upstream/monitoring-plugins
1
0
Fork 0
mirror of https://github.com/monitoring-plugins/monitoring-plugins.git synced 2026-02-03 18:49:29 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
2415 commits 22 branches 38 tags 24 MiB
Commit graph

20 commits

Author SHA1 Message Date
Sven Nierlein
24242f6ab7 check_http: added test for warning thresholds 
fixed typo in sslutils
 2012-06-25 12:53:47 +02:00
William Leibzon
fa3d2a4074 applied patch that adds both critical and warning thresholds to certificate expiration checks of check_tcp, check_http, check_smtp 2012-06-25 12:05:16 +02:00
Holger Weiss
4e9eedc8de Fix whitespace and capitalization issues 
Fix indentation and whitespace issues, and correct some capitalization
errors in error messages.  The behaviour is unchanged.
 2012-06-11 23:34:15 +02:00
Holger Weiss
3fd1bd97ca Don't use SSLv2 when compiling against GnuTLS 
GnuTLS doesn't support SSL version 2.
 2012-06-11 23:23:40 +02:00
Sebastian Harl
679a229606 sslutils: Check if OpenSSL supports SSLv2. 
Recent versions/builds seem to disable that feature.
 2012-06-06 13:48:52 +02:00
Holger Weiss
bc3307ed6e Add support for specifying SSL protocol version 
The check_http -S/--ssl option now takes an optional argument which
specifies the desired SSL/TLS protocol version (#3285367 - Jason Lunn).
 2012-05-28 17:16:04 +02:00
Holger Weiss
5a5d3d7013 Disable stateless SSL session resumption 
Some versions of OpenSSL fail to negotiate the SSL connection with at
least some versions of Tomcat if stateless SSL session resumption
support (see RFC4507) is enabled:

| CRITICAL - Cannot make SSL connection
| 140099330348712:error:140943F2:SSL routines:SSL3_READ_BYTES:sslv3 alert unexpected message:s3_pkt.c:1195:SSL alert number 10

The problem is reproducible with OpenSSL 1.0.0h, but not with OpenSSL
0.9.8o-4squeeze12 (as shipped with Debian 6.0.4).  We work around it by
disabling the RFC4507 functionality when using OpenSSL versions which
support it.

Thanks to Dag Bakke for reporting the issue and for giving me access to
a server I could use to reproduce the problem.
 2012-05-07 12:11:48 +02:00
Thomas Guyot-Sionnest
4611e41bc5 check_http: check for and print the certificate cn 
This patch adds a check for the certificate cn (hostname) to normal
certificate checks. It returns CRITICAL if th cn is missing, otherwise it
prints it in the normal output.

Patch by Stéphane Urbanovski
 2011-02-04 00:54:52 -05:00
Thomas Guyot-Sionnest
ecb33e787c Whitespace changes only 2009-05-20 14:06:29 -04:00
Thomas Guyot-Sionnest
0489df95fc check_http: Add SSL/TLS hostname extension support (SNI) - (#1939022 - Joe Presbrey) 2009-05-20 01:05:35 -04:00
Thomas Guyot-Sionnest
37e432ec77 Revert "Add timezone support and fix checks around cert expiration" (keep the expiration fix) 
This reverts commit d41a33a434.
 2009-03-19 01:04:33 -04:00
Thomas Guyot-Sionnest
d41a33a434 Add timezone support and fix checks around cert expiration 2009-03-18 03:34:25 -04:00
Thomas Guyot-Sionnest
6fbd14fea5 Removing CVS/SVN tags and replacing with git-based versioning 
For contrib/, full tags have been imported from subversion


git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@2091 f882894a-f735-0410-b71e-b25c423dba1c
 2008-11-23 05:38:47 +00:00
Thomas Guyot-Sionnest
184ce9f6a3 Bump plugins/ to GPLv3 (non-plugind files) 
git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1918 f882894a-f735-0410-b71e-b25c423dba1c
 2008-01-31 11:27:22 +00:00
Holger Weiss
f71de78952 Call the SSL library initialization functions only once (not for every 
SSL connection).


git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1726 f882894a-f735-0410-b71e-b25c423dba1c
 2007-06-01 22:57:31 +00:00
Holger Weiss
f747b865aa Save an entire CPU cycle if c points to NULL already. 
git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1725 f882894a-f735-0410-b71e-b25c423dba1c
 2007-06-01 17:06:33 +00:00
Holger Weiss
bad9e04c54 Set the pointers to the SSL and SSL_CTX objects back to NULL after 
freeing them in np_net_ssl_cleanup().  This fixes a check_http segfault
if an SSL site redirects to a non-SSL one (reported by Aravind Gottipati
via IRC).


git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1724 f882894a-f735-0410-b71e-b25c423dba1c
 2007-06-01 16:42:07 +00:00
Benoit Mortier
f9394308c9 updating help and usage and license 
git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1434 f882894a-f735-0410-b71e-b25c423dba1c
 2006-06-18 19:36:48 +00:00
M. Sean Finney
3038819fef code cleanups, largely resulting from turning on -Wall. mostly 
unused variables and explicit casting issues, but there were a
couple gotchas in there too.


git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1267 f882894a-f735-0410-b71e-b25c423dba1c
 2005-10-31 20:03:19 +00:00
M. Sean Finney
4c77862ce3 - compartmentalized ssl code into seperate sslutils.c 
- ssl-related cleanups in configure.in, and now openssl/gnutls options
  automatically disable each other.


git-svn-id: https://nagiosplug.svn.sourceforge.net/svnroot/nagiosplug/nagiosplug/trunk@1258 f882894a-f735-0410-b71e-b25c423dba1c
 2005-10-23 11:59:43 +00:00