52eb813578
- update to 4.5.4 * Fix inconsistent links for 'View {Trends,Alert Histogram} For This {Host,Service}' (Mauricio Faria de Oliveira) * Fix broken links from removing AngularJS pages in 4.5.3 (Dylan Anderson)
Lars Vogdt
2024-08-16 14:12:03 +00:00
ec82d4408f
Accepting request 1183445 from server:monitoring
Ana Guerrero2024-06-27 14:02:46 +00:00
7cb11929a4
- update to 4.5.3 * Update jQuery (#960) (Dylan Anderson) * Remove pages using outdated AngularJS framework (#960) (Dylan Anderson) * Fix html encoding of some ascii characters (#813) (Dylan Anderson) * Updated several page links to use 'nofollow' (#965) - (Griffin Westerman)
Lars Vogdt
2024-06-19 13:12:31 +00:00
a0449ef614
Accepting request 1173606 from server:monitoring
Ana Guerrero2024-05-13 15:58:20 +00:00
f46c5fa5b7
- update to 4.5.2 * Fix handling of timeperiods w/ downtime availability calculations in the Availability CGI report (Sebastian Wolf) * Fix build when compiling against musl libc (#952) (Sebastian Wolf) * Fix downtime comment using current time instead of the downtime's entry time (#910) (Dylan Anderson)
Lars Vogdt
2024-05-13 09:08:56 +00:00
074bedf889
- update to 4.5.1 * Fix text rendering in Configuration -> Command Expansion when the command ends in whitespace (Thanks Joran LEREEC for reporting this issue) - from 4.5.0 Note: this release is backward-compatible, but does include updates to the header files. If you are using any NEB modules in your monitoring solution, you will need to recompile them with the new nagios-4.5.0 headers to avoid segmentation faults. ENHANCEMENTS * Add event_handler_period configuration option to hosts and services (#913) * Add external commands CHANGE_HOST_EVENT_HANDLER_TIMEPERIOD and CHANGE_SVC_EVENT_HANDLER_TIMEPERIOD (#913) * Added support for separating your build directory from your source directory (#867) - from older versions: * Fix missing macros when running performance data commands (#904) * Fix broken logo images in status pages (regression from 4.4.12) (#917) * Clean up most compiler warnings on GCC and clang (#901) * Fix incorrect HTML entity escaping in CGIs (#907, #902) * Fix issue where predictive dependency checks were not being scheduled for services (#908) * Fix several typos (#898, #884) * Fix incorrect error message in preflight check (#865) * Fix use-after-free in qh_deregister_handler (#866) * Fix memory leak in qh_deregister_handler (#866) * Fix mismatched host/service behavior when changing from SOFT to HARD state (#891) * Minor performance improvements in CGI utility functions (#866) * Fix memory leak in nagiostats.c when using -c, -s, -d, or -D multiple times (#888) * Improve service scheduling at startup (#887)
Lars Vogdt
2024-04-16 22:26:42 +00:00
737233fc2d
Modified via webui
Lars Vogdt
2024-04-16 14:09:56 +00:00
4fa405b160
Accepting request 1149469 from home:dimstar:rpm4.20:n
Dirk Stoecker2024-03-07 17:32:59 +00:00
e0cd459af2
Accepting request 1145456 from server:monitoring
Ana Guerrero2024-02-09 22:54:58 +00:00
7cec0926ab
- remove some old rpmlintrc entries - remove old (< 12.0) SUSE macros from spec file - nagios-dch and nagios-contrib can be noarch - use autopatch macro - set right permission and ownership for /var/log/nagios/config.err even if this file is just a ghost file in RPM - use /run/nagios instead of /var/run/nagios for pid file - get rid of really old (SLE9) fix for nagios command group (was group www at that time). Since SLE10, we use and own group (nagcmd) instead. As we do not support to migrate from SLE9 to SLE11 and beyond directly, this migration should have been done long time ago already
Lars Vogdt
2024-02-09 14:50:08 +00:00
acbf052f0e
- do not change ownership of resource_file (/etc/nagios/resource.cfg) during (re-)start: nagios does not have enough permissions to do it anyway. Fixes bsc#1192316 - thanks to Kai Lappalainen
Lars Vogdt
2022-09-15 17:27:37 +00:00
d8d8b98637
just adding missing SUSE bugzilla numbers
Lars Vogdt
2021-05-10 15:10:58 +00:00
535bd5024b
- new nagios-exec-start-post script to fix bsc#1003362
Lars Vogdt
2021-05-10 14:54:23 +00:00
3f896befef
fix the man page as well....
