Short description of Evidence control system This directory contains the backbone of the control system. Config is the configuration server and needs to run before any other DIM server that requests configuration information is started (if a configuration request cannot be answered, a server will normally not start). A configuration file can be given on the command line. DColl is the central data collector. It subscribes to all services handled by the name server and writes them to disk (except those excluded in the configuration file). It also provides a history service for all DIM services and a command for logging. Alarm can be configured to check all servers for availability and status and can produce a master alarm. The DIMDIR environment variable needs to point to the DIM installation directory when compiling. DIM_DNS_NODE must point to the name server for any DIM server to run. - Oliver Grimm, 18/1/2010 Preliminary firewall settings (rule 9 for DIM, rule 10 for X11 over ssh) Chain INPUT (policy ACCEPT) num target prot opt source destination 1 RH-Firewall-1-INPUT all -- anywhere anywhere Chain FORWARD (policy ACCEPT) num target prot opt source destination 1 RH-Firewall-1-INPUT all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) num target prot opt source destination Chain RH-Firewall-1-INPUT (2 references) num target prot opt source destination 1 ACCEPT icmp -- anywhere anywhere icmp any 2 ACCEPT ipv6-crypt-- anywhere anywhere 3 ACCEPT ipv6-auth-- anywhere anywhere 4 ACCEPT udp -- anywhere 224.0.0.251 udp dpt:5353 5 ACCEPT udp -- anywhere anywhere udp dpt:ipp 6 ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED 7 ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh 8 ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:sieve 9 ACCEPT tcp -- anywhere anywhere state NEW tcp dpts:5100:x11 10 ACCEPT tcp -- anywhere anywhere state NEW tcp dpts:x11:6063 11 REJECT all -- anywhere anywhere reject-with icmp-host-prohibited