Mercurial Mercurial > zabbix-scripts / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
conf/openssl.conf
author Tomas Zeman <tzeman@volny.cz>
Thu, 16 Aug 2018 14:39:42 +0200
changeset 34 b685225d4966
parent 28 7cccb5cf738b
permissions -rw-r--r--
conf/openssl.conf: Certificate expiration via network connect
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
28
7cccb5cf738b conf/openssl.conf: certificate expiration checks
Tomas Zeman <tzeman@volny.cz>
parents:
diff changeset 
     1
 
# Certificate monitoring
7cccb5cf738b conf/openssl.conf: certificate expiration checks
Tomas Zeman <tzeman@volny.cz>
parents:
diff changeset 
     2
 












7cccb5cf738b
conf/openssl.conf: certificate expiration checks



Tomas Zeman <tzeman@volny.cz>


parents: 

diff
changeset




     3


# Number of seconds till certificate expires













7cccb5cf738b
conf/openssl.conf: certificate expiration checks



Tomas Zeman <tzeman@volny.cz>


parents: 

diff
changeset




     4


# Parameters: $1 - path to cert file













7cccb5cf738b
conf/openssl.conf: certificate expiration checks



Tomas Zeman <tzeman@volny.cz>


parents: 

diff
changeset




     5


UserParameter=cert.x509.expire[*],openssl x509 -in $1 -enddate|grep notAfter|awk -F= '{print $$2}'|while read l; do t=`date -d"$l" +%s`; n=`date +%s`; echo `expr $t - $n`; done








34






b685225d4966
conf/openssl.conf: Certificate expiration via network connect



Tomas Zeman <tzeman@volny.cz>


parents: 
28

diff
changeset




     6


# Parameters: $1 - host, $2 - port













b685225d4966
conf/openssl.conf: Certificate expiration via network connect



Tomas Zeman <tzeman@volny.cz>


parents: 
28

diff
changeset




     7


UserParameter=cert.net.expire[*],echo | openssl s_client -connect $1:$2 2>/dev/null| openssl x509 -noout -enddate | grep notAfter|awk -F= '{print $$2}'|while read l; do t=`date -d"$l" +%s`; n=`date +%s`; echo `expr $t - $n`; done













b685225d4966
conf/openssl.conf: Certificate expiration via network connect



Tomas Zeman <tzeman@volny.cz>


parents: 
28

diff
changeset




     8


# Parameters: $1 - host, $2 - port, $3 - protocol













b685225d4966
conf/openssl.conf: Certificate expiration via network connect



Tomas Zeman <tzeman@volny.cz>


parents: 
28

diff
changeset




     9


UserParameter=cert.starttls.expire[*],echo | openssl s_client -connect $1:$2 -starttls $3 2>/dev/null| openssl x509 -noout -enddate | grep notAfter|awk -F= '{print $$2}'|while read l; do t=`date -d"$l" +%s`; n=`date +%s`; echo `expr $t - $n`; done








28






7cccb5cf738b
conf/openssl.conf: certificate expiration checks



Tomas Zeman <tzeman@volny.cz>


parents: 

diff
changeset




    10
















zabbix-scripts