StackStorm: Ghost2logger Pack
Coinciding (roughly) with the version 2.2 release of StackStorm, the Ghost2logger pack has been released.
This pack provides in essence a “Syslog sensor” that provides the user a tuple match on a Syslog entry, tuples in this case being:
- Syslog Message (Actual syslog message)
MANDATORY AND - Syslog Source (IPv4 address)
The actions can then be anything you so desire, either triggering a sinlge action or full blown workflow with Mistral or Cloudslang.
Getting Started
In terms of using the pack, all that is required from the user is the creation of rules and pointing your syslog source to the Ghost2logger location. Most of the time Ghost2logger will live on the same install as StackStorm, so point it at the IP address StackStorm resides. Worried abut StackStorm load? Don’t be. Syslogs aren’t actually processed by StackStorm, but are processed by the Ghost2logger binary. Only matched entries dispatch triggers. There is some inception going on here. Prepare yourself for this: “Rules will only match what the rules have created the match conditions for”. If you understand this hypothesis correctly, you will understand that this is simple feedback from the rules base back to Ghost2logger.
The pack itself consists of a number Continue reading
IoT Security Anti-Patterns
From security cameras to traffic lights, an increasing amount of appliances we interact with on a daily basis are internet connected. A device can be considered IoT-enabled when the functionality offered by its Embedded System is exposed through an internet connected API.
Internet-of-Things technologies inherit many attack vectors that appear in other internet connected devices, however low-powered hardware-centric nature of embedded systems presents them with unique security threats. Engineers building Internet-of-Things devices must take additional precautions to ensure they do not implement security anti-patterns when addressing new problems, this blog post will investigate four such anti-patterns that have been used by real Internet-of-Things devices.
Atmel ATMEGA8 Microcontroller Wikimedia Commons - CC BY-SA 3.0
HTTP Pub/Sub
Every time your IoT-enabled alarm clock sounds, you may want it to tell your coffee machine to brew some coffee. In order to do this, your coffee machine may subscribe to messages published by your alarm clock. One such way of doing this is to implement the Publish/Subscribe Pattern within the API of the IoT devices, for this example let's assume our alarm clock and coffee machine communicate through HTTP.
In order to subscribe to messages from the alarm clock, the coffee machine sends Continue reading
Using the Collaborative Security Approach to Address Internet of Things Security Challenges
Two years ago, our “Collaborative Security Approach” proposed a way of tackling Internet security issues based on the fundamental properties of the Internet and the voluntary cooperation and collaboration that’s been prominent throughout the Internet's history. In this post, let us look at each of the five key Collaborative Security characteristics as they apply to security of the Internet of Things (IoT).
Andrei Robachevsky
Network Automation with Python: Getting Started
Learn about basic network automation concepts using Python in this tutorial.
What is VxRail?
One of my readers was considering Dell/EMC hyperconverged solutions and sent me this question:
Just wondering if you have a chance to check out VxRail.
I read the data sheet and spec sheet, but have never seen anyone using it (any real-life experience highly welcome – please write a comment).
Read more ...Learning Python: Week2 (Printing, Numbers, and Lists) -Part 2
As discussed in last post ( https://crazyrouters.wordpress.com/2017/02/25/learning-python-kirk-byers-python-course/ ) , i will be sharing the my learning on weekly basis as course continues. This will not only motivate me but also help others who are in phase of learning python 3. Now its time to go for the exercise , already shared the notes related to […]