Re: [bitfolk] Check your certificates!

Hello, On Sat, May 30, 2020 at 05:31:22PM +0100, Paul Stimpson wrote: Nasty. I would be interested in a Nagios/Icinga plugin that will test all intermediate certs. We have the existing check_https but I believe that only checks the validity of the endpoint certificate. https://tools.bitfolk.com/wiki/Monitoring#Setup As an aside, I am persuaded by the move to automated Let's Encrypt-style certificates with short validity. Automatically changing the certificate every 3 months seems more secure and reliable than a 2 year cert which also offers more scope for humans forgetting how to do something they only do manually once every 24 months. Sadly it is not always possible what with the large range of devices that use certs. Things that aren't "real hosts" like IPMI/BMC, firewall and loadbalancer appliances for example, can restrict you to a manual process. Cheers, Andy -- https://bitfolk.com/ -- No-nonsense VPS hosting