Install PRM



Product Name: PRM ( Process Resource Monitor )
Product Version: 1.0.7 (Aug 14th 2010)
Homepage: http://www.rfxn.com/projects/process-resource-monitor/
Description: RM monitors the process table on a given system and matches process id’s with set resource limits in the config file or per-process based rules. Process id’s that match or exceed the set limits are logged and killed; includes e-mail alerts, kernel logging routine and more…

Step 1: Downloading, Installing PRM

cd /usr/local/src
wget http://www.rfxn.com/downloads/prm-current.tar.gz
tar -zxvf prm-current.tar.gz
cd prm-1.*
./install.sh
rm -Rf /usr/local/src/prm* && cd

Step 2: Configure PRM Config

nano -w /usr/local/prm/conf.prm

Step 2.1: Turn on Email Alerts

Change USR_ALERT="0" to USR_ALERT="1"
Change USR_ADDR="root" to USR_ADDR="your@email.net"

Step 3: Configure PRM.Ignore, Adding users we want ignored fro PRM checks

nano -w /usr/local/prm/ignore_users

Step 3.1: If you installed OSSEC, you should add these users

ossec
ossecm

Infomation:
PRM is set to run every 4 minutes, see /etc/cron.d/prm
PRM log is located at /usr/local/prm/prm_log
PRM Kill Log is located at /usr/local/prm/killed/

Usage:

/usr/local/sbin/prm -s  (Standard run)
/usr/local/sbin/prm -q  (Quiet run)
Comment (RSS)  |  Trackback
  • Stephen Groom

    Great guides, very helpful!

    You have a small typo in this post. The first header is Download LES :)

    Thanks for the great website
    Stephen

    ADMIN EDIT: Fixed, thanks!

  • http://www.facebook.com/people/Tareq-Ahmed-Abed/1786804204 Tareq Ahmed Abed

    NiCe & Done

  • http://www.facebook.com/people/Tareq-Ahmed-Abed/1786804204 Tareq Ahmed Abed

    N!ce