I suppose at least a short description is in order.
The script looks for "sslchain" in you hosts.cfg file. If just sslchain is there it will use the host name for the certificate, if you don't want to use the host name use "sslchain=<url to check>".
It's meant to run as an external script, I only run it one a day, tasks.cfg stanza looks something like:
[sslchain] ENVFILE /usr/local/xymon/server/etc/xymonserver.cfg CMD /usr/local/xymon/server/ext/InterCertCheck/CheckCert.py -c /usr/local/xymon/server/ext/InterCertCheck/CheckCert.cfg LOGFILE $XYMONSERVERLOGS/CheckCert.log INTERVAL 1440m
You may need to customize some of the stuff in CheckCert.cfg to match you installation. Some of the entries in CheckCert.cfg may be debugging entries and not be "live".
Let me know if you have any other questions.
Thanks, Larry Barber
On Wed, Aug 29, 2012 at 10:09 AM, Larry Barber <lebarber at gmail.com> wrote:
I wrote a script a while back that does what your looking for. I've attached it to this email. Let me know if I can be of any help.
Thanks, Larry Barber
On Fri, Aug 24, 2012 at 3:42 PM, Bruce Ferrell <bferrell at baywinds.org>wrote:
Hi all,
I just did a quick search to see if xymon has a way to check intermediate certificates. The answer *seemed* to be "No, it's not possible... Then someone showed me curl (7.22) doing it... Well, at least it throws a descriptive message when a website with a "bad" intermediate cert is hit.
Has anyone gotten this test to work or should I continue to work on a patch for this to submit?
Inquiring minds want to know
Bruce Ferrell ______________________________**_________________ Xymon mailing list Xymon at xymon.com http://lists.xymon.com/**mailman/listinfo/xymon<http://lists.xymon.com/mailman/listinfo/xymon>