[BlueOnyx:20373] Re: I would love to see this in BO

[Michael Stauber]

Hi Thomas,

> http://my-netdata.io/
> 
> "Monitor everything  Analyze thousands of metrics per server.

Now *that* looks really spicy. \o/

I'm looking at the installation instructions at the moment. There are a
few dependencies that aren't installed on a 5209R by default, but even
without activating EPEL they can all be found in the base repositories.

What I don't exactly like reading is this:

> To access the web site for all graphs, go to:
>
> http://127.0.0.1:19999/

So it runs it's own webserver on a non-standard port. I quickly
installed it and the install itself is simple and seems to work out of
the box.

I reconfigured the service to run on the public IP on port 19999, opened
that port in the servers firewall so that my office IP can access it.
And it worked just as expected and presented me a working netdata UI.

Now here is the catch: How do we protect this motherload of sensitive
information on a "stock" BlueOnyx without installed APF Firewall?

I just tried to proxy the call to /netstat via mod_proxy in AdmServ.
Like we do with the Shellinabox service that got recently added. That
kind of works, but only if we proxy both ways with ProxyPass and
ProxyPassReverse. Which isn't that much of a catch.

So yeah: This can easily be rolled up into a BlueOnyx module and can be
integrated into the GUI. I'll get it done.

Many thanks for the link and the suggestion!

-- 
With best regards

Michael Stauber