Commented Glastopf configuration file¶

Server section¶

The first part is the server core configuration:
(You have to start the Glastopf as root/administrator if you want to listen on port 80.)

[server]
# Glastopf IP address
ip: 127.0.0.1
# Glastopf Port. Port 80 is only available for root user
port: 80

If the number of simultaneous threads exceeds this number Glastopf stops accepting new requests.

# Maximum number of simultaneous threads
maxthreads: 42

After startup Glastopf drops all rights and runs with the here given user/group permissions (Linux only).

# Run Glastopf as user (Linux only)
user: nobody
# Run Glastopf with group permissions from (Linux only)
group: nogroup

Plug-in section¶

All here listed plug-ins will be loaded on Glastopf startup.

[plugins]
# Data handling plugins comma separated (surfids.py,mysql.py,dbclient.py,fileurl.py)
dataplugins: 

MySQL section¶

To use the MySQL database you have to load the mysql.py plug-in.

[mysql]
# MySQL server IP
host: 
# MySQL server port (default 3306)
port: 3306
# MySQL username
user: 
# MySQL password
pass: 
# MySQL database
db: 

Miscellaneous section¶

I you want to use the custom pages feature use this switch. For further information please read CustomPages.

[misc]
# Display custom pages for defined requests (True or False)
custompage: False

If RIPE blacklists you due too many requests this is the option to change.

# Whois server. You could be blacklisted by ripe
whoisserver: whois.ripe.net

If you need whois information turn this on.

# Domain whois lookup. Linux only and needs whois installed (True or False)
domainwhois: False

If you are interested in the MNT-BY information from attacker and vistim, turn this on.

# IP whois lookup to get MNT-BY information. (True or False)
ip_whois: False

For the previous parser (vulnerability emulator) choose "old".

# Select parser version (new or old)
parser: new

Vulnpath section¶

The VulnPath module stores all collected Google dorks in the MySQL database.

[vulnpath]
# You need this module to build up a vulnerability database
# True or False
enabled: False

Dyndork section¶

The DynDork module uses the VulnPath database to generate a dork list for the Google web crawler.

[dyndork]
# You need a vulnerability database to use this module
# Generate googledorks list from database (True or False)
dyndork: False
# Time between the dynamic dork list generation
# Possible settings
# - live: Generate the list every time it gets requested
# - nm: Generate the list every n minutes, example: 30m
# - nh: Generate the list every n hours, example: 3h
dorktime: 2h

Twitter section¶

If you are interested in quantitative results from the MySQL database you can use the fancy TwitterModule.

[twitter]
# Twitter username
username = 
# Twitter password
password = 

IRC Glastopf stats bot¶

The IRC StatsBot is able to response to some statistic requests.

[irc]
# IRC server IP address or URL
ircserver= irc.freenode.net
# IRC server port (Default 6667)
ircport= 6667
# Glastopf IRC bot nick
nick= 
# Glastopf IRC bot ident
ident= 
# Glastopf IRC bot real name
realname= 
# Glastopf IRC log channel
channel= 

Log section¶

Turn on/off Twitter and IRC stats logging.

[log]
# IRC logging (True or False)
logircbot = False
#Twitter logging (True or False)
logtwitter = False

Choose your logging level.

# Log level (debug info warning error critical)
level: debug

Please set your operating system to avoid errors cause by the log rotation.

# Operating system: win or unix (log rotate doesn't work with win)
system: unix

Set the log file size after which the files gets rotated and the number of log file backups in total.

# Log file size in byte (unix only)
size: 2097152
# Lumber of log file backups
count: 5