I can only agree. I do all my checking with ssh and it works wonderfully. Every monitored machine has a 'nagios' user that is used to log on to it via an ssh key where only the nagios box has the privkey to. In the pubkey I use the 'command' directive to force a sanity check on every command that is passed via ssh. This command compares what's in the SSH_ORIGINAL_COMMAND environment variable to a list of allowed commands. If it passes it get executed, otherwise nagios errors. It's a simple perl script I wrote. So the authorized_keys file on all hosts for user 'nagios' looks like that: from="{nagioshost}",command="/usr/local/nagios/home/acl_agent",no-port-forwarding,no-X11-forwarding,no-agent-forwarding ssh-dss..key stuff This way the key can only be used from the nagios box for exactly the commands that the plugins need to run. acl_agent is the perl script and the acl's themselves are maintained via cfengine. <div>On 3/30/06, Bill Jacqmein <<a href="mailto:wrjacqmein@gmail.com">wrjacqmein@gmail.com</a>> wrote: <blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Im a bigger fan of check by ssh for unix like OSes. On 3/29/06, Randall Perry < <a href="mailto:listsub@systame.com">listsub@systame.com</a>> wrote: > Got it running, but am having trouble with SSL, which I'll detail in a > separate post. > > > > Randall Perry wrote: > > I'm new to Nagios. Got it configured and running on my monitoring box. > > Tried installing NRPE on a remote host running Mac OSX but couldn't get > > it to run as daemon or through xinetd. > > > > There seem to be several methods to check remote hosts including SSH > > plugins. > > > > Just wondering what other's method of choice is for this -- especially > > on OSXS. > > > > TIA > > > > > -- > Randall Perry > sysTame > > Xserve Web Hosting/Co-location/Leasing > QuickTime Streaming > Mac Consulting/Sales > > <a href="http://www.systame.com/">http://www.systame.com/</a> > > > > > ------------------------------------------------------- > This SF.Net email is sponsored by xPML, a groundbreaking scripting language > that extends applications into web and mobile media. Attend the live webcast > and join the prime developer group breaking into this new coding territory! > <a href="http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642"> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=110944&bid=241720&dat=121642</a> > _______________________________________________ > Nagios-users mailing list > <a href="mailto:Nagios-users@lists.sourceforge.net"> Nagios-users@lists.sourceforge.net</a> > <a href="https://lists.sourceforge.net/lists/listinfo/nagios-users">https://lists.sourceforge.net/lists/listinfo/nagios-users</a> > ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. > ::: Messages without supporting info will risk being sent to /dev/null > ------------------------------------------------------- This SF.Net email is sponsored by xPML, a groundbreaking scripting language that extends applications into web and mobile media. Attend the live webcast and join the prime developer group breaking into this new coding territory! <a href="http://sel.as-us.falkag.net/sel?cmdlnk&kid0944&bid$1720&dat1642"> http://sel.as-us.falkag.net/sel?cmdlnk&kid0944&bid$1720&dat1642</a> _______________________________________________ Nagios-users mailing list <a href="mailto:Nagios-users@lists.sourceforge.net">Nagios-users@lists.sourceforge.net </a> <a href="https://lists.sourceforge.net/lists/listinfo/nagios-users">https://lists.sourceforge.net/lists/listinfo/nagios-users</a> ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null </blockquote></div> -- stucky