Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Hugo van der Kooij wrote: > Hari Sekhon wrote: > | Hugo van der Kooij wrote: > |> Centos 4 makes no distinction. There is at least no security plugin for > |> yum. But given this known limitation the plugin works well on Centos > 4 here. > |> > |> Hugo. > |> > | Is it that the information is not available on CentOS 4 or that the > | yum-security plugin is just not installed? Have you tried > | > | yum install yum-security > > Tried that. But that plugin does not exist for Centos 4. > > Hugo. > Ah, shame. Well, at least you can use --all-updates to just get a generic count of the updates. -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hari Sekhon wrote: | Hugo van der Kooij wrote: |> Centos 4 makes no distinction. There is at least no security plugin for |> yum. But given this known limitation the plugin works well on Centos 4 here. |> |> Hugo. |> | Is it that the information is not available on CentOS 4 or that the | yum-security plugin is just not installed? Have you tried | | yum install yum-security Tried that. But that plugin does not exist for Centos 4. Hugo. - -- [EMAIL PROTECTED] http://hugo.vanderkooij.org/ PGP/GPG? Use: http://hugo.vanderkooij.org/0x58F19981.asc A: Yes. >Q: Are you sure? >>A: Because it reverses the logical flow of conversation. >>>Q: Why is top posting frowned upon? Bored? Click on http://spamornot.org/ and rate those images. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFIGcPqBvzDRVjxmYERAngQAKCuJjJja90l4EwWIE1bZwSbJrdYgwCdEXIV a//zqtyiuRFCMSlgKBA6kdU= =8oGL -END PGP SIGNATURE- - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Tom Brown wrote: >> Did you add yum manually to RHEL 4 and if so, what implications are >> there for updates then, is there any official repo for that, or only >> 3rd party. If 3rd party, do they support security information support >> for yum? Otherwise you'd have to use --all-updates or >> --warn-on-any-update and keep the whole system up to date if you >> cannot differentiate between security and normal updates. > > yum was built by us to provide a way to deploy rpm's to machines > easily from custom repo's etc - if we need to update we update from > yum using local repo's mirrored from upstream. > It's not clear though whether or not the 3rd party repos support security package information like yum provides on RHEL 5. You may want to just do a generic --all-updates to return critical for any available update or just --warn-on-any-update to still try to differentiate but warn on non-security packages and upgrade any available packages? I've not managed to get a straight answer out of anyone on how 3rd party repos affect the security of a system with regards to managed security updates. The usual evasive answer is that Redhat only provide support for their limited official repository, but where does this leave people who use all these 3rd party repos to make up for the deficiency of the official repo? This is why I prefer Gentoo and Debian's more comprehensive official repositories that are managed better and have security updates. If anyone knows more about 3rd party repository and security updates this I'd love to hear it as I hate the idea of getting security updates for only a subset of the total installed packages (hence why --warn-on-any-update may be useful to try to get around this) -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Hugo van der Kooij wrote: > Centos 4 makes no distinction. There is at least no security plugin for > yum. But given this known limitation the plugin works well on Centos 4 here. > > Hugo. > Is it that the information is not available on CentOS 4 or that the yum-security plugin is just not installed? Have you tried yum install yum-security Perhaps the yum-security plugin is not available for install in this version? I can't verify since I don't have any CentOS 4 here. The plugin gives this install tip if the security plugin for yum is not available. I found that it was not installed by default on all RHEL 5 systems but was such a useful thing to have that just running the yum install and then re-running the plugin was worth it for the distinction. However, it's up to you, the switches allow you run it either way. -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
