Open-AudIT

What's on your network?
It is currently Fri Apr 20, 2018 7:23 am

All times are UTC + 10 hours




Post new topic Reply to topic  [ 51 posts ]  Go to page 1, 2, 3, 4  Next
Author Message
 Post subject: OAv2
PostPosted: Sun Jun 22, 2008 11:31 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
Well - don't hold me to _anything_ I say here :-)

The Dev Team have been discussing "releases" of Open-AudIT, and we concur that a "release" should be forthcoming. However, in the projects current state, a "release" is simply a named version of the current SVN. So nothing really in terms of features, that don't already exist, will be present...... but......

I have been debating with myself for a while on when to give some details about my next project - Open-AudIT v2 (OAv2).

First things first. It's not done, and I have a reasonable amount of coding yet to do.

When will it be done ? I'll regret saying this, but hopefully in a couple of months. Initially, it will probably be suitable only for 'beta' status. OA has a decent and stable codebase, that caters for _many_ different configurations. OAv2 will initially be a subset of the functionality of OA, but with some differences that would not be easily retro-fitted into OA.

It has been on the drawing board for some time, and I have started coding. This is being made all the easier by the fact that I am now employed by a company based in Melboune, Australia called Epoch Labs. The guys there are happy for me to spend time coding OAv2, as they intend on using it in a large production environment. So, many thanks to Epoch. http://www.epochlabs.com.au

There are some major database changes, eg - all items that have an IPAddress are now in a single table called systems. Be they PCs, printers, routers, etc, etc. This is only one example.

There are major changes to the way PHP queries the DB. I am using PDO to abstract the DB. Every page has to check if the "User" is allowed to perform an action, and the query should only return rows that the user is allowed to view, from the correct group(s).

These two items alone make retrofitting into OA a massive task. This is one of the major reasons for OAv2.

Also, OAv2 will be more conservative regarding new features. Code will be checked for consistency and style, before being made available. This will result in a slower and hopefully more stable development cycle. Think RedHat versus Fedora.

*** NOTE *** License. I have not decided on a license for OAv2. I am still biased towards GPL, but I am becoming selfish. Basically, I am happy for everyone to use OAv2 in their business. I am happy for people to mod OAv2 to fit their needs. I am _not_ happy for someone to take my code, repackage it and _sell_ it as a product. If someone wishes to do this, I am happy to talk licensing - but I don't wish to simply give my hard work away for free. Think MySQL. If someone can advise or comment on licensing, please feel free.

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sun Jun 22, 2008 11:31 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
Now, you're reading this says "but what's _in_ OAv2 ?". Well, here is a list the Dev team and Epoch have seen, and are quite happy with. It's not definite, but is quite firm at the moment.

*** Remember *** initially this will work on a reduced subset of information currently retrieved the OA audit script. The goal though, is to store basically the same as what we do now. Some things will be removed - mostly stuff we retrieve, but don't actually display.

Groups - The ability to assign items (systems, printers, 'other' items, software) to 'groups'. An item may be assigned to multiple groups. There is also global "everything" group. Think the printer in the Marketing Dept, also in the Brisbane office. A User has certain defined rights on a per group basis. Groups can be defined as Dynamic or Static. Static groups are simply a list of items, manually selected to be included in the group. Dynamic groups are defined as a database query. This (some examples) "All items on the 192.168.10.x subnet" or "All Windows XP computers", etc.

Users - A user has access levels to groups. Based on the individual access level, a user can view or perform tasks on a group.
Current users levels are:
admin - can do anything (like now).
reduced - can view everything except passwords and software keys. Cannot alter items. Cannot do things in the "Admin" menu. Cannot alter Software Register.
group admin - same as above, but for specific groups.
group reduced - same as above, but for specific groups.

Software Register - as discussed in the forums. Need to make a name, then assign different software titles to it. ie - Office 2000, Outlook 2000 and PowerPoint 2000 under the same "Office" license. Will apply to Croups.

Other Configs - support (at least initial) for retrieving config from Cisco devices. Thinking PIX and routers initially. Should be as simple as Telnet -> dump config -> compare to last config -> if different -> insert config into database and make an alert.

