Giving up on NRPE, willing to try check_by_ssh...
Flak Magnet
flakmagnet at tabletop-battlezone.com
Fri May 14 16:31:25 CEST 2004
On Friday 14 May 2004 09:53 am, Paul L. Allen wrote:
> Flak Magnet writes:
> > Yes, from what I've seen primarily because a vulnerability on one machine
> > becomes a vulnerability on all pk authenticated machines.
>
> Not quite. If your monitoring machine is vulnerable to external attack
> X but your monitored machines are not (things are usually the other
> way around with monitored machines running additional services to the
> ones run on the monitoring machine), and external attack X allows the
> attacker to become the Nagios user then he can use the PK vulnerability
> to get onto other machines as the Nagios user.
Exactly what I meant, though not what I said. So much for cliff's notes on
this list. *grin*
+++SNIPPED the rest, but thanks for the overview...+++
--
-- Tim "Flak Magnet"
http://geocities.com/flakmagnet72/
Never explain --- your friends do not need it
and your enemies will not believe you anyway.
— Elbert Hubbard
-------------------------------------------------------
This SF.Net email is sponsored by: SourceForge.net Broadband
Sign-up now for SourceForge Broadband and get the fastest
6.0/768 connection for only $19.95/mo for the first 3 months!
http://ads.osdn.com/?ad_id%62&alloc_ida84&op=click
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue.
::: Messages without supporting info will risk being sent to /dev/null
More information about the Users
mailing list