FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.

» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > Fedora Infrastructure
Reload this Page ticket#1152 - SSL cert monitoring

 
 
LinkBack Thread Tools
 
Old 04-24-2011, 03:50 PM
Oliver Falk
 
Default ticket#1152 - SSL cert monitoring
Copy that. I use it myself...

-of (mobile)

Am 24.04.2011 um 17:10 schrieb "Rafael Gomes" <rafaelgomes@techfree.com.br>:

> Hi Guys,
>
> As my first collaboration, following my suggested solution to this problem:
>
> According to that manual of check_http plugin[1], we can use that full
> command to monitoring ssl cert:
>
> check_http -H fedoraproject.org -C 20
>
> When the certificate of 'fedoraproject' is valid for more than 20
> days, a STATE_OK is returned. When the certificate is still valid, but
> for less than 20 days, a STATE_WARNING is returned. A STATE_CRITICAL
> will be returned when the certificate is expired.
>
> What you think about this?
>
> [1] - http://nagiosplugins.org/man/check_http
>
> Rafael Gomes
> Consultor em TI
> LPIC-1 MCSO
> (71) 8318-0284
>
> Atenção: Este e-mail pode conter anexos no formato ODF (Open Document
> Format)/ABNT (extensões odt, ods, odp, odb, odg). Antes de pedir os
> anexos em outro formato, você pode instalar gratuita e livremente o
> BrOffice (http://www.broffice.org).
> _______________________________________________
> infrastructure mailing list
> infrastructure@lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/infrastructure

_______________________________________________
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure
 
Old 04-24-2011, 04:17 PM
Kevin Fenzi
 
Default ticket#1152 - SSL cert monitoring
On Sun, 24 Apr 2011 12:09:58 -0300
Rafael Gomes <rafaelgomes@techfree.com.br> wrote:

> Hi Guys,
>
> As my first collaboration, following my suggested solution to this
> problem:
>
> According to that manual of check_http plugin[1], we can use that full
> command to monitoring ssl cert:
>
> check_http -H fedoraproject.org -C 20
>
> When the certificate of 'fedoraproject' is valid for more than 20
> days, a STATE_OK is returned. When the certificate is still valid, but
> for less than 20 days, a STATE_WARNING is returned. A STATE_CRITICAL
> will be returned when the certificate is expired.
>
> What you think about this?

Yeah, this was the solution used in the end.

We have a check_ssl_cert check setup and working using check_http.

See the last comment there, basically the thing left to do in that
ticket is decide if we want to also monitor the pkgs and koji self
signed certs. They don't expire for 7 or 9 years, so not sure if we
want to or not.

kevin

_______________________________________________
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure
 
Old 04-24-2011, 04:17 PM
Rafael Gomes
 
Default ticket#1152 - SSL cert monitoring
Oliver,

Can you Please let us know if works fine?

Thanks!

Rafael Gomes
Consultor em TI
LPIC-1 MCSO
(71) 8318-0284

Atenção: Este e-mail pode conter anexos no formato ODF (Open Document
Format)/ABNT (extensões odt, ods, odp, odb, odg). Antes de pedir os
anexos em outro formato, você pode instalar gratuita e livremente o
BrOffice (http://www.broffice.org).



On Sun, Apr 24, 2011 at 12:50 PM, Oliver Falk <oliver@linux-kernel.at> wrote:
> Copy that. I use it myself...
>
> -of (mobile)
>
> Am 24.04.2011 um 17:10 schrieb "Rafael Gomes" <rafaelgomes@techfree.com.br>:
>
>> Hi Guys,
>>
>> As my first collaboration, following my suggested solution to this problem:
>>
>> According to that manual of check_http plugin[1], we can use that full
>> command to monitoring ssl cert:
>>
>> check_http -H fedoraproject.org -C 20
>>
>> When the certificate of 'fedoraproject' is valid for more than 20
>> days, a STATE_OK is returned. When the certificate is still valid, but
>> for less than 20 days, a STATE_WARNING is returned. A STATE_CRITICAL
>> will be returned when the certificate is expired.
>>
>> What you think about this?
>>
>> [1] - http://nagiosplugins.org/man/check_http
>>
>> Rafael Gomes
>> Consultor em TI
>> LPIC-1 MCSO
>> (71) 8318-0284
>>
>> Atenção: Este e-mail pode conter anexos no formato ODF (Open Document
>> Format)/ABNT (extensões odt, ods, odp, odb, odg). Antes de pedir os
>> anexos em outro formato, você pode instalar gratuita e livremente o
>> BrOffice (http://www.broffice.org).
>> _______________________________________________
>> infrastructure mailing list
>> infrastructure@lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/infrastructure
>
> _______________________________________________
> infrastructure mailing list
> infrastructure@lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/infrastructure
>
_______________________________________________
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure
 
Old 04-24-2011, 04:21 PM
Rafael Gomes
 
Default ticket#1152 - SSL cert monitoring
Sorry about that, but is was not clear enough to understand this in
that comment. My Bad.