Network Monitoring - This will come after we get the other stuff done. OA is not a monitoring application. Other apps have this space tied up already. It would just be a small addon, a bit of extra value.

Database Neutral - Am using PDO for this. Will support MySQL, Postgres and SQL Server.

Alerts option - All new items and changes go into an "alerts" table. These alerts must be acknowledged. Another option is via email for user defined alert events - disk space low, newly installed program, network monitoring, etc.

Audit script returned results will be (optionally) encrypted and in XML format. PHP - http://devzone.zend.com/node/view/id/1265 GPG - http://www.keesmoerman.nl/encryption.html

Configure Audit Script from Web Interface - Will be able to generate a script for a particular config/group.

Create Workflow - Create pages to create/store/alter audit.vbs configs. Database tables needed for user/passwords for devices.

Monitor Application Config Files - If we find such items as Apache, MySQL, Samba, etc, etc we offer to "monitor" the config files for those apps. It would be linux only, and distro specific (config files in different spots), but we could upload the config file and a hash of the file, and next time we audit that system, check the hash, and if it's changed, upload the new file, and alert whomever.... We might need to monitor files (/etc/samba/smb.conf) and directories (/etc/apache2/sites-available/). Generate PHP report screen highlighting the differences between configs.

Monitor Network - Attach OA Server (or remote device) to a 'mirrored' switch port. Use Linux. Use 'arpwatch' to monitor any 'new' MAC Address appearing on network. Automatically nmap scan the address. Automatically attempt to audit device. Generate Alert.

Automatic network diagram generation - A format exists (basically XML) to allow for this type of diagram. GraphML is it's name, and exporting a diagramm from the OAv2 database will be is very easy. http://www.yworks.com/en/products_yed_about.htm

Pretty Graphs - Use a flash library to generate "pretty" graphs. http://www.maani.us/xml_charts/index.php?menu=Gallery

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sun Jun 22, 2008 11:32 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
Sample audit script output from my Ubuntu 8.04 PC.

