[Nagiosplug-help] What needs to be done to enable key- and certificate-less SSL handshake with NRPE?

[Werner Flamme]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ralph.Grothe at itdz-berlin.de schrieb am 12.12.2006 14:55:
> Hello Plugin Experts,
> 
> I have just built an nrpe binary from the sources on a Linux RH
> box,
> where I adventurously gave configure the --enable-ssl switch.

Adventurously is exactly the right word :-) And about the documentation...
well...

To have SSL working, you have to have exactly the same version of nrpe on
server and client.

To avoid ssl handshake, you may use the -n parameter. For example, in my
/etc/xinetd.d/nagios-nrpe service file, I have a line
 server_args     = -n -c /etc/sapmon/nrpe.cfg --inetd

On my system I can enter
/usr/lib/nagios/plugins/check_nrpe -h
and in the output I read
Options:
 -n         = Do no use SSL
 <host>     = The address of the host running the NRPE daemon
 [port]     = The port on which the daemon is running (default=5666)
and so on. I use nrpe 2.5.1 on my machines, the -n line was not shown with
- -h some versions ago.

HTH
Werner

- --
Werner Flamme, Abt. WKDV
Helmholtz-Zentrum fuer Umweltforschung - UFZ
Permoserstr. 15 - 04318 Leipzig
Tel.: (0341) 235-3921 - Fax (0341) 235-453921
http://www.ufz.de - eMail: werner.flamme at ufz.de
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org

iD8DBQFFh9JAk33Krq8b42MRAiabAJ9zGEZTaJQuihxdX6os0dfItcSoYQCcDWVi
4VbEnjeD0GXOc8bNP5WjqHE=
=xVFM
-----END PGP SIGNATURE-----