Implement other apps

[flesueur]

Thanks to @flesueur for doing this app.

Originally posted by @anmol26s in #4 (comment)

[flesueur]

Thanks @anmol26s ! What do you mean by "implemented with other apps too" ? If you mean to monitor access to other apps and if you have suggestions/wishes, please post an enhancement request on the main SHSD project : https://github.com/dynamid/shsd/issues

I'll be glad to add it !

[anmol26s]

What do you mean by "implemented with other apps too" ?
Yes as the security breach can happen from other loose points.

I would love to have monitor:
On priority:

1. Metronome (core of yunohost)
2. SSH (core of yunohost)
3. Yunohost web and admin (core of yunohost)

Popular apps:

1. Baikal
2. Nextcloud
3. Wordpress

[flesueur]

Hi,

In fact, sshd and nginx access should be monitored (log scrapers are in https://github.com/dynamid/shsd/tree/master/workers/loggers) . The nginx one should monitor every app proxied by nginx (thus authentified through SSOWat), so webadmin, nextcloud, baikal should probably be ok, right ?

The stock configuration (if working correctly, and that should be checked...) should thus monitor IMAP, SSH and HTTP(S). It does not monitor SMTP yet. Are there other opened services ?

Francois

[flesueur]

Hi,
Do you have any idea of relevant logs to monitor ?
I currently monitor sshd, nginx (so every application proxied by nginx) and dovecot. Any other logs to monitor ?