Code:
<system>
   <sys>
      <system_uuid>0071867C-B0FE-D511-9653-001BFCB35F16</system_uuid>
      <system_mac_address>00:1b:fc:b3:5f:16</system_mac_address>
      <system_ip_address>192.168.0.7</system_ip_address>
      <system_hostname>ubu804</system_hostname>
      <system_domain></system_domain>
      <system_description></system_description>
      <system_type>system</system_type>
      <system_os>linux</system_os>
      <system_os_short_name>Ubuntu</system_os_short_name>
      <system_os_full_name>Ubuntu 8.04 \n \l</system_os_full_name>
      <system_os_version>2.6.24-17-generic</system_os_version>
      <system_serial>System Serial Number</system_serial>
      <system_model>P5K SE</system_model>
      <system_manufacturer>System manufacturer</system_manufacturer>
      <system_form_factor>desktop</system_form_factor>
      <system_pc_memory>3369548 </system_pc_memory>
      <system_pc_num_processor>2</system_pc_num_processor>
      <system_pc_date_os_installation>2008-04-15</system_pc_date_os_installation>
   </sys>
   <hard_disks>
      <hard_disk>
         <hard_drive_caption>/dev/sdc</hard_drive_caption>
         <hard_drive_index>/dev/sdc</hard_drive_index>
         <hard_drive_interface_type>usb</hard_drive_interface_type>
         <hard_drive_manufacturer>USBDisk</hard_drive_manufacturer>
         <hard_drive_model>RunDisk</hard_drive_model>
         <hard_drive_serial>USBDisk_RunDisk_0705201350510-0:0</hard_drive_serial>
         <hard_drive_size>3916</hard_drive_size>
         <hard_drive_device_id>/org/freedesktop/Hal/devices/storage_serial_USBDisk_RunDisk_0705201350510_0_0</hard_drive_device_id>
      </hard_disk>
      <hard_disk>
         <hard_drive_caption>/dev/sdb</hard_drive_caption>
         <hard_drive_index>/dev/sdb</hard_drive_index>
         <hard_drive_interface_type>scsi</hard_drive_interface_type>
         <hard_drive_manufacturer>ATA</hard_drive_manufacturer>
         <hard_drive_model>WDC WD5000AAKS-0</hard_drive_model>
         <hard_drive_serial>1ATA_WDC_WD5000AAKS-00YGA0_WD-WCAS82735348</hard_drive_serial>
         <hard_drive_size>476940</hard_drive_size>
         <hard_drive_device_id>/org/freedesktop/Hal/devices/storage_serial_1ATA_WDC_WD5000AAKS_00YGA0_WD_WCAS82735348</hard_drive_device_id>
      </hard_disk>
      <hard_disk>
         <hard_drive_caption>/dev/sda</hard_drive_caption>
         <hard_drive_index>/dev/sda</hard_drive_index>
         <hard_drive_interface_type>scsi</hard_drive_interface_type>
         <hard_drive_manufacturer>ATA</hard_drive_manufacturer>
         <hard_drive_model>ST3160811AS</hard_drive_model>
         <hard_drive_serial>1ATA_ST3160811AS_3PT0911J</hard_drive_serial>
         <hard_drive_size>152627</hard_drive_size>
         <hard_drive_device_id>/org/freedesktop/Hal/devices/storage_serial_1ATA_ST3160811AS_3PT0911J</hard_drive_device_id>
      </hard_disk>
   </hard_disks>
   <partitions>
      <partition>
         <hard_drive_index>/dev/sdc</hard_drive_index>
         <partition_mount_point>/media/disk</partition_mount_point>
         <partition_name></partition_name>
         <partition_size>3907</partition_size>
         <partition_free_space>1156</partition_free_space>
         <partition_used_space>2751</partition_used_space>
         <partition_format>vfat</partition_format>
         <partition_caption>/dev/sdc1</partition_caption>
         <partition_device_id>/org/freedesktop/Hal/devices/volume_uuid_14F8_2F56</partition_device_id>
         <partition_disk_index>1</partition_disk_index>
      </partition>
      <partition>
         <hard_drive_index>/dev/sdb</hard_drive_index>
         <partition_mount_point></partition_mount_point>
         <partition_name></partition_name>
         <partition_size>0</partition_size>
         <partition_free_space>0</partition_free_space>
         <partition_used_space>0</partition_used_space>
         <partition_format>ext3</partition_format>
         <partition_caption>/dev/sdb1</partition_caption>
         <partition_device_id>/org/freedesktop/Hal/devices/volume_uuid_50bacd33_015a_41b5_8cd1_efc4d7bac9da</partition_device_id>
         <partition_disk_index>1</partition_disk_index>
      </partition>
      <partition>
         <hard_drive_index>/dev/sda</hard_drive_index>
         <partition_mount_point></partition_mount_point>
         <partition_name></partition_name>
         <partition_size>0</partition_size>
         <partition_free_space>0</partition_free_space>
         <partition_used_space>0</partition_used_space>
         <partition_format>swap</partition_format>
         <partition_caption>/dev/sda5</partition_caption>
         <partition_device_id>/org/freedesktop/Hal/devices/volume_uuid_f7367ac4_b1f9_4183_aea4_ec7f76a06b0b</partition_device_id>
         <partition_disk_index>5</partition_disk_index>
      </partition>
      <partition>
         <hard_drive_index>/dev/sda</hard_drive_index>
         <partition_mount_point></partition_mount_point>
         <partition_name></partition_name>
         <partition_size>0</partition_size>
         <partition_free_space>0</partition_free_space>
         <partition_used_space>0</partition_used_space>
         <partition_format></partition_format>
         <partition_caption>/dev/sda2</partition_caption>
         <partition_device_id>/org/freedesktop/Hal/devices/volume_part2_size_1024</partition_device_id>
         <partition_disk_index>2</partition_disk_index>
      </partition>
      <partition>
         <hard_drive_index>/dev/sda</hard_drive_index>
         <partition_mount_point>/</partition_mount_point>
         <partition_name></partition_name>
         <partition_size>145235</partition_size>
         <partition_free_space>90522</partition_free_space>
         <partition_used_space>47393</partition_used_space>
         <partition_format>ext3</partition_format>
         <partition_caption>/dev/sda1</partition_caption>
         <partition_device_id>/org/freedesktop/Hal/devices/volume_uuid_4fee8b25_22f0_471c_964b_e03c7d7d281c</partition_device_id>
         <partition_disk_index>1</partition_disk_index>
      </partition>
   </partitions>
   <network_cards>
      <network_card>
         <net_mac_address>00:1b:fc:b3:5f:16</net_mac_address>
         <net_description>eth0</net_description>
         <net_manufacturer>Attansic Technology Corp.</net_manufacturer>
         <net_model>L1 Gigabit Ethernet Adapter</net_model>
      </network_card>
      <network_card>
         <net_mac_address>00:08:a1:60:3a:e9</net_mac_address>
         <net_description>wlan0</net_description>
         <net_manufacturer>RaLink</net_manufacturer>
         <net_model>Wireless PCI Adapter RT2400 / RT2460</net_model>
      </network_card>
   </network_cards>
   <addresses>
      <ip_address>
         <net_mac_address>00:1b:fc:b3:5f:16</net_mac_address>
         <ip_address>192.168.0.7</ip_address>
         <ip_address_v6>fe80::21b:fcff:feb3:5f16/64</ip_address_v6>
         <ip_subnet>255.255.255.0</ip_subnet>
      </ip_address>
      <ip_address>
         <net_mac_address>00:08:a1:60:3a:e9</net_mac_address>
         <ip_address>192.168.0.5</ip_address>
         <ip_address_v6>fe80::208:a1ff:fe60:3ae9/64</ip_address_v6>
         <ip_subnet>255.255.255.0</ip_subnet>
      </ip_address>
   </addresses>
   <sound_cards>
      <sound_card>
         <sound_name>HDA Intel Sound Card</sound_name>
         <sound_manufacturer>Intel Corporation</sound_manufacturer>
         <sound_device_id>/org/freedesktop/Hal/devices/pci_8086_293e_sound_card_0</sound_device_id>
      </sound_card>
   </sound_cards>
   <optical_drives>
      <optical_drive>
         <optical_drive_caption></optical_drive_caption>
         <optical_drive_model>DVDRAM GSA-H62N</optical_drive_model>
         <optical_drive_device_id>/org/freedesktop/Hal/devices/storage_model_DVDRAM_GSA_H62N</optical_drive_device_id>
         <optical_drive_mount_point>/dev/scd0</optical_drive_mount_point>
      </optical_drive>
   </optical_drives>
   <video_cards>
      <video_card>
         <video_description>G71 [GeForce 7900 GT/GTO]</video_description>
         <video_manufacturer>nVidia Corporation</video_manufacturer>
      </video_card>
   </video_cards>
   <processors>
      <processor>
         <processor_cores>2</processor_cores>
         <processor_description>Intel(R) Core(TM)2 CPU          4400  @ 2.00GHz</processor_description>
         <processor_speed>2000</processor_speed>
         <processor_manufacturer>GenuineIntel</processor_manufacturer>
      </processor>
   </processors>
   <software>
      <package>
         <software_name>apache2</software_name>
         <software_version>2.2.8-1ubuntu0.2</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>apparmor</software_name>
         <software_version>2.1+1075-0ubuntu9.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>compiz</software_name>
         <software_version>1:0.7.4-0ubuntu7</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>cups-pdf</software_name>
         <software_version>2.4.6-4ubuntu2</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>dbus</software_name>
         <software_version>1.1.20-1ubuntu2</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>dhcp3-client</software_name>
         <software_version>3.0.6.dfsg-1ubuntu9</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>evolution</software_name>
         <software_version>2.22.2-0ubuntu1</software_version>
         <software_publisher>Ubuntu Desktop Team</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-desktop@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>firefox</software_name>
         <software_version>3.0~rc1+nobinonly-0ubuntu0.8.04.1</software_version>
         <software_publisher>Alexander Sack</software_publisher>
         <software_url>http://www.mozilla.com</software_url>
         <software_email>asac@ubuntu.com</software_email>
      </package>
      <package>
         <software_name>firefox-3.0</software_name>
         <software_version>3.0~rc1+nobinonly-0ubuntu0.8.04.1</software_version>
         <software_publisher>Alexander Sack</software_publisher>
         <software_url>http://www.mozilla.com</software_url>
         <software_email>asac@ubuntu.com</software_email>
      </package>
      <package>
         <software_name>gcc</software_name>
         <software_version>4:4.2.3-1ubuntu5</software_version>
         <software_publisher>Ubuntu Core developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>gimp</software_name>
         <software_version>2.4.5-1ubuntu2</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>hal</software_name>
         <software_version>0.5.11~rc2-1ubuntu8.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>inkscape</software_name>
         <software_version>0.46-0ubuntu2</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>libgtk2.0-0</software_name>
         <software_version>2.12.9-3ubuntu4</software_version>
         <software_publisher>Ubuntu Desktop Team</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-desktop@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>libqt4-core</software_name>
         <software_version>4.4.0-1ubuntu5~hardy1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>libxine1</software_name>
         <software_version>1.1.11.1-1ubuntu3</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>module-init-tools</software_name>
         <software_version>3.3-pre11-4ubuntu5</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>mplayer</software_name>
         <software_version>2:1.0~rc2-0ubuntu13+medibuntu1</software_version>
         <software_publisher>Medibuntu Packaging Team</software_publisher>
         <software_url></software_url>
         <software_email>admin@lists.medibuntu.org</software_email>
      </package>
      <package>
         <software_name>mysql-admin</software_name>
         <software_version>5.0~rc12-2ubuntu1</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.mysql.com</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>mysql-client-5.0</software_name>
