Skip to content
View saranf's full-sized avatar

Block or report saranf

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
saranf/readme.md

Sarang Back (백사랑)

Zabbix · Linux · Observability — I troubleshoot large-scale monitoring environments and contribute practical fixes back upstream. Operated a Zabbix environment monitoring 20,000+ hosts within KT Cloud infrastructure in Korea (on-site contract).

📍 Seoul, KR · 📫 qorwlsdk1995@naver.com


🔧 Zabbix ecosystem contributions

5 merged contributions across two official Zabbix repositories + 1 upstream-adopted deployment analysis

zabbix/zabbix-docker — 4 merged PRs + 1 adopted analysis

PR What it fixes Status
#1942 ZBX_ALLOW_HTTP_AUTH authentication regression — traced to a frontend-config redesign commit that silently fell back to defaults; restored the documented variable and flagged the related regression #1940 ✅ Merged into 7.4
#1945 Obsolete ZBX_JAVAGATEWAY_ENABLE references that led users following the docs into a silent no-op Java Gateway setup — removed across READMEs, env files, and kubernetes.yaml ✅ Merged into 7.4
#1946 Wrong agent config include path in READMEs (zabbix_agent.dzabbix_agentd.d) — the documented path was never included by the agents, so user alias configs were silently ignored ✅ Merged into 7.4
#1837 10 documentation errors across server-mysql, web-nginx-mysql, and agent image READMEs ✅ Merged
#1937 Analysis of #1930snmptraps volume implicit-null parsing incompatibility with some Compose parsers; maintainer adopted a similar patch 🔁 Analysis adopted upstream

zabbix/community-templates — 1 merged template

PR Contribution Status
#745 New Zabbix 7.4 community template — a lightweight Linux security/audit baseline (agent 2): 4 operational signals behind fully macro-driven thresholds (incl. per-filesystem context macros), with audit-oriented tagging (class=security) so problems can be filtered and exported as compliance evidence. Designed to layer onto hosts alongside the stock Linux templates, not replace them ✅ Merged

My troubleshooting workflow mirrors the support cycle: reproduce → diagnose → resolve → document.

🛠 Projects

  • MORI-SOC — Zabbix-integrated SOC-lite and audit-evidence workflow (FastAPI · PostgreSQL · Docker Compose). Turns monitoring/security signals from Zabbix, Trivy, FleetDM, Wazuh, and Loki into structured triage records, incidents, and who/when/what audit trails for ISMS-P / ISO 27001 readiness.
  • Trivy Agent Lab — lightweight read-only vulnerability-scanner agent built around scan → normalize → push → heartbeat, keeping agents dumb and intelligence central.
  • AWS Security Audit Tool — 100% read-only Bash/boto3 auditing of IAM, network, data encryption, and EKS, with auto-generated executive and per-domain reports.

📚 Stack

Zabbix SNMP Linux Docker/Compose Python Shell PostgreSQL/MySQL Ansible Grafana Loki AWS Azure

AWS Certified Solutions Architect – Associate · All repositories maintained with bilingual EN/KO documentation.

Pinned Loading

  1. mori-soc mori-soc Public

    Alpha security operations and audit-evidence platform for monitoring, vulnerability visibility, incident workflows, and compliance evidence.

    Python

  2. trivy_Test trivy_Test Public

    PHP

  3. aws_security_helping_script aws_security_helping_script Public

    Shell