Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

check_http which version of TLS is used

https://support.nagios.com/forum/viewtopic.php?t=35310

Page 1 of 1

check_http which version of TLS is used

Posted: Tue Oct 20, 2015 10:00 am
by brdr
Hi,

We have XI 2014R2.7, plugin version 2.0.3.

Do you know what version of TLSv1 is used in the 'check_http' program?

Presently we have need to use TLS v1.2 . When we use this command we pass --ssl=1. Do you know what version of TLSv1 is used when using --ssl=1? Is it 1.0, 1.1,1.2?

Gracias

Re: check_http which version of TLS is used

Posted: Tue Oct 20, 2015 2:19 pm
by tmcdonald
Looking at the check_http source I see the following: Valid values for SSL Version are 1 (TLSv1), 2 (SSLv2) or 3 (SSLv3)

Most likely we are using TLSv1.0 but I will have a dev confirm.

Re: check_http which version of TLS is used

Posted: Tue Oct 20, 2015 3:13 pm
by jfrickson
If you set --ssl=1 it passes TLSv1_client_method() to SSL_CTX_new. So it will currently only do TLSv1. We have a least one bug report open to fix this.

Re: check_http which version of TLS is used

Posted: Tue Oct 20, 2015 3:18 pm
by brdr
okie. thanks for the follow-up. Please close.
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited