These are some of the software tools that I have written for use on my own network. These tools are open source, and may be reused or modified as others see fit, according to the license terms defined within the tools themselves:
Cacti Templates
- WBEM/CIM Sensor Readings: This template uses the wbemcli utility to enumerate the instances of the CIM NumericSensors class on a system, capture the readings for each selected sensor, and then graph the resulting data.
- Cisco Router CPU Usage: This template uses SNMP to enumerate the CPUs in a Cisco router, and then graphs the one-minute and five-minute utilization readings for each selected processor.
- Cisco Router Memory Usage: This template uses SNMP to enumerate the memory pools in a Cisco router, and then graphs the current utilization data for each selected pool.
- *NIX/Net-SNMP Memory Usage: This template uses SNMP to capture the available memory utilization data from Linux or UNIX systems running Net-SNMP, massages the data to fill in any blanks and normalize the results, and then graphs the resulting data.
- Win32/SNMP-Informant Memory Usage: This template uses SNMP to capture the available relevant memory utilization data from Windows systems running SNMP Informant, and then graphs the resulting data.
- Everest Ultimate/wmic Sensor Readings: This template uses the wmic utility to enumerate the motherboard and peripheral sensors on a Windows system that is running Everest Ultimate, captures the readings for each selected sensor, and then graphs the resulting data.
- lmSensors/Net-SNMP Sensor Readings: This template uses SNMP to enumerate the available motherboard sensors on a Linux or UNIX host that is running Net-SNMP and lmSensors, captures the readings for each selected sensor, and then graphs the resulting data.
- Supermicro SuperoDoctor Sensor Readings: This template uses SNMP to enumerate the Supermicro sensors from a Windows or Linux host that is running the SuperoDoctor management software, captures the readings for each selected sensor, and then graphs the resulting data.
- IPMI Sensor Readings: This template uses the ipmitool program to enumerate the motherboard sensors on an IPMI-enabled system, captures the readings for each selected sensor, and then graphs the resulting data.
- MBM5/SNMP-Informant Sensor Reading: This template uses SNMP to enumerate the motherboard and peripheral sensors on a Windows host that is running Monitor 5 and the SNMP Informant MBM agent, captures the readings for each selected sensor, and then graphs the resulting data.
- PowerAlert UPS Monitor: This template uses SNMP to enumerate UPS devices on hosts that are running the TrippLite PowerAlert monitoring software, captures the available readings from the devices, and then graphs the resulting data.
- NUT UPS Monitor: This template uses the Network UPS Tools protocol to enumerate the UPS devices on hosts that are running the NUT upsd monitoring software, captures the available readings from the devices, and then graphs the resulting data.
SpamAssassin Plugins and Filters
- LDAPfilter: Mail::SpamAssassin::Plugin::LDAPfilter is a SpamAssassin plugin that uses LDAP to store global blacklist and whitelist data. Incoming messages are checked for various kinds of markers (such as the IP address of the SMTP client, or the message sender's email address), and an LDAP directory is queried for filter entries associated with the domains and/or addresses. If any matches are found, one of four possible whitelist/blacklist attribute values are returned, with a SpamAssassin score assigned accordingly.
- SAGrey: Mail::SpamAssassin::Plugin::SAGrey is a SpamAssassin plugin that provides a limited amount of greylisting functionality using SpamAssassin's auto-whitelisting database.
- stranger_gifts.cf: This ruleset examines incoming messages for various types of MIME attachments, and also checks to see if the sender is already listed in the auto-whitelisting database. If the message contains an attachment and the sender has not been seen before, then it is assumed that the message is either image spam or a virus.
- std_compliance.cf: The Internet email standards define some rules that are often poorly implemented by spammers, or by overworked network administrators whose infrastructure is subsequently abused. This ruleset looks for violations of these rules, and generates increasingly aggressive scores as more compliance problems are discovered.
Other Tools
- EVNTAGENT-MIB.mib: This MIB file provides example SNMP trap definitions for the Windows Eventlog-to-SNMP service. For more information, refer to Trapping Windows Events with SNMP.
Copyright © 2010-2017 Eric A. Hall.