NRPE/NSCA and SOAP/XML-RPC

[Jason Martin]

On Tue, Jan 31, 2006 at 12:00:05PM -0600, Ethan Galstad wrote:
> I was thinking that communication between the NRPE/NSCA servers and 
> their clients should be done using SOAP or XML-RPC.  Any thoughts on 
> this?
I'm in favor of standardized interfaces, especially if it can be
done with a cleartext interface -- all sorts of interesting ways
come up to talk to it.

> SSL to hide traffic (gSoap can handle this), but the traffic for NSCA 
> is encrypted differently to both prevent replay attacks and provide 
> some level of trust in the client.  Perhaps this means that it 
> doesn't make sense to use SOAP/XML-RPC for the NSCA addon?  Or 
> perhaps the entire SOAP message should be encrypted (as the non-SOAP 
> message is now) before being sent, which would mean that I would need 
> to write out the SOAP message myself, rather than using a library.
I'd suggest doing with a library, no sense reinventing the
wheel. The GPG libraries might be able to help you with the
encryption / trust part, and I think handling gpg keys is easier
than creating a new x509 CA.

-Jason Martin
-- 
This message is PGP/MIME signed.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 211 bytes
Desc: not available
URL: <https://www.monitoring-lists.org/archive/developers/attachments/20060131/3db05473/attachment.sig>