Good afternoon I have a client installed NRPE Nagios to monitor v2.14,
The fact is that my server vulnerability scanning with Nessus and me indicates that port 5666 is vulnerable
SSL RC4 Cipher Suites Supported
Here is the list of weak SSL ciphers supported by the remote server :
Low Strength Ciphers (< 56-bit key)
TLSv1
EXP-ADH-DES-CBC-SHA Kx=DH(512) Au=None Enc=DES-CBC(40) Mac=SHA1 export
EXP-ADH-RC4-MD5 Kx=DH(512) Au=None Enc=RC4(40) Mac=MD5 export
TLSv1
ADH-RC4-MD5 Kx=DH Au=None Enc=RC4(128) Mac=MD5
5666 / tcp / nrpe
not how to eliminate this error is that the nagios is the service that uses that port.
Please provide me your comments.
nrpe in centos
-
- Skynet Drone
- Posts: 2620
- Joined: Wed Feb 11, 2015 1:56 pm
Re: nrpe in centos
Work is being done to provide better security for nrpe, it's not done yet:
https://github.com/NagiosEnterprises/nrpe/issues/4
https://github.com/NagiosEnterprises/nrpe/issues/4