I suppose at least a short description is in order.
The script looks for "sslchain" in you hosts.cfg file. If just sslchain is
there it will use the host name for the certificate, if you don't want to
use the host name use "sslchain=<url to check>".
It's meant to run as an external script, I only run it one a day, tasks.cfg
stanza looks something like:
[sslchain]
ENVFILE /usr/local/xymon/server/etc/xymonserver.cfg
CMD /usr/local/xymon/server/ext/InterCertCheck/CheckCert.py -c
/usr/local/xymon/server/ext/InterCertCheck/CheckCert.cfg
LOGFILE $XYMONSERVERLOGS/CheckCert.log
INTERVAL 1440m
You may need to customize some of the stuff in CheckCert.cfg to match you
installation. Some of the entries in CheckCert.cfg may be debugging entries
and not be "live".
Let me know if you have any other questions.
Thanks,
Larry Barber
▸ quoted from Larry Barber
On Wed, Aug 29, 2012 at 10:09 AM, Larry Barber <user-6ef9c2864140@xymon.invalid> wrote:
I wrote a script a while back that does what your looking for. I've
attached it to this email. Let me know if I can be of any help.
Thanks,
Larry Barber
On Fri, Aug 24, 2012 at 3:42 PM, Bruce Ferrell <user-24fbf1912cfe@xymon.invalid>wrote:
Hi all,
I just did a quick search to see if xymon has a way to check intermediate
certificates. The answer *seemed* to be "No, it's not possible... Then
someone showed me curl (7.22) doing it... Well, at least it throws a
descriptive message when a website with a "bad" intermediate cert is hit.
Has anyone gotten this test to work or should I continue to work on a
patch for this to submit?
Inquiring minds want to know
Bruce Ferrell
______________________________**
Xymon at xymon.com<