[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [xymon] sslcert
- To: xymon (at) xymon.com
- Subject: Re: [xymon] sslcert
- From: "Xymon User in Richmond" <hobbit (at) epperson.homelinux.net>
- Date: Thu, 20 Jan 2011 14:00:08 -0500
- Importance: Normal
- References: <1295462714.2946.8.camel (at) Nokia-N900> <2685F464D7BC7C4DA88845C97AEB5F533A9AEA37B1 (at) qtomaexmbm22.AD.QINTRA.COM> <4D374E08.8030908 (at) makelofine.org> <2685F464D7BC7C4DA88845C97AEB5F533A9AEA37BC (at) qtomaexmbm22.AD.QINTRA.COM> <2e861f8548e958015d7925cb9a39ba41.squirrel (at) epperson.homelinux.net> <4D387246.6040502 (at) makelofine.org>
- User-agent: SquirrelMail/1.4.21-1.fc14
On Thu, January 20, 2011 12:35, dOCtoR MADneSs wrote:
> Le 20/01/2011 17:52, Xymon User in Richmond a écrit :
>>
>> On Thu, January 20, 2011 11:10, Root, Paul wrote:
>>> That's a lot of stuff on each line. I've never done multiple URLs on
>>> a single host. What does that do for you?
>>>
>>> I put the URL on the line of the server.
>>>
>>> Is tata by chance the real host of one of the URLs you put on the
>>> toto line?
>>>
>>>
>>> Paul Root Lead Internet Systems Eng Qwest Network Services
>>>
>>>
>>> -----Original Message----- From: dOCtoR MADneSs
>>> [mailto:doctor (at) makelofine.org] Sent: Wednesday, January 19, 2011 2:48
>>> PM To: xymon (at) xymon.com Subject: Re: [xymon] sslcert
>>>
>>> Le 19/01/2011 20:06, Root, Paul a écrit :
>>>> What do your lines in hosts.cfg look like for these two servers?
>>>> -----Original Message----- From: dOCtoR MADneSs
>>>> [mailto:doctor (at) makelofine.org] Sent: Wednesday, January 19, 2011
>>>> 12:45 PM To: xymon (at) xymon.com Subject: [xymon] sslcert
>>>>
>>>> Hi
>>>>
>>>> My xymon server has a strange behaviour.I have a host called tata
>>>> running SSLed services. The tests are all OK. But when I go to
>>>> sslcert test page, I see the information from another host (called
>>>> toto). Their SSL certificates are differents, and all my other
>>>> hosts have their own SSL informations. The host toto is the xymon
>>>> server itself, running xymon-4.3.0-beta3 client and server. The
>>>> host 'tata' is running xymon 4.2.2.
>>>>
>>>> Thank for any help.
>>>>
>>>> Regards, Damien
>>> Here is the hosts.cfg content : 127.0.0.1 toto # bbd ftp
>>> http://wikileaks.makelofine.org https://wikileaks.makelofine.org
>>> http://www.raclo.fr http://www.pleinphares.fr
>>> http://www.xenon-tuning.fr http://www.hoodmark.fr
>>> http://www.chasseresse.com https://mailadmin.makelofine.org
>>> https://www.makelofine.org http://www.skapiso.com
>>> http://www.galey-ariege.fr http://photos.makelofine.org
>>> http://www.warcho.net https://test.makelofine.org
>>> dns=galey-ariege.fr,skapiso.com,loozah.com,manurevah.com,loloack.com,
>>> make lofine.org smtp ssh imap imaps pop3 smtps pop3s apt
>>> apache=http://localhost/server-status?auto libs bind postfix mysql
>>> hardware ntpq
>>> TRENDS:*,!la,vmstat:vmstat1|vmstat2|vmstat3|vmstat4|vmstat5,apache:ap
>>> ache
>>> |apache1|apache2|apache3,mysql:mysql|mysqlslow|mysqlqueries|mysqltabl
>>> es|m
>>> ysqlopens|mysqlflush|mysqlquestions,hardware:hardware|fans|voltages,m
>>> ailg
>>> raph:mailgraph-rejected|mailgraph-local|mailgraph-amavis|mailgraph-sp
>>> amd|
>>> mailgraph-postgrey|mailgraph-postgrey-passed|mailgraph-loglines|mailg
>>> raph -runtime
>>>
>>> 1.2.3.4 tata # DESCR:"server:Serveur Linux" smtp imap imaps bind pop3
>>> pop3s postfix libs
>>> TRENDS:*,inode,ntpstat,vmstat:vmstat1|vmstat2|vmstat3|vmstat4|vmstat5
>>> ,dis
>>> k:disk|iostat-disk|iostat-part,mailgraph:mailgraph-rejected|mailgraph
>>> -loc
>>> al|mailgraph-amavis|mailgraph-spamd|mailgraph-postgrey|mailgraph-post
>>> grey
>>> -passed|mailgraph-loglines|mailgraph-runtime,mysql:mysql|mysqlslow|my
>>> sqlq ueries|mysqltables|mysqlopens|mysqlflush|mysqlquestions samba
>>> ntpq ssh
>>>
>>>
>> So, the real root top-posts. ;)
>>
>> Yeah, that looks funny to me, too. Using a bb-hosts/hosts.cfg line to
>> test URLs not on that server is probably a novel way to test external
>> stuff and group it all together. toto's sslcert page should be showing
>> four external certs plus the local imaps and pop3s certs. Assuming
>> that's really all one line--I don't see any "\" escapes.
>>
>> But the issue reported is with a different line. tata should be
>> showing its imap2 and pop3s certs, unless they're the same in which
>> case it would be listed once. I assume we're quite certain that toto
>> and tata don't use the same pops/imaps certs.
>>
>> Which certs from toto is tata reporting? Just its own pops/imaps, or
>> all of them including the ones from the external https URLs? I assume
>> we're quite certain that toto and tata don't use the same pops/imaps
>> certs.
>>
>
> tata reports SSL certs from toto for imaps and pop3s. Actually, tata does
> not run any other SSL service.
>
Bottom-post to top-post and back again gets kinda weird. But I try to go
with the flow (ever since one of our crustier participants unloaded on me
for grousing).
The tata thing is also pretty weird. I've tried mucking around with a
sandbox setup trying to replicate it, and can't find anything short of the
two host names resolving to the same IP. I presume the conn data for tata
is showing the correct IP for that machine?