The ssh2 module allows reconnoiter to connect to servers over ssh protocol 2 and test the fingerprint.
C
ssh2.so
optional
22
\d+
The TCP port on which the remote server's ssh service is running.
optional
^diffie-hellman-(?:group1-sha1|group14-sha1|group-exchange-sha1)$
The key exchange method to use.
optional
^(?:ssh-dss|ssh-rsa)$
The host key algorithm supported.
optional
^(?:aes256-ctr|aes192-ctr|aes128-ctr|aes256-cbc|aes192-cbc|aes128-cbc|blowfish-cbc|arcfour128|arcfour|cast128-cbc|3des-cbc|none)$
The encryption algorithm used from client to server.
optional
^(?:aes256-ctr|aes192-ctr|aes128-ctr|aes256-cbc|aes192-cbc|aes128-cbc|blowfish-cbc|arcfour128|arcfour|cast128-cbc|3des-cbc|none)$
The encryption algorithm used from server to client.
optional
^(?:hmac-sha1|hmac-sha1-96|hmac-md5|hmac-md5-96|hmac-ripemd160|none)$
The message authentication code algorithm used from client to server.
optional
^(?:hmac-sha1|hmac-sha1-96|hmac-md5|hmac-md5-96|hmac-ripemd160|none)$
The message authentication code algorithm used from server to client.
optional
none
^(?:zlib|none)$
The compress algorithm used from client to server.
optional
none
^(?:zlib|none)$
The compress algorithm used from server to client.
Example 5.35. Simple ssh polling of 4 machines
The following checks ssh on 10.1.2.{3,4,5,6}
<noit>
<modules>
<module image="ssh2" name="ssh2"/>
</modules>
<checks>
<ssh module="ssh2">
<check uuid="1cddb2a8-76ff-11dd-83c8-f75cb8b93bd9" target="10.1.2.3"/>
<check uuid="1dd79110-76ff-11dd-9b54-739adc274a93" target="10.1.2.4"/>
<check uuid="4627560a-76ff-11dd-941f-4b75679cb908" target="10.1.2.5"/>
<check uuid="4fdcb8de-76ff-11dd-ae16-2740afc178ae" target="10.1.2.6"/>
</ssh>
</checks>
</noit>