Some of this depends upon the security of the system. Maybe on a host with protected information you should run a standalone version of Nagios and submit the results to the main server, just like a distributed setup.
Likely for most instances this is not a problem especially if you run a firewall on the system and restrict the nsca port to only your nagios server. In the version i am running there is a section for allowed hosts and this should only contain your Nagios server, and the password should be difficult to guess and SSL should be enabled. Greg Pangrazio pangr...@gmail.com 847-707-7933 (c) 847-973-0307 (h) On Tue, Dec 8, 2009 at 11:46 AM, ReynierPM <rper...@uci.cu> wrote: > Greg Pangrazio wrote: >> >> The security risks are that there is a potential for remote command >> execution on the system. This is exactly the section I was refering >> to. >> > Concerning this, what's your recommendation? I'm newbie on this topics and > want to learn from those who are gurus of the theme > -- > Cheers > ReynierPM > ------------------------------------------------------------------------------ Return on Information: Google Enterprise Search pays you back Get the facts. http://p.sf.net/sfu/google-dev2dev _______________________________________________ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
