check_http which version of TLS is used

This support forum board is for support questions relating to Nagios XI, our flagship commercial network monitoring solution.
Locked
brdr
Posts: 312
Joined: Mon Jun 02, 2014 12:49 pm

check_http which version of TLS is used

Post by brdr »

Hi,

We have XI 2014R2.7, plugin version 2.0.3.

Do you know what version of TLSv1 is used in the 'check_http' program?

Presently we have need to use TLS v1.2 . When we use this command we pass --ssl=1. Do you know what version of TLSv1 is used when using --ssl=1? Is it 1.0, 1.1,1.2?

Gracias
Top
tmcdonald
Posts: 9117
Joined: Mon Sep 23, 2013 8:40 am

Re: check_http which version of TLS is used

Post by tmcdonald »

Looking at the check_http source I see the following: Valid values for SSL Version are 1 (TLSv1), 2 (SSLv2) or 3 (SSLv3)

Most likely we are using TLSv1.0 but I will have a dev confirm.
Former Nagios employee
Top
jfrickson

Re: check_http which version of TLS is used

Post by jfrickson »

If you set --ssl=1 it passes TLSv1_client_method() to SSL_CTX_new. So it will currently only do TLSv1. We have a least one bug report open to fix this.
Top
brdr
Posts: 312
Joined: Mon Jun 02, 2014 12:49 pm

Re: check_http which version of TLS is used

Post by brdr »

okie. thanks for the follow-up. Please close.
Top
Locked

Return to “Nagios XI”