[Pkg-nagios-devel] Bug#848343: ITP: nrpe-ng -- The next generation Nagios Remote Plugin Executor
bootc at debian.org
Fri Dec 16 15:24:23 UTC 2016
On 16/12/16 12:32, Sebastiaan Couwenberg wrote:
> On 12/16/2016 01:02 PM, Chris Boot wrote:
>> This is a rewrite from the ground up of NRPE. This set of programs
>> allows you to run Nagios check scripts on a remote host.
>> Its main selling points are:
>> - nearly drop-in NRPE replacement
>> - real, proper TLS/SSL with keys/certificates
>> - safer command-line argument passing
>> - support for named command-line arguments
>> I plain to maintain both the Debian package and continue upstream
>> development with a colleague for my employer, Tiger Computing, on
>> company time.
> Will you maintain this package under the pkg-nagios umbrella?
It had not occurred to me to do so, but I don't see any reason not to
particularly. I've added pkg-nagios-devel to the Cc list; does anyone on
that list have any strong feelings either way? If not, I propose that we
might as well do so.
> And how does the TLS/SSL support compare to the reworked TLS/SSL support
> in NRPE 3.x?
I was unaware of NRPE 3.x until you mentioned it. I started work on
nrpe-ng a couple of years ago for my own use before I filed this ITP. It
appears as though the TLS/SSL support is similar: both the server and
the client/plugin check each others' certificates and hostnames for
validity, and only modern crypto is allowed.
I guess the main difference between the two programs now is that mine
permits argument passing still, while this is disabled in nagios-nrpe.
Mine is also written using Python rather than C, and the protocol is
effectively just an HTTP request wrapped in SSL so it's potentially
proxiable, for example.
bootc at debian.org
GPG: 8467 53CB 1921 3142 C56D C918 F5C8 3C05 D9CE EEEE
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 949 bytes
Desc: OpenPGP digital signature
More information about the Pkg-nagios-devel