[Nagiosplug-devel] Re: check_http patch for proxy and SSL client_cert support

cH3rN0b|L chernobil at gmail.com
Mon Sep 20 01:22:00 CEST 2004

Previous message: [Nagiosplug-devel] Re: check_http patch for proxy and SSL client_cert support
Next message: [Nagiosplug-devel] [ nagiosplug-Bugs-1029497 ] check_swap warning percentage should be more than critical
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Jos,

thanks for the appointment regarding -u flag. I did it this new way,
but the same happens ... :(

Thanks for the good work. The patch in proxy part does not apply in my
own case, but would be great for other.

I'm fighting against the plugin to make it work for me, i'm very
interested, cause plenty of our URL's must have client certificate to
fetch them.

New invocation is:

/usr/local/nagios/libexec/check_http -4 -i ./client.cert.pem -k
./client.key.pem -w 10 -c 20 -H 195.***.***.*** -u /one/url/index.jsp
-v
SSL seeding: OK
GET /one/url/index.jsp
HTTP/1.0
User-Agent: check_http/1.54 (nagios-plugins 1.4.0alpha1)
Host: 195.***.***.***


Error in recv()

Still no luck at all :(

Would keep trying, though i think i have already tried all
combinations/possibilities ...

Thanks for your effort!

Ivan


On Sat, 18 Sep 2004 12:32:17 +0200, Jos Visser <josv at osp.nl> wrote:
> Hi Ivan,
> 
> I am not sure what happens here, it works for me... Howeverm when I look
> at your invocation, you might want to strip the
> "https://www.onedoiman.com" part from the "-u". The "-H" already
> instructs check_http which host to connect to, the "-u" only needs to
> specify the URL part within the host's namespace...
> 
> ++Jos.nl
> 
> P.S. I did find an error in the proxy handling. I'll post a new patch
>      early next week.
> 
> 
> 
> On Thu, Sep 16, 2004 at 06:31:46PM +0200 it came to pass that cH3rN0b|L wrote:
> > Hi Jos,
> >
> > i tried your plugin with new enhacements, but it's not working for me :/
> >
> > I'm trying to retrive an URL that need client certificate and i do the
> > following:
> >
> > /usr/local/nagios/libexec/check_http -4 -i ./client.pem -k
> > ./client.key -w 10 -c 20 -H 195.***.***.*** -u
> > https://www.onedoiman.com/one/url/index.jsp -v
> > SSL seeding: OK
> > GET https://www.onedoiman.com/one/url/index.jsp
> > HTTP/1.0
> > User-Agent: check_http/1.54 (nagios-plugins 1.4.0alpha1)
> > Host: 195.***.***.***
> >
> >
> > Error in recv()
> >
> > Do you know where is the problem? What's the meaning of Error in recv()?
> >
> > Thanks in advance!
> >
> > Ivan Fontan [chernobil at gmail.com]
> >
> > On Wed, 15 Sep 2004 13:15:53 +0200, Jos Visser
> > <josv-YF2jIvldYSM at public.gmane.org> wrote:
> >
> > >Hi all,
> > >
> > >The accompanying patch adds support for HTTP proxies and SSL client
> > >certificates to the check_http plug-in.
> > >
> > >It adds four new command line options:
> > >
> > >     -i, --client_cert       Filename of the client certificate (PEM)
> > >     -k, --private_key       Filename of the private key file (PEM)
> > >     -x, --proxy-host        HTTP proxy hostname or IP address
> > >     -y, --proxy-port        port of the HTTP proxy
> > >
> > >(proxying works for SSL and non-SSL; proxy authentication not yet
> > >supported...)
> > >
> > >Use of -i automatically enables -S (--use-ssl).
> > >
> > >The patch is against the check_http.c that I checked out this very
> > >morning...
> > >
> > >Samples:
> > >
> > >$ ./check_http -H www.josvisser.nl -x localhost -y 3128
> > >HTTP OK HTTP/1.0 200 OK - 4887 bytes in 1.730 seconds
> > |time=1.729544s;;;0.000000 size=4887B;;;0
> > >
> > >$ ./check_http -H rours.org -i cert.pem -k key.pem -x localhost -y 3128
> > >HTTP WARNING: HTTP/1.1 403 Forbidden
> > >
> > >Share and enjoy!
> > >
> > >++Jos.es
> >
> > 
> > -------------------------------------------------------
> > This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170
> > Project Admins to receive an Apple iPod Mini FREE for your judgement on
> > who ports your project to Linux PPC the best. Sponsored by IBM.
> > Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php
> > _______________________________________________
> > Nagiosplug-devel mailing list
> > Nagiosplug-devel at lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/nagiosplug-devel
> > ::: Please include plugins version (-v) and OS when reporting any issue.
> > ::: Messages without supporting info will risk being sent to /dev/null
> 
> --
> Handle nur nach derjenigen Maxime, durch die du zugleich wollen kannst,
> daß sie ein allgemeines Gesetz werde.
> -- Immanuel Kant
> 
>

Previous message: [Nagiosplug-devel] Re: check_http patch for proxy and SSL client_cert support
Next message: [Nagiosplug-devel] [ nagiosplug-Bugs-1029497 ] check_swap warning percentage should be more than critical
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Devel mailing list