[Pkg-nagios-devel] Bug#848343: ITP: nrpe-ng -- The next generation Nagios Remote Plugin Executor

Chris Boot bootc at debian.org
Fri Dec 16 15:24:23 UTC 2016 

On 16/12/16 12:32, Sebastiaan Couwenberg wrote:
> On 12/16/2016 01:02 PM, Chris Boot wrote:
>> This is a rewrite from the ground up of NRPE. This set of programs
>> allows you to run Nagios check scripts on a remote host.
>>
>> Its main selling points are:
>> - nearly drop-in NRPE replacement
>> - real, proper TLS/SSL with keys/certificates
>> - safer command-line argument passing
>> - support for named command-line arguments
>>
>> I plain to maintain both the Debian package and continue upstream
>> development with a colleague for my employer, Tiger Computing, on
>> company time.
> 
> Will you maintain this package under the pkg-nagios umbrella?

Hi Sebastian,

It had not occurred to me to do so, but I don't see any reason not to
particularly. I've added pkg-nagios-devel to the Cc list; does anyone on
that list have any strong feelings either way? If not, I propose that we
might as well do so.

> And how does the TLS/SSL support compare to the reworked TLS/SSL support
> in NRPE 3.x?

I was unaware of NRPE 3.x until you mentioned it. I started work on
nrpe-ng a couple of years ago for my own use before I filed this ITP. It
appears as though the TLS/SSL support is similar: both the server and
the client/plugin check each others' certificates and hostnames for
validity, and only modern crypto is allowed.

I guess the main difference between the two programs now is that mine
permits argument passing still, while this is disabled in nagios-nrpe.
Mine is also written using Python rather than C, and the protocol is
effectively just an HTTP request wrapped in SSL so it's potentially
proxiable, for example.

Regards,
Chris

-- 
Chris Boot
bootc at debian.org
GPG: 8467 53CB 1921 3142 C56D  C918 F5C8 3C05 D9CE EEEE

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 949 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-nagios-devel/attachments/20161216/08393d69/attachment.sig>

More information about the Pkg-nagios-devel mailing list