Creating new NRPE command definitions securely
In this recipe, we'll learn how to securely create new command definitions for
nrpe to run upon request by a monitoring server. We need to do this, because even if we have a huge set of plugins installed on our target host running
nrpe, the daemon will only run commands defined in its configuration file.
We'll also learn how arguments can be passed to these commands, if strictly necessary, and about the potentially negative security consequences of this.
You should have a target host configured for checking in a Nagios Core 4.0 or later monitoring server. The target host should be running the
nrpe daemon. You can verify that
nrpe is running with
# pgrep nrpe 29964 # ps ...