Running Nagios under HTTPS

Marc Powell marc at ena.com
Mon Aug 8 20:06:06 CEST 2005
Previous message: Running Nagios under HTTPS
Next message: New Nagios UI Released!
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
http://slacksite.com/apache/certificate.html

"One unfortunate side-effect of the pass-phrased private key is that
Apache will ask for the pass-phrase each time the web server is started.
Obviously this is not necessarily convenient as someone will not always
be around to type in the pass-phrase, such as after a reboot or crash.
mod_ssl includes the ability to use an external program in place of the
built-in pass-phrase dialog, however, this is not necessarily the most
secure option either. It is possible to remove the Triple-DES encryption
from the key, thereby no longer needing to type in a pass-phrase. If the
private key is no longer encrypted, it is critical that this file only
be readable by the root user! If your system is ever compromised and a
third party obtains your unencrypted private key, the corresponding
certificate will need to be revoked. With that being said, use the
following command to remove the pass-phrase from the key:

$ openssl rsa -in server.key -out server.pem

"

You then use server.pem for SSLCertificateKeyFile. Works like a charm
for me.

--
Marc 

> -----Original Message-----
> From: nagios-users-admin at lists.sourceforge.net [mailto:nagios-users-
> admin at lists.sourceforge.net] On Behalf Of Edward Ford
> Sent: Monday, August 08, 2005 12:58 PM
> To: nagios-users at lists.sourceforge.net
> Subject: [Nagios-users] Running Nagios under HTTPS
> 
> If you get the answer to this watch out for DES3. I can't reboot my
Nagios
> without logging into the box, it will not come up all the way without
a
> passphrase. Don't do the DES3..
> 
> Eddie
> 
> 
> -----Original Message-----
> From: nagios-users-admin at lists.sourceforge.net
> [mailto:nagios-users-admin at lists.sourceforge.net]On Behalf Of Dixie
> Peterson
> Sent: Monday, August 08, 2005 1:52 PM
> To: nagios-users at lists.sourceforge.net
> Subject: [Nagios-users] Running Nagios under HTTPS
> 
> Hello!
> 
> I have a pretty decent Nagios 1.2 system up and running.  However, my
> manager would like to know if Nagios can run under https.  Can it?  If
> so, how would I go about setting it up?
> 
> Thanks!
> 
> Dixie
> 
> 
> 
> -------------------------------------------------------
> SF.Net email is Sponsored by the Better Software Conference & EXPO
> September 19-22, 2005 * San Francisco, CA * Development Lifecycle
> Practices
> Agile & Plan-Driven Development * Managing Projects & Teams * Testing
& QA
> Security * Process Improvement & Measurement *
http://www.sqe.com/bsce5sf
> _______________________________________________
> Nagios-users mailing list
> Nagios-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/nagios-users
> ::: Please include Nagios version, plugin version (-v) and OS when
> reporting
> any issue.
> ::: Messages without supporting info will risk being sent to /dev/null
> 
> 
> 
> 
> -------------------------------------------------------
> SF.Net email is Sponsored by the Better Software Conference & EXPO
> September 19-22, 2005 * San Francisco, CA * Development Lifecycle
> Practices
> Agile & Plan-Driven Development * Managing Projects & Teams * Testing
& QA
> Security * Process Improvement & Measurement *
http://www.sqe.com/bsce5sf
> _______________________________________________
> Nagios-users mailing list
> Nagios-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/nagios-users
> ::: Please include Nagios version, plugin version (-v) and OS when
> reporting any issue.
> ::: Messages without supporting info will risk being sent to /dev/null


-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null
Previous message: Running Nagios under HTTPS
Next message: New Nagios UI Released!
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the Users mailing list