Monitoring: Set up health tests (icinga) and intrusion prevention (fail2ban)
-
Create a ticket for ICT to set up Icinga probing. Maybe we can look at UFAL to see what aspects they are monitoring
-
Decide whether we also need some intrusion prevention (like fail2ban)
-
http -> https redirect -
https certificate validity >30d -
https chain included in certificate -
min SSL/TLS version (!ssl3,tls1.0) -
?run https://www.ssllabs.com/ssltest/analyze.html?d=clarin-dev.eurac.edu -
!http -> https redirect for /repository/oai -
cite information for entry contains names,etc.+ -
/robots.txt -
/repository/xmlui/htmlmap