> I found a recent post on the nagios support forum but I do not have permission to access it, from its short description I got that "agents are falling back to packet version 2 when query an agent in version 4 by a plugin in version 3"
Googlebot can see it. From there: "The way the NRPE plugin negotiates the SSL version of the agent does generate a lot of messages in the remote server but if the checks does work, you can disable the message by changing the following option in the nrpe.cfg file to a 1. That should stop all logging for the agent." It's quite dissatisfying but it seems to say that the plugin's *version probing logic* causes invalid error messages on the agent, and if you don't like that you should have rsyslog filter out the invalid error messages. Not how I would structure the protocol but elsewhere it's said that commercial nagios is moving to HTTP and deprecating nrpe protocol so it's unlikely to be fixed. I wiresharked this for a bit and it does appear that *no* cleartext traffic is transiting the link. e.g.: 07:14:24.538748 IP 192.168.1.246.39798 > 192.168.1.43.5666: Flags [P.], seq 836:1901, ack 826, win 506, options [nop,nop,TS val 10310092 ecr 4249413257], length 1065 E..].g@.?.i. . . ..+.v." .&.e1.L....W...... ..Q..H......$..H ..h...&}...hk.!%./...z..#"..Gq.g...z!Bx..j].m<.0w'C.s..A..P&WFTci.9.. |.......E6.d......?..d.5..5...MU..:0.v./...\S.....&.X.?); So I believe it is not falling back to v2 and is actually using v3 with ssl. One suggestion says to add '-2' to the check_nrpe command but that seems like really bad advice to me (at least for anywhere where network security is a consideration). my config: ii nagios-nrpe-plugin 3.2.1-2 amd64 Nagios Remote Plugin Executor Plugin ii nagios-nrpe-server 4.0.3-1 amd64 Nagios Remote Plugin Executor Server So it appears that upstream is saying to do a workaround and it's wontfix on their end. Disappointing but not surprising. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1888184 Title: nagios-nrpe-server-4 is creating incorrect log spam To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nagios-nrpe/+bug/1888184/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
