> I just wonder what the reasons are to use NRPE in favour of checks > over ssh with ssh keys. To me, NRPE seems just one more piece of > software that may potentioally be broken and more hassle with > firewalls. Why do people still use it when ssh checks are just as > simple and (in my opinion) far more secure?
I may be in the minority here but I also prefer using ssh with keys for our remote nagios checks. We have a medium sized network, around 220 hosts and about 1550 active checks. The reports of performance degradation are greatly exaggerated, IMHO. Our average check time is less than one second which is more than fast enough for our needs. By using ssh we avoided having to install NRPE on several different versions of Red Hat, and as you mentioned ssh is much more secure especially if you do it right (eg, password protected key, perhaps with keychain for loading into ssh-agent after you boot the server up). ------------------------------------------------------------------------------ Crystal Reports - New Free Runtime and 30 Day Trial Check out the new simplified licensign option that enables unlimited royalty-free distribution of the report engine for externally facing server and web deployment. http://p.sf.net/sfu/businessobjects _______________________________________________ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
