
check_heartbleed
Description:
check_heartbleed allows you to check for the Heartbleed Vulnerability (CVE-2014-0160) of openssl on various systems.
Version – 0.6 : Added TLSv1.0 and SSLv3.0 support
If no version is specified, checks all versions.
Altered output somewhat.
Added optional verbose output
Version – 0.5 : Added socket timeout option with default to 10 seconds
Changed no data received to unknown, was returning OK.
Version – 0.4 : Try: Except: on all socket interactions.
Spelling mistake.
Version – 0.3 : Properly catches socket connection error.
Reworking of internal logic
Alterations of some unknown messages
Version – 0.2 : Now works with Python 2.4+
Current Version
0.6
Last Release Date
2014-04-18
Compatible With
- Nagios 2.x
- Nagios 3.x
- Nagios 4.x
- Nagios XI
Owner
Project Notes
The plugin works great for some hosts, but is failing for a fairly large number, not sure if this is an issue at my side but I don't think so -
[root@host scripts]# ./check_heartbleed.py -H www.google.com -p 443
OK: Server www.google.com TLSv1.0 is not vulnerable. TLSv1.1 is not vulnerable. TLSv1.2 is not vulnerable. SSLv3.0 is not vulnerable.
[root@host scripts]# ./check_heartbleed.py -H www.test.com -p 443
UNKNOWN: Server www.test.com closed connection without sending Server Hello.
Any thoughts?
i've tried to use it on: rhel 5.x (
Package python-2.4.3-56.el5.x86_64 already installed)
but i get the following error msg:
---------------------------------------
:~>./check_hearbleed.py
---------------------------------------
File "./check_hearbleed.py", line 62
pdat = ' '.join((c if 32
1. downloaded “Check_heartbleed.txt” to “check_heartbleed.py”
2. moved to “/usr/local/nagios/libexec/”
3. chmod –R 777 check_heartbleed.py
I am getting below error if I execute the script.. any clue on this?
[root@localhost libexec]# ./check_heartbleed.py 10.1.71.49 -p 443
Traceback (most recent call last):
File "./check_heartbleed.py", line 151, in
main()
File "./check_heartbleed.py", line 132, in main
s.connect((args[0], opts.port))
File "", line 1, in connect
socket.error: [Errno 111] Connection refused