Lars Vogdt
2021-05-10 11:36:17 +00:00
7339bea2be
- fix nagios_upgrade.sh writing to log file in user controlled directory (bsc#1182398). The nagios_upgrade.sh script writes the logfile directly below /var/log/
Lars Vogdt
2021-05-10 11:31:10 +00:00
22d72b0d6b
- enable build for SLE11 by excluding some special macros and directories via 'sles_version != 11' condition - add nagios-archive.service and nagios-archive.timer as replacement for the script in cron.weekly: no need for cron on systemd systems - run set_permissions and verifyscript for /etc/cron.weekly on those distributions that need it - enhance rpmlint: ignore empty htpasswd file - enable php apache module and not php5 on newer distributions - try to harden the rcnagios script
Lars Vogdt
2020-04-06 20:05:04 +00:00
1fef56c2cb
- enhance systemd service: check nagios config before reloading
Lars Vogdt
2020-04-06 16:43:27 +00:00
bcedfd92a4
- fix boo#1156309, CVE-2019-3698 : Symbolic Link (Symlink) following vulnerability in the cronjob allows local attackers to cause cause DoS or potentially escalate privileges by winning a race.
Lars Vogdt
2020-04-06 16:35:21 +00:00
aa37419d4a
- update to 4.1.0 fixed boo#939829 already, mentioned here just for reference
Lars Vogdt
2017-12-01 23:42:02 +00:00
2fc7023e49
- remove the pre-configured administrative account with fixed password from the htpasswd file and provide an empty one instead (fixes boo#961115 - CVE-2016-0726)
Lars Vogdt
2017-12-01 23:24:33 +00:00
7f26756b4d
- fix a possible symlink attack for files/dirs created by root fixes CVE-2016-8641 (bsc#1011630 and bsc#1018047)
Lars Vogdt
2017-12-01 22:19:35 +00:00
0c1f70bcb3
use insserv_cleanup only if no systemd is used
Lars Vogdt
2017-09-13 08:43:57 +00:00
6910718daa
- update to 4.3.4 * Improved config file parsing (Mark Felder) * Fixed configure script to check for existence of /run for lock file (in regards to CVE-2017-12847, Bryan Heden) * Use absolute paths when deleting check results files (Emmanuel Dreyfus) * Add sanity checking in reassign_worker (sq5bpf) * xodtemplate.c wrong option-deprecation code warning (alex2grad / John Frickson) * On-demand host check always use cached host state (John Frickson) * 'á' causes Serivce Status Information to not be displayed (John Frickson) * New Macro(s) to generate URL for host / service object (John Frickson) * Fix minor map issues (Troy Lea) * Fix lockfile issues (Bryan Heden) * Switch order of daemon_init and drop_priveleges (CVE-2017-12847, Bryan Heden) * Add an OpenRC init script (Michael Orlitzky) - only require insserv on older SUSE distributions
Lars Vogdt
2017-09-13 08:08:35 +00:00
f78aee519c
- update to 4.3.2 FIXED * Every 15sec /var/log/messages is flooded with "nagios: set_environment_var" (John Frickson) * Changed release date to ISO format (yyyy-mm-dd) (John Frickson) * make all fails if unzip is not installed (John Frickson) * Quick Search no longer allows search by Alias (John Frickson) * flexible downtime on a service immediately turns off notifications (John Frickson) * Fix to allow url_encode to be called twice (Z. Liu) * Update timeperiods.cfg.in (spelling) (Parth Laxmikant Kolekar) * Spelling fixes (Josh Soref) * Vent command pipe before remove to avoid deadlocks on writing end (Kai Kunstmann) * CGI utility cgiutil.c does not process relative config file path names properly (John Frickson) * xdata/xodtemplate.c bug in option-deprecation code (John Frickson) * Wildcard searching causes service status links to not work properly (John Frickson) * Quick search with no hits shows a permission denied error (John Frickson) * Setting a service as its own parent is not caught by the sanity checker (-v) and causes a segfault (John Frickson) - removed nagios-4.3.1-remove-flooding-messages.patch (fixed upstream)
Lars Vogdt
2017-06-07 10:31:05 +00:00
7a776e0562
Accepting request 477265 from home:jsjhb:branches:server:monitoring
Lars Vogdt
2017-03-07 18:35:30 +00:00
a6b249058e
