CAcert System Admins discussion list

[Mendel Mobach <mendel AT mobach.nl>]

On Thursday 10 September 2009, Markus Warg wrote:
> Hi Daniel,

Hello,

Just to interrupt a bit 

> just a quick overview on the topic.
>
> NRPE
> ====

[..]

> Services are actively checked, if an check fails Nagios will change the
> services' status. I currently do not know how NRPE submits is data
> (plain, encrypted, ...).

NRPE doesn't submit data. NRPE does return data to a client requesting 
information. It does SSL encryption, but only encryption and no 
authentication 
with certificates etc...

[.. cut the rest of good other options ..]

> handmade scripts via inetd/xinetd

I would seriously advise against this setup. It does require a lot more work 
than NRPE and it has serious implications if something goes wrong.

I personally do like NRPE, but that is more that from my normal point of view 
I don't trust customers and I want to actively check if it still works. (SNMP 
could work too, but SNMP is a crime if a mib doesn't exist for the check you 
want).

Kind Regards,

Mendel Mobach - this was only some advise from a personal point of view.
-- 
Mendel Mobach aka BugBlue - 
mendel AT mobach.nl
HAR2009 13~16 Aug 2009 Vierhouten, https://har2009.org/

Attachment: signature.asc
Description: This is a digitally signed message part.