After installing cacti and using it for quite some time on SuSE 9.1 it was pointed out that users can access certain links without authenticating. It is mainly the graphing area of cacti that is accessible.
I want to stop this and make sure everyone must authenticate. What is the best to "securify" the Cacti installation in terms of file permissions, php and MYSQL?
Cacti and security - file, php and mysql
Moderators: Developers, Moderators
-
rony
- Developer/Forum Admin
- Posts: 6022
- Joined: Mon Nov 17, 2003 6:35 pm
- Location: Michigan, USA
- Contact:
By default, cacti has a guest account that allows public access to the graphs. Disable the guest account and the public access will no longer work.
Next version of cacti will have the guest account disabled by default.
Next version of cacti will have the guest account disabled by default.
[size=117][i][b]Tony Roman[/b][/i][/size]
[size=84][i]Experience is what causes a person to make new mistakes instead of old ones.[/i][/size]
[size=84][i]There are only 3 way to complete a project: Good, Fast or Cheap, pick two.[/i][/size]
[size=84][i]With age comes wisdom, what you choose to do with it determines whether or not you are wise.[/i][/size]
[size=84][i]Experience is what causes a person to make new mistakes instead of old ones.[/i][/size]
[size=84][i]There are only 3 way to complete a project: Good, Fast or Cheap, pick two.[/i][/size]
[size=84][i]With age comes wisdom, what you choose to do with it determines whether or not you are wise.[/i][/size]
Who is online
Users browsing this forum: No registered users and 2 guests