Hi guys, I have been reading a bit about netdata on another forum. My knowledge on it is limited, however, one thing i do know it does is provides a real time graphical user interface of system performance in a browser. There seems to be some very loud objections to its use on live production servers because of the information it apparently provides relatively easy access to for "unwanted guests/pests" I have a lot of faith in the information i learn from this forum and am interested in some expert advice on whether or not Netdata (and any similar software) is safe to run in a production environment. 1. is it true that "any" prying eyes can see - server users, folders, permissions, routes, resources on URL http://IP-SERVER:19999? 2. Can Netdata be secured so that unwanted eyes don't essentially see everything? 3. How would one go about securing any linux server so that Netdata can be safely used without exposing everything to the world?
Do not run it on the production server. Create a separate server for monitoring and install it there. If that netdata can not monitor remote host, for example zabbix, munin, monit, etc. can. There is tutorial: https://www.howtoforge.com/tutorial/server-monitoring-with-munin-and-monit-on-debian/ Then you can restrict access to that monitor host, for example allow only access from IP-numbers you own.
AHA...Brilliant! I follow that. I was actually thinking about the feasibility of setting up a tunnel until you mentioned this. Thanks I will put this one on the "todo" list
