Open-AudIT
https://www.open-audit.org/phpBB3/

Trouble with SSL: Can't use "Audit Now"
https://www.open-audit.org/phpBB3/viewtopic.php?f=8&t=3067
Page 1 of 1

Author:  Slyers [ Thu Nov 13, 2008 9:13 pm ]
Post subject:  Trouble with SSL: Can't use "Audit Now"

Hello,

I realize differents trys with Open Audit in order to use it in my company.
This morning, i tried to use Ldap for Open-Audit login, it works, it's good.
But, i just wanna say it's very unsecure to use it.
Indeed, when i've launched Wireshark to look frames, I've seen my login and password which was unencrypted.
That means if someone listens my network frames, he could kept my admin_account...
As far as I'm concerned, security is the most important element to take into account on my network.
Have you got solution(s) to remedy this?

Thanks.
(I'm sorry for my english I try to improve it :wink: )

Author:  ef [ Thu Nov 13, 2008 10:00 pm ]
Post subject:  Re: LDAP login for Open Audit: Unsecure...

You can enable https on your web server and https login on OA, so the traffic between your workstation and the OA server would be encrypted.
Still, credentials would be passed in clear text from the OA server to the LDAP server, but assuming that your servers are in a phisically secured area (datacenter, same LAN switch with no sniffing probes connected), IMO you could have a sufficient level of security...

Author:  NickBrown [ Fri Nov 14, 2008 12:47 am ]
Post subject:  Re: LDAP login for Open Audit: Unsecure...

Following up from ef's response, this is a known issue. The solution is simple in principle: use LDAP over SSL. However, in practice there are a number of hurdles:

- The most common LDAP directory is AD which by default isn't configured for LDAP over SSL
- The standard PHP distributions do not support LDAP over SSL functionality

If this is a real concern you could use Open Audit authentication instead of LDAP.

Author:  Slyers [ Mon Nov 17, 2008 10:31 pm ]
Post subject:  Trouble with SSL: Can't use "Audit Now"

Hello,
Thanks for the answers,
Finally, I enable https (SSL) on my web server, but I have a new problem...
Indeed, I can't use "Audit now" because a message said "A security problem appeared" (maybe the english translation is not exact because it's in french for me :wink: )
The Message box says trouble is at line 108 of "open-audit-of-...-to-...-from... .vbs" (it is the script which is temporarly executed on audited machine)
I've modified audit.conf + audit.vbs in order to put "https", but it's the same thing...

Is there someone who can resolve this trouble?
Thanks.

Author:  Slyers [ Sat Jan 17, 2009 12:39 am ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

No one has the same problem???

Author:  A_Hull [ Sat Jan 17, 2009 3:10 am ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

Try the latest SVN (1120) at time of writing. See if the issue has gone.

Author:  Slyers [ Thu Jan 22, 2009 6:07 pm ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

[quote="A_Hull"]Try the latest SVN (1120) at time of writing.

Thanks for your answer...
I'm really sorry but can you tell me how i can use the latest SVN (is it something to download?) :?
Can you give me more information about this?
I've posted in other place (viewtopic.php?f=10&t=3123&hilit=) in order to know how i can upgrade my Open-Audit version, is there a connection with this?
I want to specify that I work under Linux Debian Etch...

Thanks.

Author:  A_Hull [ Thu Jan 22, 2009 6:51 pm ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

This FAQ should point you in the right direction.
[url]http://www.open-audit.org/phpBB3/viewtopic.php?f=6&t=1430[/url]
If not, let us know. :D

Author:  Slyers [ Mon Mar 02, 2009 11:45 pm ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

Hi,
I work under Debian Etch, i've download the subversion packet.
But when i realise: "svn-checkout https://open-audit.svn.sourceforge.net/ ... open-audit"
The first time i've seen a list of file and since this, console says only "Revision 1134 exctracted" (i've translate it to english)
Can you say me more about this?

Thanks;

Author:  Ben [ Fri Apr 17, 2009 10:38 am ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

Seems the option to audit now has also stopped working for me now that SSL has been implemented. The issue I feel might be related to IE security configuration?

Author:  leizz [ Tue Mar 29, 2011 9:30 pm ]
Post subject:  Re: Trouble with SSL: Can't use "Audit Now"

Hi guys!

What about this issue: when https is enabled & "Audit my machine" is not working? I guess there are some problem sending data back to OA server. It gave me error on line 163 which is "http.send" on audit.vbs.

Also I changed manually in OA server URL some http --> https in audit.vbs but still, same error. Cant find any help from forum :(

Thank You,
leizz

Page 1 of 1 All times are UTC + 10 hours
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/