How do I securely perform remote server monitoring?

[audiodef]

I set up a server so that gkrellmd can only be accessed through ssh. I want to turn the necessary lines into a script, like so:

[khayyam]

audiodef ...

if you want passwordless logins then use a (passwordless) key.

best ... khay

[audiodef]

I don't want to compromise whatever security measures I've set up on my server, so I guess a better question is: What is the best way to perform remote server monitoring in a secure way?
_________________
decibel Linux: https://decibellinux.org
Github: https://github.com/Gentoo-Music-and-Audio-Technology
Facebook: https://www.facebook.com/decibellinux
Discord: https://discord.gg/73XV24dNPN

[Syl20]

What do you want to monitor ? Do you want to monitor your system through internet ?
On a LAN, and if you have a little time to setup a server, Nagios (with NRPE), for example, is certainly more appropriate than a set of home-made patches around a localhost-focused tool.

[khayyam]

[audiodef]

I want to monitor general server stuff for now: uptime, cpu load, mem, processes - the stuff you get through gkrellm. It's not on a LAN - it's a remote hosted server.
_________________
decibel Linux: https://decibellinux.org
Github: https://github.com/Gentoo-Music-and-Audio-Technology
Facebook: https://www.facebook.com/decibellinux
Discord: https://discord.gg/73XV24dNPN

[audiodef]

[khayyam]

[krinn]

i'm with khayyam there, first key isn't less secure than a password, i wouldn't claim it's even more secure but that's still what i think.

if you really don't want use password or keys, then use a solution that use none: you could build a file with infos you want from the server and upload it to your computer thru ftp (using an annon access with a fake email as password), this way, you'll get what you want without sharing any key or real password.
you might just send the file by email if you prefer.

[audiodef]

Found a simple way to do what I wanted: emerge tilda, set it to fill up 100% of my screen in the background, no taskbar or pager, just ssh in normally and leave htop running.
_________________
decibel Linux: https://decibellinux.org
Github: https://github.com/Gentoo-Music-and-Audio-Technology
Facebook: https://www.facebook.com/decibellinux
Discord: https://discord.gg/73XV24dNPN

[khayyam]

[dalu]

what would I want to monitor indeed..
when I wanted to write my own

net
/sys/class/net/<ifname>/statistics/
or
/proc/net/dev

cpu
/proc/stat

disk
/proc/diskstats

memory
/proc/meminfo

what else could be monitored?

[audiodef]

[audiodef]

[khayyam]

[audiodef]

Hm, echo $TERM shows xterm at both ends.
_________________
decibel Linux: https://decibellinux.org
Github: https://github.com/Gentoo-Music-and-Audio-Technology
Facebook: https://www.facebook.com/decibellinux
Discord: https://discord.gg/73XV24dNPN

[enZom]

You could look into using a 2048 bit or higher key.

@monitoring
I often run multiple windows of lnav looking at different log files.
For split windows Tmux or if you're @ a desktop terminator works.

The watch command can be helpful too.

[ShaneCar]

Nagios (NRPE) would save you some time setting up the setting up the server. If uptime, cpu load, mem, and processes is what you care about, then that seems like the best option. BigPanda, while not open source, is also an interesting tool. It plugs right into Nagios- https://bigpanda.io/integrations/nagios-the-alternative-to-a-flood-of-alerts- and will sift through all the noise for you, so all you're looking at is high level data thats meaningful. Either way, I think NRPE will save you time and headache.
_________________
Everything Cloud, infrastructure, monitoring, scaling.

[audiodef]

I came across Nagios earlier, and wondered if it would be overkill for one server.
_________________
decibel Linux: https://decibellinux.org
Github: https://github.com/Gentoo-Music-and-Audio-Technology
Facebook: https://www.facebook.com/decibellinux
Discord: https://discord.gg/73XV24dNPN

[Ant P.]

[audiodef]