From b9decf4304d2204173a8d8a706e003cdde2b1bf7 Mon Sep 17 00:00:00 2001 From: Laurent Ghigonis Date: Thu, 29 Nov 2012 10:58:30 +0100 Subject: move glougloud to old --- glougloud/README.txt | 51 --------------------------------------------------- 1 file changed, 51 deletions(-) delete mode 100644 glougloud/README.txt (limited to 'glougloud/README.txt') diff --git a/glougloud/README.txt b/glougloud/README.txt deleted file mode 100644 index 8a8c702..0000000 --- a/glougloud/README.txt +++ /dev/null @@ -1,51 +0,0 @@ -glougloud - glouglou daemon, for network traffic visualisation in real time - - -=== Requirements === - -* libglouglou - -Known to work on OpenBSD 5.1 and Linux 3.4 - - -=== Installation === - -git clone git@meg:glouglou - -sudo useradd -d /var/empty/ -s /sbin/nologin _glougloud - - -=== Usage === - -* Run the daemon - -cd glouglou/glougloud/ -sudo ./glougloud - -It logs to /var/log/glougloud. -For the moment it monitors lo0 interface. - -* Connect to the daemon - -nc -vvv -u 127.0.0.1 4430 |hexdump -C - -You get informations of traffic flowing on the monitored interface. - - -=== Notes on architecture and security === - -glougloud is architectured in 3 processes: - * main process, runs as root, opens the capture interfaces with -libpcap and resolves DNS names - * server process, runs as _glougloud user and chrooted in _glougloud -home, listens and accepts or refuses clients connections - * user process, runs as _glougloud user and chrooted in _glougloud -home, parses the captured network traffic and sends a summary to the -connected clients - -The 3 processes exchanges messages througt messages, with OpenBSD imsg -framework. - -Note that glougloud activates extra protections on pcap capture only -on OpenBSD by reimplementing some of libpcap functions, see -glougloud.c my_pcap_open_live() -- cgit v1.2.3-59-g8ed1b