Hi Jonas, thanks for reporting the issue.
Am 16.02.17 um 02:11 schrieb Jonas Meurer: > apparently check_ssl_cert has issues in Debian/Stretch: > > # /usr/lib/nagios/plugins/check_ssl_cert -H www.google.com > Certificate will not expire > unable to load certificate > 139704416556224:error:0D07207B:asn1 encoding > routines:ASN1_get_object:header too long:../crypto/asn1/asn1_lib.c:101: > SSL_CERT CRITICAL www.google.com: unable to load certificate > 139735049802944:error:0906D06C:PEM routines:PEM_read_bio:no start > line:../crypto/pem/pem_lib.c:691:Expecting: TRUSTED > CERTIFICATE|days=69;;;; looks like an issue cause new behavior of openssl. The atomar fix for this should be https://github.com/matteocorti/check_ssl_cert/commit/4bb87dd352f4f479faa35eadb81760eef7173e56 and https://github.com/matteocorti/check_ssl_cert/compare/v1.37.0...v1.42.0 would be the diff when updating check_ssl_cert to latest upstream. I would prefer the latter one. Cheers, Jan. -- Never write mail to <w...@spamfalle.info>, you have been warned! -----BEGIN GEEK CODE BLOCK----- Version: 3.12 GIT d-- s+: a C+++ UL++++ P+ L+++ E--- W+++ N+++ o++ K++ w--- O M+ V- PS PE Y++ PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h---- r+++ y++++ ------END GEEK CODE BLOCK------
signature.asc
Description: OpenPGP digital signature