OpenBCM V2.0.3 (Linux)

Packet Radio Mailbox

IZ3LSV

[San Dona' di P. JN]

 Login: GUEST





  
I0OJJ  > SYSOP    24.06.26 07:09l 220 Lines 7370 Bytes #999 (0) @ WW
BID : A5PUA_I0OJJ
Read: GUEST
Subj: [sysops] DXAudit - Improving Security and Operational Quality Across the Networ
Path: IZ3LSV<I0OJJ
Sent: 260618/1123z @:I0OJJ.ITA.EU [Rome] $:A5PUA_I0OJJ

>From i0ojj@i0ojj.ampr.org Thu Jun 18 13:23:01 2026
Received: from [44.134.109.10] by i0ojj.ampr.org (JNOS2.0q.1) with SMTP
	id AA17062930 ; Thu, 18 Jun 2026 13:23:01 +0200
Message-ID: <53f5bf78-5162-4480-801d-87b60108e9c2@i0ojj.ampr.org>
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
References: <19ed9bab561.141c0d932216392.113870066427421866@cronux.net>
Content-Language: en-US, it
>From: Gustavo Ponza <i0ojj@i0ojj.ampr.org>
Organization: SICD Rome
In-Reply-To: <19ed9bab561.141c0d932216392.113870066427421866@cronux.net>
X-Forwarded-Message-Id: <19ed9bab561.141c0d932216392.113870066427421866@cronux.net>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit

As per your knowledge.


DXAudit - Improving Security and Operational Quality Across the Network

-------- Forwarded Message --------
Subject: 	[sysops] DXAudit - Improving Security and Operational Quality 
Across the Network
Date: 	Thu, 18 Jun 2026 09:55:52 +0200
From: 	EA3CV Kin via sysops <sysops@dxcluster.info>
Reply-To: 	EA3CV Kin <ea3cv@cronux.net>
To: 	sysops <sysops@dxcluster.info>



Hi all,

This message is aimed particularly at DXSpider node administrators who 
may not regularly follow the official DXSpider mailing list and 
therefore might not be aware of some of the improvements introduced in 
recent years within the Mojo branch of DXSpider.

For those wishing to stay informed about official DXSpider development 
and support, the recommended mailing list is:
dxspider-support@dxcluster.org <mailto:dxspider-support@dxcluster.org>

If you are already following this list, some of the information below 
may be familiar to you.

Over the past few weeks, a new initiative called DXAudit has been 
developed with the goal of helping sysops verify their node 
configuration, improve network security, and encourage adoption of the 
latest DXSpider features and best practices.

The platform is available at:
http://dxcluster.cronux.net:9090/ <http://dxcluster.cronux.net:9090/>

DXAudit analyses several aspects of node configuration and operation and 
generates a Network Trust Score, providing an easy way to identify 
potential improvements.

Among other things, DXAudit evaluates:

* User and partner configuration.
* Password and registration policies.
* Sender Verify status.
* Network and protocol checks.
* IPv4 and IPv6 alias configuration.
* LAN and localhost configuration.
* Software versions and available features.
* General operational best practices.

The objective is not to rank or penalize anyone, but rather to provide 
useful information that helps improve the overall quality, reliability 
and security of the network.

At present, DXAudit focuses primarily on DXSpider nodes. We would have 
liked to extend support to other cluster software packages, but most of 
them are closed systems and do not provide sufficient information to 
perform equivalent security and configuration checks.

However, some of these programs support at least part of the PC92 
protocol. Even a partial PC92 implementation provides valuable 
information and significantly improves visibility of the network 
topology and interconnections.

## PRIVACY AND COLLECTED DATA

DXAudit does NOT collect personal information, user data, or sensitive 
operating system information.

The audit only gathers technical information related to DXSpider 
configuration and operation that is necessary to evaluate security, 
interoperability and compliance with recommended best practices.

Examples of information collected include:

* Security-related configuration indicators.
* Sender Verify status.
* Registration and password configuration.
* Neighbour and partner information.
* Protocol compliance indicators.
* IPv4 and IPv6 alias configuration.
* Localhost name configuration.
* DXSpider version and build information.
* General node operational information.

DXAudit does NOT collect:

* Passwords.
* Private keys.
* Database contents.
* Private messages.
* Connected user information.
* User IP addresses.
* Operating system files.
* Personal information about the sysop.
* Any data unrelated to DXSpider.

The audit report contains only the technical information required to 
assess the node and calculate the displayed trust score.

All audit-related source code is publicly available and may be reviewed 
by any sysop before installation or execution.

## COMPATIBILITY REQUIREMENTS

DXAudit is designed to work with recent versions of the DXSpider Mojo 
branch (633/634).
Older versions, especially those based on the deprecated Master branch, 
may not support all the functionality required by the audit process.
For this reason, upgrading to a recent Mojo build is strongly 
recommended before participating.
To simplify installation and maintenance, automated installation and 
update scripts are available:

New DXSpider installation:

https://github.com/EA3CV/dxspider_update/blob/main/install_dxspider.sh 
<https://github.com/EA3CV/dxspider_update/blob/main/install_dxspider.sh>

Update an existing installation:

https://github.com/EA3CV/dxspider_update/blob/main/update_dxspider.sh 
<https://github.com/EA3CV/dxspider_update/blob/main/update_dxspider.sh>

## HOW TO JOIN DXAUDIT

The following procedure has been tested on standard DXSpider installations.

1. Create the required directory for update_ip.pl if it does not already 
exist:

mkdir -p /spider/local_cmd/set

2. Download audit.pl:

cd /spider/local_cmd
wget -O audit.pl 
https://raw.githubusercontent.com/EA3CV/dxspider_info/main/audit.pl 
<https://raw.githubusercontent.com/EA3CV/dxspider_info/main/audit.pl>
chmod 644 audit.pl

3. Download update_ip.pl:

cd /spider/local_cmd/set
wget -O update_ip.pl 
https://raw.githubusercontent.com/EA3CV/dxspider_info/main/set/update_ip.pl 
<https://raw.githubusercontent.com/EA3CV/dxspider_info/main/set/update_ip.pl>
chmod 644 update_ip.pl

4. Load the new command from the DXSpider console:

load/cmd

5. Automatically update IP-related configuration:

set/update_ip

6. Generate and submit the audit report:

audit send

If successful, a confirmation message will be displayed.
The node will then automatically appear on:

http://dxcluster.cronux.net:9090/ <http://dxcluster.cronux.net:9090/>

## OPTIONAL LOCAL VERIFICATION

Before submitting the audit report, you may review the generated 
information locally by running:

audit

This displays the complete audit report without sending anything to the 
server.

## WHY PARTICIPATE?

* Verify that your configuration follows current recommendations.
* Detect potential security issues.
* Take advantage of newer DXSpider functionality.
* Improve the overall quality of the network.
* Obtain an objective assessment of your node's configuration.
* Help identify common areas for improvement across the DXSpider community.

The more nodes that participate, the more useful and representative the 
collected information becomes for everyone.
If you encounter any issues during installation or execution of the 
audit tools, please do not hesitate to get in touch.

Feedback, testing results, and suggestions are always welcome, 
especially from sysops running different Linux distributions and 
DXSpider versions.

73 de Kin EA3CV


http://dxcluster.cronux.net:9090/ <http://dxcluster.cronux.net:9090/>
https://clustermap.cronux.net/map.html 
<https://clustermap.cronux.net/map.html>




Read previous mail | Read next mail

 24.06.2026 13:18:44lGo back Go up