Guys i now have to encrypt my passwords for centos. They have to be stored in /etc/passwords/file.
1. Does anyone know how its done?
Questions for nagios itself:
NOTE for the sake of brevity, "nagios" includes Nagios core as well.
2.Will there be any adverse affects to nagios if I have to encrypt Centos passwords?
3. 2.Will there be any adverse affects to nagios if I have to encrypt Nagios passwords?
How do you encrypt magios passwords?
How do I force users to change passwords after a certain age.
How do I force password complexity rules?
It's a Bird, it's a plane, is Nagios encryped passwords!
It's a Bird, it's a plane, is Nagios encryped passwords!
Proudly running:
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
-
sreinhardt
- -fno-stack-protector
- Posts: 4366
- Joined: Mon Nov 19, 2012 12:10 pm
Re: It's a Bird, it's a plane, is Nagios encryped passwords!
Let's start at the top here, what exact form of passwords do you need to encrypt and if I may, why? As some base information for you, the following passwords are already encrypted or hashed.
/etc/passwd / /etc/shadow - these are the local(ssh/console) users and passwords for the cent system
various htpasswd files - These are used for nagvis, bpi and nagios core/ccm interface
postgres passwords - These are used for ALL XI interface users, and are hashed within the database itself
I'm honestly not sure what other passwords you would like to encrypt, unless you mean to encrypt remote system passwords, which could be done through a couple different options off the top of my head, but let's confirm that's actually what you would like to do.
/etc/passwd / /etc/shadow - these are the local(ssh/console) users and passwords for the cent system
various htpasswd files - These are used for nagvis, bpi and nagios core/ccm interface
postgres passwords - These are used for ALL XI interface users, and are hashed within the database itself
I'm honestly not sure what other passwords you would like to encrypt, unless you mean to encrypt remote system passwords, which could be done through a couple different options off the top of my head, but let's confirm that's actually what you would like to do.
Nagios-Plugins maintainer exclusively, unless you have other C language bugs with open-source nagios projects, then I am happy to help! Please pm or use other communication to alert me to issues as I no longer track the forum.
Re: It's a Bird, it's a plane, is Nagios encryped passwords!
We cave to make the root password and any user paswords encrypted for the OS.
For my team, this would include the snmpttuser pass and stuff.
based on what you posted, that means that the passwords used by Nagios (and core) are encrypted by default?
For my team, this would include the snmpttuser pass and stuff.
based on what you posted, that means that the passwords used by Nagios (and core) are encrypted by default?
Proudly running:
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
-
sreinhardt
- -fno-stack-protector
- Posts: 4366
- Joined: Mon Nov 19, 2012 12:10 pm
Re: It's a Bird, it's a plane, is Nagios encryped passwords!
All passwords for local user accounts, such as root and snmptt, are hashed per standard linux os password storage in /etc/passwd and /etc/shadow. These are one way hashing functions, and generally considered secure. What additional encryption or hashing are you planning on adding?
Nagios-Plugins maintainer exclusively, unless you have other C language bugs with open-source nagios projects, then I am happy to help! Please pm or use other communication to alert me to issues as I no longer track the forum.
Re: It's a Bird, it's a plane, is Nagios encryped passwords!
Sorry for the long reply. I am good with the secure passwords. I just told the auditors that we have 5 different passwords for each server. They just all are spelled the same". boom all set.
What I still need to know is if I can set passwords to expire at a certain time and then prompt the user to change it.
What I still need to know is if I can set passwords to expire at a certain time and then prompt the user to change it.
Proudly running:
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
-
slansing
- Posts: 7698
- Joined: Mon Apr 23, 2012 4:28 pm
- Location: Travelling through time and space...
Re: It's a Bird, it's a plane, is Nagios encryped passwords!
In nagios XI? Not currently, that would take some finessing as they are held within postres database tables.
Re: It's a Bird, it's a plane, is Nagios encryped passwords!
ok yall can lock it. but beware i have nsti and snmptt questions inbound.
Proudly running:
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion
NagiosXI 5.4.12 2 node Prod Env 2500 hosts, 13,000 services
Nagiosxi 5.5.7(test env) 2500 hosts, 13,000 services
Nagios Logserver 2 node Prod Env 500 objects sending
Nagios Network Analyser
Nagios Fusion