Closed Bug 671354 Opened 13 years ago Closed 11 years ago

Create nagios alert to warn of imminent signing key expiry

Categories

(Release Engineering :: General, defect, P3)

x86
Linux
defect

Tracking

(Not tracked)

RESOLVED DUPLICATE of bug 673303

People

(Reporter: jhopkins, Unassigned)

Details

(Whiteboard: [monitoring][nagios][signing])

      No description provided.
Checking the gpg key can be done by looking at a public key server.

Checking the Authenticode key can be done on the signing box by looking at the certificate store.
This was an idea that was had around the time a Thunderbird signing key was due to expire. 

I don't know if this is relevant in the releng land or if something is already set up. So feel free to close as wontfix/invalid if it isn't necessary or wanted.
Product: Mozilla Messaging → mozilla.org
QA Contact: release → release
We already get (lots of) email from Thawte when keys are due to expire. Provided we don't ignore that mail, maybe this is WONTFIX?
Component: Release Engineering → Release Engineering: Automation (General)
QA Contact: catlee
Whiteboard: [monitoring][nagios][signing]
We still need to check GPG keys, and maybe apple signing keys.
Priority: -- → P3
(In reply to Chris AtLee [:catlee] from comment #4)
> We still need to check GPG keys, and maybe apple signing keys.

bug 673303 talks about having the signing servers check expiry dates. This is probably much easier to do than hacking it into Nagios.
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → DUPLICATE
Product: mozilla.org → Release Engineering
Component: General Automation → General
You need to log in before you can comment on or make changes to this bug.