- Update to 4.3.1 SECURITY FIXES * Fix for CVE-2016-6209 - The "corewindow" parameter (as in http://localhost/nagios?corewindow=www.somewhere.com) has been disabled by default. See the UPGRADING document for how to enable it. (John Frickson) FIXES * Service hard state generation and host hard or soft down status (John Frickson) * Comments are duplicated through Nagios reload (John Frickson) * host hourly value is incorrectly dumped as json boolean (John Frickson) * Bug - Quick Search no longer allows search by IP (John Frickson) * Config: status_update_interval can not be set to 1 (John Frickson) * Check attempts not increasing if nagios is reloaded (John Frickson) * nagios hangs on reload while sending external command to cmd file (John Frickson) * Feature Request: return code xxx out of bounds - include message as well (John Frickson) * Fix early event scheduling (pmalek / John Frickson) * on-demand host checks triggered by service checks cause attempt number increments (fredericve) * Service notification not being send when host is in soft down state (John Frickson) * configure does not error if no perl installed on CentOS 7 (John Frickson) * failed passive requests leave .ok files in checkresults dir (caronc) * Services don't show in status.cgi if "noheader" specified (John Frickson) * Standardized check interval config file names (John Frickson) * "Event Log" (showlog.cgi) could not open log file (John Frickson) * "nagios_check_command" has been deprecated since v3.0. Last vestiges removed (John Frickson) ENHANCEMENTS * Added new flag to cgi.cfg: tac_cgi_hard_only to show only HARD states (John Frickson) * Add broker-event for the end of a timed event (NEBTYPE_TIMEDEVENT_END) (John Frickson) * There is no Macro to retrieve addresses of hostgroup members (now $HOSTGROUPMEMBERADDRESSES$) (John Frickson)
Lars Vogdt
2017-02-24 08:14:45 +00:00
4b9e65cbd0
- update to 4.2.4 SECURITY FIXES * Fixed another root privilege escalation (CVE-2016-9566) Thanks for bringing this to our attention go to Dawid Golunski (http://legalhackers.com).
Lars Vogdt
2016-12-11 12:00:49 +00:00
bdcf08d778
- update to 4.2.3 SECURITY FIXES * Fixed a root privilege escalation (CVE-2016-8641) (John Frickson) FIXES * external command during reload doesn't work (John Frickson) * Nagios provides no error condition as to why it fails on the verify for serviceescalation (John Frickson) * No root group in FreeBSD and Apple OS X (John Frickson) * jsonquery.html doesn't display scheduled_time_ok correctly (John Frickson) * daemon_dumps_core=1 has no effect on Linux when Nagios started as root (John Frickson) * Configuration check in hostgroup - misspelled hostname does not error (John Frickson) * contacts or contact_groups directive with no value should not be allowed (John Frickson) * Compile 64-bit on SPARC produces LD error (John Frickson) * HOSTSTATEID returns 0 even if host does not exist (John Frickson) * Submitting UNREACHABLE passive result for host sets it as DOWN if the host has no parents (John Frickson) * nagios: job XX (pid=YY): read() returned error 11 (changed from LOG_ERR to LOG_NOTICE) (John Frickson) * Fix for quick search not showing services if wildcard used (John Frickson)
Lars Vogdt
2016-11-29 08:40:22 +00:00
04e29722eb
Accepting request 439338 from home:jengelh:branches:server:monitoring
Lars Vogdt
2016-11-09 11:44:49 +00:00
09997b738d
Accepting request 438585 from home:floriansojer:branches:server:monitoring
Lars Vogdt
2016-11-08 20:05:20 +00:00
7352f88708
simply allow nearly all architectures in contrib Makefile
Lars Vogdt
2016-11-08 03:51:20 +00:00
cd00af3746
- allow ppc64le builds in contrib Makefile: nagios-4.2.2-enable-ppc64le.patch
Lars Vogdt
2016-11-08 03:32:31 +00:00
f0ddd92406
- update to 4.2.2 SECURITY + There was a fix to vulnerability CVE-2008-4796 in the 4.2.0 release on August 1, 2016. The fix was apparently incomplete, as there was still a problem. However, we are now getting all RSS feeds using AJAX calls instead of the (outdated) MagpieRSS package. Thanks for bringing this to our attention go to Dawid Golunski (http://legalhackers.com). ENHANCEMENTS + Update status.c to display passive check icon for hosts when passive checks are enabled and actives disabled FIXES + Fix permissions for Host Groups reports (status.cgi) + Service Parents does not appear to be functioning as intended + Availability report mixes up scheduled and unscheduled warning percentages + Invalid values for saved_stamp in comput_subject_downtime_times() + Remove deprecated “framespacing” + The nagios tarball contains two identical jquery copies + extinfo.cgi does not set content-type (most cgi’s don’t) + Timeperiods are corrupted by external command CHANGE_SVC_CHECK_TIMEPERIOD + Quick search doesn’t show hosts without services (service status detail page) + In host/services details view, if exactly 100 entries would not show last one + nagios host URL parameter for NEW map doesn`t work – Network Map for All Hosts + next_problem_id is improperly initialized + Passive problems not showing as “unhandled” + September reported as Sept instead of Sep + Notifications are not sent for active alerts after scheduled downtime ends + Nagios 4.2.0 not working on Solaris + install-exfoliation and install-classicui don’t work FreeBSD and Mac OS X + Updated makefile to delete some no-longer-needed files
