to see this a little more refined in the future 
|
|
| Author: | BliarOut [ Wed Nov 29, 2006 6:35 am ] |
| Post subject: | |
Is this implemented in the latest download or do I need to edit my own code? I would like to use Open-Audit to audit remote customer sites as above using a .htaccess to restrict which NAT'd sites can submit to the server and then transmit the data over https: |
|
| Page 2 of 2 | All times are UTC + 10 hours |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|