> > > Did you add yum manually to RHEL 4 and if so, what implications are > there for updates then, is there any official repo for that, or only > 3rd party. If 3rd party, do they support security information support > for yum? Otherwise you'd have to use --all-updates or > --warn-on-any-update and keep the whole system up to date if you > cannot differentiate between security and normal updates. > > yum was built by us to provide a way to deploy rpm's to machines easily from custom repo's etc - if we need to update we update from yum using local repo's mirrored from upstream. - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hari Sekhon wrote: | Tom Brown wrote: |>> This does make a good case for adding support for CentOS 4. I don't |>> have any older CentOS, only RHEL so I wasn't aware that CentOS |>> shipped with yum for this to be useful. |>> |>> Since you have made a good case, I have now updated the plugin to |>> have compatibility for the older python 2.3, so pls try the latest |>> version 0.6.6 and let me know how that goes for you on the old systems. |>> |>> http://www.nagiosexchange.org/cgi-bin/page.cgi?g=Detailed%2F2577.html;d=1 |>> |>> |> we use yum on RHEL 4 a lot so will be trying this out also |> |> thanks |> | Err, slight correction in my typing, I wasn't aware that CentOS *4* | shipped with yum as RHEL 4 seems not to, I know my CentOS 5 does have it | as does RHEL 5 (finally). I was under the impression that since CentOS | is supposed to be purely a rebranded RHEL without the trademark logos | etc, that it would follow RHEL closely, so if RHEL 4 didn't ship with | yum, then neither would CentOS 4? I guess the CentOS guys realized how | big a disadvantage this would be... | | Did you add yum manually to RHEL 4 and if so, what implications are | there for updates then, is there any official repo for that, or only 3rd | party. If 3rd party, do they support security information support for | yum? Otherwise you'd have to use --all-updates or --warn-on-any-update | and keep the whole system up to date if you cannot differentiate between | security and normal updates. Centos 4 makes no distinction. There is at least no security plugin for yum. But given this known limitation the plugin works well on Centos 4 here. Hugo. - -- [EMAIL PROTECTED] http://hugo.vanderkooij.org/ PGP/GPG? Use: http://hugo.vanderkooij.org/0x58F19981.asc A: Yes. >Q: Are you sure? >>A: Because it reverses the logical flow of conversation. >>>Q: Why is top posting frowned upon? Bored? Click on http://spamornot.org/ and rate those images. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFIGba2BvzDRVjxmYERApeMAJ0XYvHB0b67Yf1XBKSUL1vaEgf8nwCfdP67 f0hiihISMRIvipxQocaUsHs= =QNSK -END PGP SIGNATURE- - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Tom Brown wrote: > >> >> This does make a good case for adding support for CentOS 4. I don't >> have any older CentOS, only RHEL so I wasn't aware that CentOS >> shipped with yum for this to be useful. >> >> Since you have made a good case, I have now updated the plugin to >> have compatibility for the older python 2.3, so pls try the latest >> version 0.6.6 and let me know how that goes for you on the old systems. >> >> http://www.nagiosexchange.org/cgi-bin/page.cgi?g=Detailed%2F2577.html;d=1 >> >> > > we use yum on RHEL 4 a lot so will be trying this out also > > thanks > Err, slight correction in my typing, I wasn't aware that CentOS *4* shipped with yum as RHEL 4 seems not to, I know my CentOS 5 does have it as does RHEL 5 (finally). I was under the impression that since CentOS is supposed to be purely a rebranded RHEL without the trademark logos etc, that it would follow RHEL closely, so if RHEL 4 didn't ship with yum, then neither would CentOS 4? I guess the CentOS guys realized how big a disadvantage this would be... Did you add yum manually to RHEL 4 and if so, what implications are there for updates then, is there any official repo for that, or only 3rd party. If 3rd party, do they support security information support for yum? Otherwise you'd have to use --all-updates or --warn-on-any-update and keep the whole system up to date if you cannot differentiate between security and normal updates. -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
> > This does make a good case for adding support for CentOS 4. I don't have > any older CentOS, only RHEL so I wasn't aware that CentOS shipped with > yum for this to be useful. > > Since you have made a good case, I have now updated the plugin to have > compatibility for the older python 2.3, so pls try the latest version > 0.6.6 and let me know how that goes for you on the old systems. > > http://www.nagiosexchange.org/cgi-bin/page.cgi?g=Detailed%2F2577.html;d=1 > we use yum on RHEL 4 a lot so will be trying this out also thanks - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Hugo van der Kooij wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hari Sekhon wrote: > | Randal, Phil wrote: > |> The latest version now works fine on my CentOS 5.1 boxes. > |> > |> Now all we need is a version which works with python 2.3 so I can check > |> our CentOS / RHEL 4 boxes. > |> > |> Cheers, > |> > |> Phil > | I have a couple of RHEL 4 boxes too but since they didn't ship with yum > | this didn't seem so relevant. I tried putting yum on one of them a > | couple of years back and I have to say it was an absolutely awful > | experience. > > I have never touched a real RHEL 4 box. But I run Centos 4 on a number > of systems and Centos 4 uses yum for quite a while. They have this nice > server CD that allows one to install a server with a minimum of packages > and then I add what I need with yum. > > But needless to say Centos 4 is shipped with python v2.3.4 so the script > will not work there. And upgrading to python v2.4 is not a viable option > on those machines. > > Hugo. > Thanks for that feedback Hugo. This does make a good case for adding support for CentOS 4. I don't have any older CentOS, only RHEL so I wasn't aware that CentOS shipped with yum for this to be useful. Since you have made a good case, I have now updated the plugin to have compatibility for the older python 2.3, so pls try the latest version 0.6.6 and let me know how that goes for you on the old systems. http://www.nagiosexchange.org/cgi-bin/page.cgi?g=Detailed%2F2577.html;d=1 Thanks -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Oops, I realised after I said it. The only time I used yum on RHEL 4 was to upgrade it to CentOS 4. CentOS 4, of course, ships with yum. I've currently got 4 CentOS 4.6 boxes, 2 CentOS 5.1, and 1 RHEL 4 box, so python 2.3 support would still be a plus. Phil -- Phil Randal Networks Engineer Herefordshire Council Hereford, UK -Original Message- From: Hari Sekhon [mailto:[EMAIL PROTECTED] Sent: 01 May 2008 10:40 To: Randal, Phil Cc: nagios-users@lists.sourceforge.net Subject: Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts Randal, Phil wrote: > The latest version now works fine on my CentOS 5.1 boxes. > > Now all we need is a version which works with python 2.3 so I can > check our CentOS / RHEL 4 boxes. > > Cheers, > > Phil I have a couple of RHEL 4 boxes too but since they didn't ship with yum this didn't seem so relevant. I tried putting yum on one of them a couple of years back and I have to say it was an absolutely awful experience. I had done a relatively minimal install and was then tryied installing yum both by rpm and by source install, both of which landed me in a very bad and messed up circular dependency hell that I couldn't solve without breaking some other stuff. I mean I tried everything, and that was the last time I ever tried a minimal redhat installation (minimal == lower attack surface and all that best practice stuff which redhat never seemed to get into - otherwise I have to go round disabling so much junk on their systems), a very poor choice for tight control and maintainability compared to gentoo or debian (but I digress). Did you install yum manually on RHEL 4? Do you use this as the primary package management tool on RHEL 4 and does it receive security updates? I would have thought not since RedHat only shipped this in version 5 which is why the plugin makes no effort for previous versions of RHEL... but I could be wrong. I figure that upgrades to the version 5 with it's first half-decent package management system using yum by default will solve this, but if anyone wants to correct me or share their experience, feel free and I may reconsider. -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hari Sekhon wrote: | Randal, Phil wrote: |> The latest version now works fine on my CentOS 5.1 boxes. |> |> Now all we need is a version which works with python 2.3 so I can check |> our CentOS / RHEL 4 boxes. |> |> Cheers, |> |> Phil | I have a couple of RHEL 4 boxes too but since they didn't ship with yum | this didn't seem so relevant. I tried putting yum on one of them a | couple of years back and I have to say it was an absolutely awful | experience. I have never touched a real RHEL 4 box. But I run Centos 4 on a number of systems and Centos 4 uses yum for quite a while. They have this nice server CD that allows one to install a server with a minimum of packages and then I add what I need with yum. But needless to say Centos 4 is shipped with python v2.3.4 so the script will not work there. And upgrading to python v2.4 is not a viable option on those machines. Hugo. - -- [EMAIL PROTECTED] http://hugo.vanderkooij.org/ PGP/GPG? Use: http://hugo.vanderkooij.org/0x58F19981.asc A: Yes. >Q: Are you sure? >>A: Because it reverses the logical flow of conversation. >>>Q: Why is top posting frowned upon? Bored? Click on http://spamornot.org/ and rate those images. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFIGZvxBvzDRVjxmYERAnBsAJ9Hx5qkKJaAFPyCFr1U941rM7r4ewCdE+2D FNigLVlojgh5ZpPThehrCvE= =4O3v -END PGP SIGNATURE- - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
