Inicio Explorar Ayuda
Iniciar sesión
LBP
/
nagios_nrpe
espejo de https://github.com/NagiosEnterprises/nrpe.git
4
0
Fork 0
Archivos Incidencias 0 Wiki

Sin descripción

Árbol: 9178f8ad03
Ramas Etiquetas
nagios_nrpe
ZIP TAR.GZ
John C. Frickson 9178f8ad03 Change names for Markdown formatting on Github hace 10 años
contrib d8c8f4de25 accept() fix for HP-UX 11.0 hace 22 años
docs 20bc739071 Added OO (source) docs to docs/ subdirectory hace 18 años
include 47a0bbd880 Initial commit of SSL changes. hace 10 años
package 8b51c1130f Fixed 2 make commands to be generic $(MAKE) macros hace 13 años
sample-config 15fb2cffb3 Added listen_queue_size as configuration option (Vadim Antipov, Kaspersky Lab) hace 12 años
src 47a0bbd880 Initial commit of SSL changes. hace 10 años
.gitignore ce6c775650 NRPE uses signals unsafely, hangs, can bring down system hace 10 años
Changelog 98e155fecd Update Changelog hace 10 años
LEGAL cef36584d8 Added log facility option hace 18 años
Makefile.in ad8a0f9323 Added support for generating Solaris package. hace 14 años
README.SSL.md 9178f8ad03 Change names for Markdown formatting on Github hace 10 años
README.Solaris ad8a0f9323 Added support for generating Solaris package. hace 14 años
README.md 9178f8ad03 Change names for Markdown formatting on Github hace 10 años
SECURITY.md 9178f8ad03 Change names for Markdown formatting on Github hace 10 años
THANKS 047c49658e Added THANKS file. Let us know if you should be in there but are not hace 10 años
config.guess f9d181f8e2 Misc bug fixes, updates hace 20 años
config.sub f9d181f8e2 Misc bug fixes, updates hace 20 años
configure c235ed0a0d Added directories to the SSL library search. hace 10 años
configure.ac c235ed0a0d Added directories to the SSL library search. hace 10 años
init-script.debian.in 7222595e29 Various bug fixes hace 22 años
init-script.in 135c113ad3 Bug fixes, spec file and init script changes by James Peterson, added sample xinetd config file hace 23 años
init-script.suse.in 6ff905f987 Added global command prefix option and ability to reload config files with SIGHUP hace 20 años
install-sh c861650004 Initial import into CVS hace 25 años
nrpe.spec 6357f9318a Prep for new 2.15 release hace 12 años
nrpe.spec.in 176027a4ca Added support for compiling and building RPMs on AIX hace 14 años
subst.in ad8a0f9323 Added support for generating Solaris package. hace 14 años
update-version 6357f9318a Prep for new 2.15 release hace 12 años

README.SSL.md

NRPE With SSL/TLS

NRPE now has the option for Encrypting Network traffic using SSL/TLS from openssl.

The Encryption is done using a set encryption routine of AES-256 Bit Encryption using SHA and Anon-DH. This encrypts all traffic using the NRPE sockets from the client to the server.

Since we are using Anon-DH this allows for an encrypted SSL/TLS Connection without using pre-generated keys or certificates. The key generation information used by the program to dynaically create keys on daemon startup can be found in the dh.h file in the nrpe src directory. This file was created using the command:

openssl dhparam -C 512

which outputs the C code in dh.h. For your own security you can replace that file with your own dhparam generated code.

As of this time you will need to have the latest greatest version of OpenSSL (tested against version 0.9.7a) since not all versions have the AES algorythm in them.

I am not aware that at this time this code is restricted under export restrictions but I leave that verification process up to you.

Thoughts and suggestions are welcome and I can be reached on the Nagios and NagiosPlug Mailing Lists.

- Derrick