         <software_version>5.0.51a-3ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.mysql.com</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>mysql-server-5.0</software_name>
         <software_version>5.0.51a-3ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.mysql.com</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>mysql-query-browser</software_name>
         <software_version>5.0~rc12-2ubuntu1</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.mysql.com</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>nautilus</software_name>
         <software_version>1:2.22.3-0ubuntu2</software_version>
         <software_publisher>Ubuntu Desktop Team</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-desktop@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>nmap</software_name>
         <software_version>4.53-3</software_version>
         <software_publisher>LaMont Jones</software_publisher>
         <software_url></software_url>
         <software_email>lamont@debian.org</software_email>
      </package>
      <package>
         <software_name>nvidia-glx-new</software_name>
         <software_version>169.12+2.6.24.12-17.36</software_version>
         <software_publisher>Ubuntu Kernel Team</software_publisher>
         <software_url></software_url>
         <software_email>kernel-team@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>openssh-client</software_name>
         <software_version>1:4.7p1-8ubuntu1.2</software_version>
         <software_publisher>Colin Watson</software_publisher>
         <software_url></software_url>
         <software_email>cjwatson@ubuntu.com</software_email>
      </package>
      <package>
         <software_name>openssh-server</software_name>
         <software_version>1:4.7p1-8ubuntu1.2</software_version>
         <software_publisher>Colin Watson</software_publisher>
         <software_url></software_url>
         <software_email>cjwatson@ubuntu.com</software_email>
      </package>
      <package>
         <software_name>openssl</software_name>
         <software_version>0.9.8g-4ubuntu3.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>perl</software_name>
         <software_version>5.8.8-12</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-cli</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-gd</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-imagick</software_name>
         <software_version>2.0.1-1</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-imap</software_name>
         <software_version>5.2.3-0ubuntu3</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-ldap</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-mysql</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-pgsql</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-snmp</software_name>
         <software_version>5.2.4-2ubuntu5.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-sqlite3</software_name>
         <software_version>0.5-1</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>php5-suhosin</software_name>
         <software_version>0.9.22-1</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.php.net</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>pidgin</software_name>
         <software_version>1:2.4.1-1ubuntu2</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>python</software_name>
         <software_version>2.5.2-0ubuntu1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.python.com</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>samba-common</software_name>
         <software_version>3.0.28a-1ubuntu4</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url>http://www.samba.org</software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>sun-java6-bin</software_name>
         <software_version>6-06-0ubuntu1</software_version>
         <software_publisher>Matthias Klose</software_publisher>
         <software_url></software_url>
         <software_email>doko@ubuntu.com</software_email>
      </package>
      <package>
         <software_name>udev</software_name>
         <software_version>117-8</software_version>
         <software_publisher>Scott James Remnant</software_publisher>
         <software_url></software_url>
         <software_email>scott@ubuntu.com</software_email>
      </package>
      <package>
         <software_name>vlc</software_name>
         <software_version>0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3</software_version>
         <software_publisher>Ubuntu MOTU Developers</software_publisher>
         <software_url>http://www.videolan.com</software_url>
         <software_email>ubuntu-motu@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xinetd</software_name>
         <software_version>1:2.3.14-5</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xorg</software_name>
         <software_version>1:7.3+10ubuntu10.1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xserver-xorg-video-ati</software_name>
         <software_version>1:6.8.0-1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xserver-xorg-video-i810</software_name>
         <software_version>2:1.7.4-0ubuntu7</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xserver-xorg-video-intel</software_name>
         <software_version>2:2.2.1-1ubuntu13.4</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xserver-xorg-video-nv</software_name>
         <software_version>1:2.1.8-1ubuntu1</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xserver-xorg-video-s3</software_name>
         <software_version>1:0.5.0-4</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
      <package>
         <software_name>xserver-xorg-video-vmware</software_name>
         <software_version>1:10.15.2-1ubuntu2</software_version>
         <software_publisher>Ubuntu Core Developers</software_publisher>
         <software_url></software_url>
         <software_email>ubuntu-devel-discuss@lists.ubuntu.com</software_email>
      </package>
   </software>
</system>

