Package: nagios-plugins
Version: 1.4-3
Severity: normal
Hi,
I'm one of admin for https://mynu.jp/ now.
I wish to check it by naios, but encounted a strange problem.
check_http will fail with our website.
| [EMAIL PROTECTED]:~% /usr/lib/nagios/plugins/check_http --ssl mynu.jp
| CRITICAL - Cannot retrieve server certificate.
But, I just removed SSL_set_cipher_list() from check_http.c (detail
for a patch below), then It works well with both our site and others.
Is this code unnecessary?
# Our website works with "Alteon SSL Accelerator" (hardware SSL
# accelerator), maybe, Alteon have something wrong?
| [EMAIL PROTECTED]:~/tmp/nagios/nagios-plugins-1.4/plugins% ./check_http --ssl
mynu.jp
| OK - HTTP/1.1 301 Moved Permanently - 0.160 second response time
|time=0.159803s;;;0.000000 size=539B;;;0
--- check_http.c.orig 2005-01-21 08:40:30.000000000 +0900
+++ check_http.c 2005-03-16 17:08:09.628405910 +0900
@@ -1278,7 +1278,6 @@
if (my_tcp_connect (server_address, server_port, &sd) == STATE_OK) {
/* Do the SSL handshake */
if ((ssl = SSL_new (ctx)) != NULL) {
- SSL_set_cipher_list(ssl, "ALL");
SSL_set_fd (ssl, sd);
if (SSL_connect (ssl) != -1)
return OK;
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.11
Locale: LANG=ja_JP.UTF-8, LC_CTYPE=ja_JP.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to ja_JP.UTF-8)
Versions of packages nagios-plugins depends on:
ii dnsutils 1:9.2.4-1 Clients provided with BIND
ii fping 2.4b2-to-ipv6-10 sends ICMP ECHO_REQUEST packets to
ii host 20000331-9 utility for querying DNS servers
ii iputils-ping [ping] 3:20020927-2 Tools to test the reachability of
ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an
ii libldap2 2.1.30-3 OpenLDAP libraries
ii libmysqlclient12 4.0.24-1 mysql database client library
ii libnet-snmp-perl 5.0.1-1 Script SNMP connections
ii libpq3 7.4.7-3 PostgreSQL C client library
ii libssl0.9.7 0.9.7e-3 SSL shared libraries
ii ntp 1:4.2.0a+stable-2 Network Time Protocol: network uti
ii ntp-simple 1:4.2.0a+stable-2 Network Time Protocol: daemon for
ii ntpdate 1:4.2.0a+stable-2 The ntpdate client for setting sys
ii procps 1:3.2.5-1 /proc file system utilities
ii qstat 2.7-1 Command-line tool for querying qua
ii radiusclient1 0.3.2-8 /bin/login replacement which uses
ii smbclient 3.0.10-1 a LanManager-like simple client fo
ii snmp 5.1.2-6 NET SNMP (Simple Network Managemen
-- no debconf information
--
Tatsuki Sugiura mailto:[EMAIL PROTECTED]
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
