← Back to team overview

nagios-charmers team mailing list archive

  1. nagios-charmers team
  2. Mailing list archive
  3. Message #00652

[Bug 1849575] [NEW] ssl=only does not disable port 80

  Thread PreviousDate PreviousThread Next 
Public bug reported:

when I set ssl=only, the help suggests that 'only' disables all http.
The charm does not disable port 80, nor remove 000-default.conf

Given that the apache2 installation on a Nagios host is provided by the
Nagios deployment, there's no reason to leave this open and the only
reason we would set 'only' is because there's a demand to have no
unencrypted access to the server.

We should remove port 80 from ports.conf, and disable 000-default, when
ssl is set to 'only', and add the 'Listen 443' to hooks/templates
/default-ssl.tmpl.

** Affects: nagios-charm
     Importance: Undecided
         Status: New

-- 
You received this bug notification because you are a member of Nagios
Charm developers, which is subscribed to Nagios Charm.
https://bugs.launchpad.net/bugs/1849575

Title:
  ssl=only does not disable port 80

Status in Nagios Charm:
  New

Bug description:
  when I set ssl=only, the help suggests that 'only' disables all http.
  The charm does not disable port 80, nor remove 000-default.conf

  Given that the apache2 installation on a Nagios host is provided by
  the Nagios deployment, there's no reason to leave this open and the
  only reason we would set 'only' is because there's a demand to have no
  unencrypted access to the server.

  We should remove port 80 from ports.conf, and disable 000-default,
  when ssl is set to 'only', and add the 'Listen 443' to hooks/templates
  /default-ssl.tmpl.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nagios-charm/+bug/1849575/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next