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sun Jun 22, 2008 11:41 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
Screenshots of OAv2 (reasonably current).


Attachments:
OAv2_alerts.png
OAv2_alerts.png [ 80.8 KiB | Viewed 16953 times ]
OAv2_group_creation.png
OAv2_group_creation.png [ 93.01 KiB | Viewed 16935 times ]
open-audit_v2.png
open-audit_v2.png [ 113.85 KiB | Viewed 16947 times ]

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.
Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sun Jun 22, 2008 11:41 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
So, what can _you_ do.

Well, I have some pages done, but am very open to finding a better page design. We need something to display lists of items and a single item and it's details. These layouts would cover the vast majoity of pages needed in OAv2. I quite like the colours and layout in Banshee 1.0 (Linux media player). http://primates.ximian.com/~miguel/pict ... -bling.png If you have any ideas on interface design, please don't hesitate to comment.

Licensing advice - see above. Please don't comment unless you _know_ what you are talking about. I am not a lawyer, and don't pretend to be. Please cite references.

Features - do _not_ ask for a ticketing system !!! Other than that, do you have any requests that would change the DB structure ? Users & Groups is the best example of this. Something that you would _really_ like to see in OAv2, that cannot be (easily) added to OA.

I have some "use cases" for different markets, and am attempting to cater to this. If you have any other use cases, please post. Some are:
* System Administrator - As OA does - mainly for the SysAdmin to audit his/her own network.
* System Builder - The local PC store that builds and sells PC. Enable them to keep a record of all built PCs, their config and whom they are sold to.
* Software Supplier - Corporate supplier who needs clients to check if their PCs match certain requirements.
* Outsourced Helpdesk - The helpdesk needs to know details of the clients PC.
* Auditors - That enter a business and require a list of hardware / software that is in use.

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sun Jun 22, 2008 11:47 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
More Screenshots.


Attachments:
OAv2_hardware_02.png
OAv2_hardware_02.png [ 100.71 KiB | Viewed 16941 times ]
OAv2_hardware_01.png
OAv2_hardware_01.png [ 147.68 KiB | Viewed 16926 times ]
OAv2_summary.png
OAv2_summary.png [ 138.92 KiB | Viewed 16897 times ]

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.
Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Mon Jun 23, 2008 3:09 am 
Offline
Helper

Joined: Fri Nov 16, 2007 1:32 am
Posts: 73
Location: Dallas,Texas
Very freaking cool stuff, would love to beta test this all! :)..

Instead of licening, ever think of paypal donations etc?

_________________
1400 Servers Audited (1 hour interval) Applied via a local scheduler, deployed via GPO.
Running OA on IIS6 Web Server
90% Windows 2k3 Server (std,ent)
5% Windows XP
5% Windows 2000


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Tue Jun 24, 2008 1:36 pm 
When he referred to licensing, he did not mean there would be a license to use it. He just wants to restrict the ability of others to sell it. Basically, he does not want others to profit off his work by simply renaming it, etc, and selling it. I can't speak for Mark, but I believe any licensing changes he is looking to implement would not affect 99.9% of OA users.


