Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

Report TLS/SSL weak cipher suites vulnerability using Nagios

https://support.nagios.com/forum/viewtopic.php?t=58074

Page 1 of 1

Report TLS/SSL weak cipher suites vulnerability using Nagios

Posted: Fri Apr 03, 2020 12:25 pm
by kaushalshriyan
Hi,

I am running Nagios Core 4.4.5 on CentOS Linux release 7.7.1908 (Core). I have a specific question regarding TLS/SSL Cipher Suites vulnerability. Is there a way to detect any cipher suites vulnerability using Nagios Core Plugin and send alert notifications mentioning that the below cipher suites are weak reported by https://www.ssllabs.com/ssltest/ and https://testssl.sh/ testing tools.

For example below are the weak cipher suites reported

Weak Cipher Suites

Code: Select all

AES128-GCM-SHA256
AES128-SHA256
AES256-GCM-SHA384
AES256-SHA256
ECDHE-RSA-AES128-SHA256
ECDHE-RSA-AES256-SHA384
For example below are the strong cipher suites reported

Strong Cipher Suites

Code: Select all

ECDHE-ECDSA-AES128-GCM-SHA256
ECDHE-RSA-AES128-GCM-SHA256
ECDHE-ECDSA-AES128-SHA256
ECDHE-ECDSA-AES256-GCM-SHA384
ECDHE-RSA-AES256-GCM-SHA384
ECDHE-ECDSA-AES256-SHA384
Nagios version running

Code: Select all

/usr/local/nagios/bin/nagios -v /usr/local/nagios/etc/nagios.cfg

Nagios Core 4.4.5
Copyright (c) 2009-present Nagios Core Development Team and Community Contributors
Copyright (c) 1999-2009 Ethan Galstad
Last Modified: 2019-08-20
License: GPL

Website: https://www.nagios.org
Reading configuration data...
   Read main config file okay...
   Read object config files okay...

Running pre-flight check on configuration data...

Checking objects...
	Checked 285 services.
	Checked 30 hosts.
	Checked 1 host groups.
	Checked 0 service groups.
	Checked 22 contacts.
	Checked 9 contact groups.
	Checked 39 commands.
	Checked 5 time periods.
	Checked 0 host escalations.
	Checked 0 service escalations.
Checking for circular paths...
	Checked 30 hosts
	Checked 0 service dependencies
	Checked 0 host dependencies
	Checked 5 timeperiods
Checking global event handlers...
Checking obsessive compulsive processor commands...
Checking misc settings...

Total Warnings: 0
Total Errors:   0

Things look okay - No serious problems were detected during the pre-flight check
Any help will be highly appreciated and thanks in advance. I look forward to hearing from you.

Best Regards,

Kaushal

Re: Report TLS/SSL weak cipher suites vulnerability using Na

Posted: Fri Apr 03, 2020 4:36 pm
by cdienger
I didn't find anything specific for this, but I did find a couple of interesting ones that may help you either directly or to create a plugin that will provide what you're looking for:

https://exchange.nagios.org/directory/P ... ls/details
https://matteocorti.github.io/check_ssl_cert/
https://exchange.nagios.org/directory/P ... le/details

Re: Report TLS/SSL weak cipher suites vulnerability using Na

Posted: Fri Apr 03, 2020 11:19 pm
by kaushalshriyan
Thanks cdienger for the reply and much appreciated

Re: Report TLS/SSL weak cipher suites vulnerability using Na

Posted: Mon Apr 06, 2020 2:58 pm
by cdienger
Glad to help. If you do end up writing a plugin for this, feel free to upload it to exchange.nagios.org to help others :)
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited