check_xi_deface
Posted: Tue Nov 10, 2015 6:30 pm
The documentation for website defacement:
https://assets.nagios.com/downloads/nag ... ios-XI.pdf
Should note in Step 3 that if you are entering only one search term you need to do a CRLF after that word to generate the pipe symbol in the $ARG1$ field after your word or else the check will always pass.
This makes me wonder if you entered a string of words to search for and did not enter a CRLF after the last one if the check would fail if that word was found. Similarly if you manually edited or created the check and did not enter the pipe symbol after the last word to search for in $ARG1$. I did not test this out.
If you want to update this page:
https://labs.nagios.com/2014/06/26/moni ... s-xi-2014/
it's "1." under Defacement Content Locator
Took me longer than I care to admit to figure this one out.
https://assets.nagios.com/downloads/nag ... ios-XI.pdf
Should note in Step 3 that if you are entering only one search term you need to do a CRLF after that word to generate the pipe symbol in the $ARG1$ field after your word or else the check will always pass.
This makes me wonder if you entered a string of words to search for and did not enter a CRLF after the last one if the check would fail if that word was found. Similarly if you manually edited or created the check and did not enter the pipe symbol after the last word to search for in $ARG1$. I did not test this out.
If you want to update this page:
https://labs.nagios.com/2014/06/26/moni ... s-xi-2014/
it's "1." under Defacement Content Locator
Took me longer than I care to admit to figure this one out.