Randal, Phil wrote: > The latest version now works fine on my CentOS 5.1 boxes. > > Now all we need is a version which works with python 2.3 so I can check > our CentOS / RHEL 4 boxes. > > Cheers, > > Phil I have a couple of RHEL 4 boxes too but since they didn't ship with yum this didn't seem so relevant. I tried putting yum on one of them a couple of years back and I have to say it was an absolutely awful experience. I had done a relatively minimal install and was then tryied installing yum both by rpm and by source install, both of which landed me in a very bad and messed up circular dependency hell that I couldn't solve without breaking some other stuff. I mean I tried everything, and that was the last time I ever tried a minimal redhat installation (minimal == lower attack surface and all that best practice stuff which redhat never seemed to get into - otherwise I have to go round disabling so much junk on their systems), a very poor choice for tight control and maintainability compared to gentoo or debian (but I digress). Did you install yum manually on RHEL 4? Do you use this as the primary package management tool on RHEL 4 and does it receive security updates? I would have thought not since RedHat only shipped this in version 5 which is why the plugin makes no effort for previous versions of RHEL... but I could be wrong. I figure that upgrades to the version 5 with it's first half-decent package management system using yum by default will solve this, but if anyone wants to correct me or share their experience, feel free and I may reconsider. -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
I agree - there are still a ton of RHEL4 boxes out there. We are pretty strict on keeping with RHN - RHEL4 uses Python 2.3 On Wed, Apr 30, 2008 at 9:53 AM, Randal, Phil <[EMAIL PROTECTED]> wrote: > The latest version now works fine on my CentOS 5.1 boxes. > > Now all we need is a version which works with python 2.3 so I can check > our CentOS / RHEL 4 boxes. > > Cheers, > > Phil > > > -- > Phil Randal > Networks Engineer > Herefordshire Council > Hereford, UK > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Randal, > Phil > Sent: 30 April 2008 15:30 > To: Hari Sekhon; Nagios Users mailinglist > Subject: Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS > serverpackagealerts > > # ./check_yum -vvv > setting plugin timeout to 30 seconds > running command: /usr/bin/yum --security check-update > Returncode: '0' > Output: 'Loading "security" plugin > Loading "priorities" plugin > Loading "protectbase" plugin > Loading "installonlyn" plugin > Loading "dellsysidplugin" plugin > Setting up repositories > Reading repository metadata in from local files Reducing city-fan.org > repository for Red Hat Enterprise Linux (and > clones) 5 (x86_64) to included packages only Finished Excluding Packages > from Red Hat Enterprise 5 - RPMforge.net - dag Finished Reducing > city-fan.org repository for Fedora Core Rawhide (x86_64) to included > packages only Finished Limiting package lists to security relevant ones > No packages needed, for security, 0 available 0 packages excluded due to > repository priority protections 0 packages excluded due to repository > protections ' > Yum WARNING: Yum output signature does not match current known format, > please make sure you have upgraded to the latest version of this plugin. > If the problem persists, please contact the author for a fix > > > Oh well, maybe one day it will work. :-p > > Phil > -- > Phil Randal > Networks Engineer > Herefordshire Council > Hereford, UK > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Hari > Sekhon > Sent: 30 April 2008 13:46 > To: Nagios Users mailinglist > Subject: [Nagios-users] Announce: Check_Yum for RedHat/CentOS server > packagealerts > > Hi, > > I've just released the Check_Yum plugin on NagiosExchange.org as the > only one there seemed quite inadequate. > > Features of the new plugin (none of which are in the old plugin) > include: > > - Differentiate between Security / normal package updates > - Better output - numbers of packages updates > - Support for extra Yum options including enabling and disabling repos, > running from the cache > - Optional Warning on non-security updates > - Optional Critical alerting on any package > - Timeout > - Verbosity > - Less false package alerts (the old plugin just used to misleading say > the O/S needed updates when yum failed for any reason at all), including > proper error feedback and a switch for lock handling to not raise an > alert like if somebody is running yum interactively at the same time. > > > You can download the plugin here: > > http://www.nagiosexchange.org/cgi-bin/page.cgi?g=Detailed%2F2577.html;d= > 1 > > (you may need to copy and paste that link if your mail client > misinterprets the link) > > As ever, feedback is welcome, and development will continue if needed > for extra switches and features. > This should also work with Fedora or another RPM based distros that uses > yum as it's package management system but I've not tested it outside > RHEL/CentOS so feedback is welcome there too. > > > On a related note, I'm also quite interested in people's experiences of > updating and maintaining RedHat based systems especially with regards to > security. I spoke to a few people and they basically don't follow > security vulnerabilities and don't patch which ties in with my > experiences and what I've seen of other people's systems too which is > very disappointing. Hopefully this will make it easier to automatically > track and keep on top of security updates for those of us who have > RedHat Enterprise Linux 5 or later or equivalent. > > > Thanks > > -h > > -- > Hari Sekhon > > > > - > This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't > miss this year's exciting event. There's still time to save $100. > Use priority code J8TL2D2. > http://ad.doubleclick.net/clk;19875767
Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts
The latest version now works fine on my CentOS 5.1 boxes. Now all we need is a version which works with python 2.3 so I can check our CentOS / RHEL 4 boxes. Cheers, Phil -- Phil Randal Networks Engineer Herefordshire Council Hereford, UK -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Randal, Phil Sent: 30 April 2008 15:30 To: Hari Sekhon; Nagios Users mailinglist Subject: Re: [Nagios-users] Announce: Check_Yum for RedHat/CentOS serverpackagealerts # ./check_yum -vvv setting plugin timeout to 30 seconds running command: /usr/bin/yum --security check-update Returncode: '0' Output: 'Loading "security" plugin Loading "priorities" plugin Loading "protectbase" plugin Loading "installonlyn" plugin Loading "dellsysidplugin" plugin Setting up repositories Reading repository metadata in from local files Reducing city-fan.org repository for Red Hat Enterprise Linux (and clones) 5 (x86_64) to included packages only Finished Excluding Packages from Red Hat Enterprise 5 - RPMforge.net - dag Finished Reducing city-fan.org repository for Fedora Core Rawhide (x86_64) to included packages only Finished Limiting package lists to security relevant ones No packages needed, for security, 0 available 0 packages excluded due to repository priority protections 0 packages excluded due to repository protections ' Yum WARNING: Yum output signature does not match current known format, please make sure you have upgraded to the latest version of this plugin. If the problem persists, please contact the author for a fix Oh well, maybe one day it will work. :-p Phil -- Phil Randal Networks Engineer Herefordshire Council Hereford, UK -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Hari Sekhon Sent: 30 April 2008 13:46 To: Nagios Users mailinglist Subject: [Nagios-users] Announce: Check_Yum for RedHat/CentOS server packagealerts Hi, I've just released the Check_Yum plugin on NagiosExchange.org as the only one there seemed quite inadequate. Features of the new plugin (none of which are in the old plugin) include: - Differentiate between Security / normal package updates - Better output - numbers of packages updates - Support for extra Yum options including enabling and disabling repos, running from the cache - Optional Warning on non-security updates - Optional Critical alerting on any package - Timeout - Verbosity - Less false package alerts (the old plugin just used to misleading say the O/S needed updates when yum failed for any reason at all), including proper error feedback and a switch for lock handling to not raise an alert like if somebody is running yum interactively at the same time. You can download the plugin here: http://www.nagiosexchange.org/cgi-bin/page.cgi?g=Detailed%2F2577.html;d= 1 (you may need to copy and paste that link if your mail client misinterprets the link) As ever, feedback is welcome, and development will continue if needed for extra switches and features. This should also work with Fedora or another RPM based distros that uses yum as it's package management system but I've not tested it outside RHEL/CentOS so feedback is welcome there too. On a related note, I'm also quite interested in people's experiences of updating and maintaining RedHat based systems especially with regards to security. I spoke to a few people and they basically don't follow security vulnerabilities and don't patch which ties in with my experiences and what I've seen of other people's systems too which is very disappointing. Hopefully this will make it easier to automatically track and keep on top of security updates for those of us who have RedHat Enterprise Linux 5 or later or equivalent. Thanks -h -- Hari Sekhon - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/j avaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/j avaone ___ Nagios-users mailing list Nagios-users@lists.sourceforge.net