search

sni / mod_gearman

Distribute Naemon Host/Service Checks & Eventhandler with Gearman Queues. Host/Servicegroups affinity included.
http://www.mod-gearman.org
GNU General Public License v3.0
122 stars 42 forks source link

Encryption Piece from Server(host) to worker node #30

Closed axisfission closed 11 years ago

axisfission commented 12 years ago

Here is a little about the issue I have experienced with the encryption piece of gearmand and worker. Could not set encryption in either config. I would set encryption=on Set the key=foofoofoof00

On both neb and worker files.

Tried to even set the keyfile=/path/to/file

I kept receiving encryption errors on the worker node log file.

The only way I was to set encryption was to set it in the path of the broker string in nagios.conf

This is RHEL 5.8 x86_64 I went through the documentation supplied @ http://labs.consol.de/nagios/mod-gearman/ Again I have a work around or if that is how it is supposed to work. But the config files may be mis-leading if that is the case.

mod_gearman_neb.conf file (server)

Default is On.

encryption=yes

encryption=no

A shared password which will be used for

encryption of data pakets. Should be at least 8

bytes long. Maximum length is 32 characters.

key=foofoofoof00

The shared password will be read from this file.

Use either key or keyfile. Only the first 32

characters will be used.

keyfile=/path/to/secret.file

keyfile=/usr/local/nagios/etc/secret

mod_gearman_worker.conf encryption=yes

encryption=no

A shared password which will be used for

encryption of data pakets. Should be at least 8

bytes long. Maximum length is 32 characters.

key=yesthisshouldbechange

The shared password will be read from this file.

Use either key or keyfile. Only the first 32

characters will be used.

keyfile=/path/to/secret.file

keyfile=/usr/local/nagios/etc/secret

Nagios.cfg from host node broker_module=/usr/lib64/mod_gearman/mod_gearman.o server=localhost keyfile=/usr/local/nagios/etc/secret eventhandler=yes hosts=yes services=yes

Package set installed: gearmand-server-0.25-1 gearmand-0.25-1 mod_gearman-1.2.0-1 gearmand-debuginfo-0.25-1 gearmand-devel-0.25-1

sni commented 12 years ago

Both should work, even mixed. Setting key=... on the worker and using keyfile=... in the neb. No matter if its set from commandline or config file as long as the key is the same. It's not supported to specify key= and keyfile= in the same config or at least you will get weird results.