Rafael Gomes
Consultor em TI
LPIC-1 MCSO
(71) 8318-0284

Atenção: Este e-mail pode conter anexos no formato ODF (Open Document
Format)/ABNT (extensões odt, ods, odp, odb, odg). Antes de pedir os
anexos em outro formato, você pode instalar gratuita e livremente o
BrOffice (http://www.broffice.org).



On Sun, Apr 24, 2011 at 1:17 PM, Kevin Fenzi <kevin@scrye.com> wrote:
> On Sun, 24 Apr 2011 12:09:58 -0300
> Rafael Gomes <rafaelgomes@techfree.com.br> wrote:
>
>> Hi Guys,
>>
>> As my first collaboration, following my suggested solution to this
>> problem:
>>
>> According to that manual of check_http plugin[1], we can use that full
>> command to monitoring ssl cert:
>>
>> check_http -H fedoraproject.org -C 20
>>
>> When the certificate of 'fedoraproject' is valid for more than 20
>> days, a STATE_OK is returned. When the certificate is still valid, but
>> for less than 20 days, a STATE_WARNING is returned. A STATE_CRITICAL
>> will be returned when the certificate is expired.
>>
>> What you think about this?
>
> Yeah, this was the solution used in the end.
>
> We have a check_ssl_cert check setup and working using check_http.
>
> See the last comment there, basically the thing left to do in that
> ticket is decide if we want to also monitor the pkgs and koji self
> signed certs. They don't expire for 7 or 9 years, so not sure if we
> want to or not.
>
> kevin
>
>
> _______________________________________________
> infrastructure mailing list
> infrastructure@lists.fedoraproject.org
> https://admin.fedoraproject.org/mailman/listinfo/infrastructure
>
_______________________________________________
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure
 
Old 04-24-2011, 04:23 PM
Rafael Gomes
 
Default ticket#1152 - SSL cert monitoring
Can we decide now?

IMHO we should monitor both.

Rafael Gomes
Consultor em TI
LPIC-1 MCSO
(71) 8318-0284

Atenção: Este e-mail pode conter anexos no formato ODF (Open Document
Format)/ABNT (extensões odt, ods, odp, odb, odg). Antes de pedir os
anexos em outro formato, você pode instalar gratuita e livremente o
BrOffice (http://www.broffice.org).



On Sun, Apr 24, 2011 at 1:21 PM, Rafael Gomes
<rafaelgomes@techfree.com.br> wrote:
> Sorry about that, but is was not clear enough to understand this in
> that comment. My Bad.
>
> Rafael Gomes
> Consultor em TI
> LPIC-1 MCSO
> (71) 8318-0284
>
> Atenção: Este e-mail pode conter anexos no formato ODF (Open Document
> Format)/ABNT (extensões odt, ods, odp, odb, odg). Antes de pedir os
> anexos em outro formato, você pode instalar gratuita e livremente o
> BrOffice (http://www.broffice.org).
>
>
>
> On Sun, Apr 24, 2011 at 1:17 PM, Kevin Fenzi <kevin@scrye.com> wrote:
>> On Sun, 24 Apr 2011 12:09:58 -0300
>> Rafael Gomes <rafaelgomes@techfree.com.br> wrote:
>>
>>> Hi Guys,
>>>
>>> As my first collaboration, following my suggested solution to this
>>> problem:
>>>
>>> According to that manual of check_http plugin[1], we can use that full
>>> command to monitoring ssl cert:
>>>
>>> check_http -H fedoraproject.org -C 20
>>>
>>> When the certificate of 'fedoraproject' is valid for more than 20
>>> days, a STATE_OK is returned. When the certificate is still valid, but
>>> for less than 20 days, a STATE_WARNING is returned. A STATE_CRITICAL
>>> will be returned when the certificate is expired.
>>>
>>> What you think about this?
>>
>> Yeah, this was the solution used in the end.
>>
>> We have a check_ssl_cert check setup and working using check_http.
>>
>> See the last comment there, basically the thing left to do in that
>> ticket is decide if we want to also monitor the pkgs and koji self
>> signed certs. They don't expire for 7 or 9 years, so not sure if we
>> want to or not.
>>
>> kevin
>>
>>
>> _______________________________________________
>> infrastructure mailing list
>> infrastructure@lists.fedoraproject.org
>> https://admin.fedoraproject.org/mailman/listinfo/infrastructure
>>
>
_______________________________________________
infrastructure mailing list
infrastructure@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/infrastructure
 

Thread Tools




All times are GMT. The time now is 07:35 PM.

VBulletin, Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright ©2007 - 2008, www.linux-archive.org

Contact Us - Linux Archive - Archive - Top -