Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add
riemann-tls-check
to monitor TLS resources
Add a riemann-tls-check that accept a list of URI of resources to check TLS certificates. For each URI, resolve the IP addresses that provide the service, and for each IP address generate 6 events for: 1. availability: state (reachability + status of all the following metrics); 2. not after: state + metric (number of seconds until the certificate is expired); 3. not before: state + metric (number of seconds since the certificate is valid); 4. identity: state (certificate subject match the URI hostname); 5. trust: state (validity of the certificate trust chain); 6. OCSP satus: state (validity of the OCSP status if applicable). A STARTTLS handshake is automatically done for imap://, ldap:// and smtp://; a protocol specific handshake is done for mysql:// and postgres:// URI.
- Loading branch information