Jan, Nagios seems to be unnecessary here. The Cfengine way is to write a promise which updates vulnerability database and either simply generates reports about changes found or applies updates. No extra agent (like Nagios) is needed for this task.
2011/9/14 Jan Muhammad <janm...@yahoo.com>: > Hi Group, > I wonder anyone has experience on integrating CFengine with > Nagios(http://www.nagios.org/). I came across this blog > post(http://www.sladder.org/?tag=cfengine); but it's not detailed enough to > follow. > Considering a large scale network setup, a scenario can be if we want to > generate some alerts from the patch status monitoring database (e.g. based > on MySQL DB); that a particular node has a 'Vulnerable' piece of software or > something (service or firewall etc) is mis-configured. So instead of > manually installing (a patch or work around), can we generate an > alert(trigger) from Nagios so that it send me email notification to site > admin identifying that a 'Vulnerability Found' or 'Invoke' the CFengine > instance to push a patch or configure the 'hole' on the Vulnerable host in > an automated way. > > Any relevant documentation (paper/links), will be appreciated. > > Thanks n advance. > > Regards > > -Jan > > > _______________________________________________ > Help-cfengine mailing list > Help-cfengine@cfengine.org > https://cfengine.org/mailman/listinfo/help-cfengine > > -- SY, Seva Gluschenko. _______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