Top
  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Tue Jun 24, 2008 3:07 pm 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
Thanks Mike - exactly.
and if anyone _does_ know of someone rebranding and distributing or selling Open-AudIT, would they let us know.
Not that I can (or want to) stop it, under the current license - just interested to know. :D

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Thu Jun 26, 2008 5:17 am 
Offline
Newbie

Joined: Wed May 25, 2005 5:11 am
Posts: 49
Location: Toronto, Ontario, Canada
What exciting news! I'm looking forward to OAv2 and to helping in any way I can.

As much as it seems sometimes like reinventing the wheel with each new incarnation I recognize that taking the best ideas of the current project along with the new ideas and applying them to a new project is easier than radically overhauling the old project to try and make everything fit. I have a feeling that the database abstraction and encryption features will be much appreciated by current OA users and no doubt it will make OA that much more popular. Being able to run OA across a number of different OS and database platforms can only increase the use of OA in some corporate environments (i.e. ones that have a standard database platform). I'm really looking forward to the grouping features as well (if I'm not mistaken the dynamic groups will basically perform the along the same lines as ad-hoc queries did in Winventory).

A couple of questions regarding OAv2: I assume that the Linux auditing support will include Debian/Ubuntu but will it include Red Hat support? Is there still a possibility for Mac auditing support as well?

In terms of new features:
To be honest I've never quite understood the aversion to building in a ticketing system as an optional feature (or even as an unsupported user mod). I for one have built my own ticketing system into OA and find it to be very powerful. The combination of a ticketing system with the hardware inventory, and user settings, and LDAP support built into OA is extremely useful and allows for useful statistics too (i.e. how many tickets have been logged by a particular user or for a particular machine?). I see this as the biggest missing feature in OA and one that would be so useful for so many people. If people keep asking for a ticketing system why not consider giving them one? If there is any interest in this feature I would be happy to code it myself or assist anyone who would like it. Yes there are existing inventory systems out there that provide simple ticketing features but typically the ticketing system is not well integrated with the inventory features and often just consists of manually typing in information in text fields (as opposed to drop-down menus etc)....Most of them are too simple, not well designed, or not designed for a helpdesk (bug/issue tracking is not the same as helpdesk ticketing). Believe me, I've looked at just about every open-source ticketing system out there and have not been impressed with any of them.

As far as the interface design goes I really like the look of OAv2 so far. I've never been a fan of the redundant menus that take up room on the side of the OA window so I'm glad to see that they've been relocated to a menubar at the top of the page. Since OA primarily uses listviews to show columns I've always thought that having the menus on the side crowds the page a bit too much (i.e. you can only add so many columns to a view).

Regarding the licensing I can't say that I blame you Mark for wanting to stop someone from taking your hard work and commercializing it for their benefit. I think that the OA forum members and contributors probably feel the same way. If anyone deserves to profit from OA it would certainly be you.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Thu Jun 26, 2008 7:58 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
Hey Kris,

Thank you for the comments.

Will RedHat be supported - definitely. Along with a few other main stream distros (Debian, Suse, Mandriva, et al). If I can support the main distros, the smaller ones shouldn't be too hard - most are based on the larger ones anyway... I only forsee Linux becoming a bigger player, and will be ensuring OAv2 works _well_ with as many distro's as i can.

Mac OS X is also on the list, however, I don't own a Mac (I would _like_ to own one, though). I have the output of the built in System Profiler in XML (I think that's what it's called). Really, it's a very large and complex XML file. If you ask me, (for our needs) it's too large and too complex. Am thinking maybe a "hackintosh" needs to be built, and I go from there..... Unfortunately for Mac users, it comes in third on the list. :-(

Helpdesk / Ticketing...... The reasons I have avoided this in the past, is because it's a _large_ module.... And it can also be quite specific to the organisation. And it needs to be done _right_. Having said that, when OAv2 is finished (well, finished enough), I may look at this. My current employer would get value from it, I suspect, so they may be open to it being incorporated. They plan to use Sugar to track customer issues (I think), but a specific HelpDesk app would obviously have advantages.... Let me get OAv2 "finished" before I worry about HelpDesk. Having said that - I would love to hear more about your solution. I'll start another thread, and ask for comments.

