FAQ Group: vogan
-
Offline License Registration
There are times when you don’t have access to the Internet to register a Linux system, such as an air-gapped network. The following demonstrates how you can register a Linux system without that system having Internet. You will need a system that does have Internet access, such as the one you’re using. You will need…
-
Error Messages Explained – Licensing & Registration
The following are error messages explained. When registering a Linux system with the license server, these are the messages you might receive back. ERROR: Client ID unknown The above: The license number that was used to register the Linux system is not known to the license server. In other words, you’re using the wrong client…
-
vogan Impact to Network Traffic
vogan enforces the rules as set out in the configuration file by manipulating the local firewall to “reject” matching traffic. For example: root@server:~/# ping 8.8.8.8 PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data. From 10.0.0.153 icmp_seq=1 Destination Port Unreachable ping: sendmsg: Operation not permitted From 10.0.0.153 icmp_seq=2 Destination Port Unreachable ping: sendmsg: Operation not permitted
-
Remote Configuration Files for Mandos and Vogan
Both Mandos and Vogan support remote configuration files. For example: include https://webserver.local/mandos.conf An example configuration file for Mandos is: mode permit include https://webserver.local/mandos.conf hash “860ab19122c867d95d31d016e7ffdb3ae5082b5d6a1f4ce5fd050c91338e9b6c” deny hash “f1a12ac21ea441cc7a005076dc931a57098f7b302c4cb387b6d217c87e1f62c0” permit directory “/tmp” deny directory “/bin” permit directory “/sbin” permit directory “/usr/bin” permit directory “/usr/sbin” permit An example configuration file for vogan is: include https://webserver.local/vogan.conf network_addresses=127.0.0.1/8,192.168.0.0/16,172.16.0.0/12,10.0.0.0/8 restricted_groups=root…
-
Licencing Overview
The Cyber-Compliance tools require a license to use. Within the customer portal, you can see your seat allocation. The following points should provide you with the information you need to understand our license model. In order to use the tools, you first purchase seats. Each seat allows you to register one or more tools to…
-
License and Registration
The Cyber-Compliance tools need a license file before use. One license file is used for both vogan and mandos. The following commands demonstrate the registration process: /opt/cyber-compliance/bin/licreq –client <license-key> cp /tmp/license.dat /opt/cyber-compliance/etc/license.dat The tools should be ok to use at this point. If not, an error should present you with a hint as to what…
-
Vogan and Mandos Supported Linux Distributions
Vogan and Mandos have both been tested on the following list of Linux distributions and are confirmed to work as documented. Our tests are based on standard default installations. Remember to test on a non-production system prior to production use. That’s best practice. Ubuntu 24.04 Ubuntu 22.04 Ubuntu 20.04 Rocky Linux 9 (High Compatibility with…
-
Compliance with Vogan
Vogan is all about compliance. We want to help Linux system administrators and their organisations comply with their relevant regulations. Each country and industry has requirements that must be complied with, and Vogan’s primary goal is compliance. The goal is to ensure: “Privileged accounts (excluding those explicitly authorised to access online services) are prevented from…
-
Managing the Vogan Configuration file
On installation, you will see a configuration file located at “/opt/cyber-compliance/etc/vogan.conf”. The following is an example: # Optionally include a remote configuration file. If the remote file cannot be read, # vogan will timeout and continue reading the remaining lines of the local # configuration file. include https://webserver.local/vogan.conf # List the networks or IP addresses…
-
Uninstalling Vogan
The following example commands remove the Vogan package. Remember to backup the license file located at “/opt/cyber-compliance/etc/license.dat”. # Debian/Ubuntu and similar: dpkg -r vogan # Redhat and similar: rpm -e vogan