[Pkg-openldap-devel] [Pkg-nagios-devel] Bug#491233: nagios-plugins: check_ldap should use version 3 of slapd protocol
Jan Wagner
waja at cyconet.org
Mon Jul 21 12:25:22 UTC 2008
Hi Michel,
On Monday 21 July 2008 14:15, Michel Grentzinger wrote:
> Le lundi 21 juillet 2008, Jan Wagner a écrit :
> > > We have 3 solutions :
> > > - check both v2 and v3 in tne main scirpt check_ldap,
> >
> > you are talking about modifying the script to check at first v3 and if
> > that fails check v2? Sounds a bit overkill for me.
>
> I think this is the best solution ! I don't know how much works it requires
> but we have some advantage with this :
> - it doesn't break any existing installation,
> - it could check both v2 and v3,
> - perhaps the script could print if LDAP is running v2 or v3,
> - the user haven't to know if LDAP uses protocol 2 or 3
> - when the user make the transition from v2 to v3 (or v4, v5), it haven't
> to modify his host in his nagios installation,
> - with many server, the nagios user have an overview about each protocol
> used by each LDAP server.
>
> The only drawback is see is the time execution of the script. But if some
> test is good-located in the script, this is a minor problem. That could be
> : - add a var name which refer to the defaut protocol (can be changed for
> the future)
> - check_ldap with defaut protocol
> - check with old protocol
> - print the result with name of the protocol(s) used
>
> PS : I don't know if both can be running at the same time. I think yes.
fell free filling up a bug at
http://sourceforge.net/tracker/?group_id=29880&atid=397597 and providing a
patch there. Since I don't use any LDAP check, I won't mess it up for my own.
Personly I guess upstream has good reasons to keep v2 the default protocoll
and use v3 optional, but maybe you can convince them to review their
decision.
If the doesn't occure any code changes in recent time (via patch or upstream),
I will introduce a new check_ldap3 command definition.
with kind regards, Jan.
--
Never write mail to <waja at spamfalle.info>, you have been warned!
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GIT d-- s+: a- C+++ UL++++ P+ L+++ E- W+++ N+++ o++ K++ w--- O M V- PS PE
Y++ PGP++ t-- 5 X R tv- b+ DI- D++ G++ e++ h-- r+++ y+++
------END GEEK CODE BLOCK------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-openldap-devel/attachments/20080721/e2409cea/attachment-0001.pgp
More information about the Pkg-openldap-devel
mailing list