The interface - yeah - I'm over the current one. I am of the same opinion as you. We display mainly lists, and the left side menu is a waste of space.... If you see any interfaces you like, please post them here. Be they client side GUI apps, or web interfaces - I don't care. I am looking for "inspiration"....

The code - yeah well, I have some plans for a paid for supported version. I have 3 or 4 scenarios in my head. Will have to wait and see, but I don't want other people saying "thanks for the hard work, we'll make some money from you".... am getting old, grump and greedy !!! ;-)

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sat Jul 05, 2008 4:44 am 
Offline
Newbie

Joined: Wed May 25, 2005 5:11 am
Posts: 49
Location: Toronto, Ontario, Canada
Thanks Mark! I realize that it is a big task and that it is important that it is done properly. I've thought a lot about it myself and have tried to take the best ideas and interfaces that I have seen in other helpdesk ticketing systems (such as HEAT: http://www.heatitsm.com/). I've posted a few of the ideas that I have in the Helpdesk thread that you started.

A hackintosh is a good idea.. I've thought about building one myself but haven't gotten around to it yet. Perhaps when that gets done I can be of some help with the mac audit script. The System Profiler XML output is all in Apple's plist format which is a bit difficult to parse (however there are options to specify what is outputted so that might help to pare down the size of the XML file). I've seen a Python script where someone has figured out a way to properly parse this XML format so I'll see if I can find it again... perhaps we could use it as a reference.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sat Jul 05, 2008 6:22 am 
Offline
Newbie

Joined: Thu Aug 24, 2006 4:28 am
Posts: 16
I'd be willing to help with Mac OS X auditing. I wrote a basic and messy implementation of it a while ago before I really knew PHP (viewtopic.php?f=9&t=2637) and I'd really like to make a proper version.

system_profiler has a -detailLevel option and I think there's 3 levels. You can also call system_profiler listing all the data types you want to customize it even more. Although, you could always generate an xml file at full detail and just pick and choose what you need audited (that's what I did with my script). I know there's a Perl CPAN module that parses the system_profiler XML output, and like Kris said, this could also be used as a guide. Regardless, it's still XML and PHP has classes for parsing it.

I have a bunch of Macs (10.4 or 10.5) including MacBooks, MacBook Pros, Mac Pros, iMacs, G4s and G5s that I could get profiler output from if needed. The most annoying thing about parsing system_profiler XML is the differences between 10.3, 10.4, and 10.5. They are the same format but some names are just a bit different.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Wed Aug 06, 2008 11:10 am 
Offline
Site Admin
User avatar

Joined: Mon Jun 07, 2004 11:48 am
Posts: 1944
Location: Brisbane, Australia
UPDATE
Apologies, but this is happening slower than I hoped. I have not had as much time as I would have hoped, lately. Having said that, I _am_ making progress. Below is a screenshot showing "groups". You can click on a group, in the left column, and it will display systems from that group only. a system can be in more than one group. It works with User access controls too - ie, you can only see groups you have access to. The "Ubuntu", "Ubu 6.06" and "XP" groups are dynamic. They are continually updated. The smudged group is a static group.

Attachment:
Open-AudITv2 - Groups.png
Open-AudITv2 - Groups.png [ 84.74 KiB | Viewed 15868 times ]

_________________
Support and Development hours available from Opmantek.
Please consider a purchase to help make Open-AudIT better for everyone.


Top
 Profile  
Reply with quote  
 Post subject: Re: OAv2
PostPosted: Sat Sep 20, 2008 12:17 am 
Offline
Helper

Joined: Fri Nov 16, 2007 1:32 am
Posts: 73
Location: Dallas,Texas
Looks very cool. I want to test out the groups functions :)


Any chance at being able to test a beta version soon? ;)

_________________
1400 Servers Audited (1 hour interval) Applied via a local scheduler, deployed via GPO.
Running OA on IIS6 Web Server
90% Windows 2k3 Server (std,ent)
5% Windows XP
5% Windows 2000


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 51 posts ]  Go to page 1, 2, 3, 4  Next

All times are UTC + 10 hours


Who is online

Users browsing this forum: No registered users and 4 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB® Forum Software © phpBB Group