Event Notification with PERL and SSL/TLS

Hi Joe,

 

 

thank you for the fast answer!

 

 

So, eventd is the one that sends the Events to my Perl Listener? If so, I will try to debug that process, as shown in your post.

 

 

I've done more tests and it seems to be TLSv1. SSLv2/v3 seems to be O.K. Probably it's a problem with both my perl script (IO Library) as it crashes sometimes when TLSv1 is used (mybe due to the data coming from eventd). eventd also seems to lock up after I use TLSv1 on the client. I see no further TCP packets to my listener port after that, unless I remove the subscription and create a new one. I will try to debug eventd and report back. Can you please check how eventd handles TLSv1?

 

 

 

Regarding the username. Is there any way to get the name of the user who changed the config? Audit logging provides that information, so it must be available somewhere. However, the audit log is written by httpd, which obviously knows the user name. Maybe you could scan /var/log/audit within eventd (similar to alertd) and create Events for any audit log entry ;-))

 

 

Any idea how I can solve my problem, i.e. implement my own "audit/config change" tracker that also includes the user name?

 

 

Thank you!

 

 

Regards

 

Kurt