Lars Vogdt
2016-10-25 16:33:41 +00:00
21342a099e
- update to 4.2.1 FIXES + Fix undefined variable php error (John Frickson) + Links on the sidebar menu under 'Problems' are indented too far + Using $ARGn$ Macros in perfdata (John Frickson) + using a wildcard in search returns service status total all zero's + read_only does not take priority (deppy) + Running nagios -v on 4.2.0 takes 90+ seconds (John Frickson) + Missing Image for Host and Service State Trends in Availability Report + Maintain non-persistent comments through reload (John Frickson) + Servicegroup availability report ignores includesoftstates in service report links (PriceChild) + error: format not a string literal and no format arguments (Karsten Weiss) - ignore rpmlint warnings about tmpfile creating/listing: this is handled, but not properly detected by rpmlnt
Lars Vogdt
2016-09-06 17:21:10 +00:00
eef73e0da3
- update to 4.2.0 SECURITY FIXES + Fixed vulnerability CVE-2008-4796 (John Frickson) + Fixed vulnerability CVE-2013-4214 (John Frickson) + web interface vulnerable to Cross-Site Request Forgery attacks ENHANCEMENTS + Increase socket queue length for listen() + Added host name to the website page title (leres / John Frickson) + Added additional icons for NetBSD and SuSE (John Frickson) + The new Status Map will now use cgi.cfg options (John Frickson) default_statusmap_layout will default to "6" for the new map + The new Status Map will now show some valid values in the popup for "Nagios Process" (John Frickson) FIXES + Network outage view without access to all hosts (John Frickson) + Core workers looping (John Frickson) + service query returns duplicate host_name and description fields in the returned data (John Frickson) + HTML output of plug-ins is parsed in wrong way => webgui unusable (John Frickson) + Command worker fails to handle SIGPIPE + "View Status" links under "Map" broken in Nagios Core Version 4.1.1 (John Frickson) + Can't send big buffer - wproc: Core Worker seems to be choked + Too big CPU load on FreeBSD and other systems using poll() interface + Flexible downtime recorded as unscheduled downtime (John Frickson) + Service Flexible downtimes produce 1 notification before entering + Once you "set flap_detection_enabled 0" it should remove flapping state from the host/services page (John Frickson) + New map doesn't finish loading if a logo image is not found
Lars Vogdt
2016-09-02 14:50:26 +00:00
275ba0f568
Accepting request 344104 from home:adaugherity:branches:server:monitoring
Lars Vogdt
2015-11-17 08:38:15 +00:00
7066be7818
Accepting request 338785 from home:aeneas_jaissle:branches:server:monitoring
Lars Vogdt
2015-10-30 11:36:25 +00:00
44d7afe0d5
Accepting request 328680 from home:archie172:branches:server:monitoring
Lars Vogdt
2015-10-10 11:34:55 +00:00
0e8309c9bf
- add nagios-4.1.0-add_KOHANNA.conf patch to allow using kohanna2 if available
Lars Vogdt
2015-08-20 14:19:21 +00:00
8ca5c3308b
- update to 4.1.0: ENHANCEMENTS * Promoted JSON CGIs to released status * New graphical CGI displays: statusmap, trends, histogram * Make sticky status for acks and comments configurable enhancement #20 * Add host_down_disable_service_checks directive to nagios.cfg #44 * httpd.conf doesn't support Apache versions > 2.3 FIXES * Fix for not all service dependencies created (John Frickson) * Fix SIGSEGV with empty custom variable (orbis / John Frickson) * Fix contact macros in environment variables (dvoryanchikov) * Fixed host's current attempt goes to 1 after going to hard state * Fixed two bugs/problems: Replace use of %zd in base/utils.c & incorrect va_start() in cgi/jsonutils.c (Peter Eriksson) * Fixed: Let remove_specialized actually remove all workers (Phil Mayers) * Fixed log file spam caused when using perfdata command directives in nagios.cfg * Fixed off-by-one error in bounds check leads to segfault (Phil Mayers) * Added links for legacy graphical displays (Eric Stanley) * Update embedded URL's to https versions of Nagios websites * Fixed doxygen comments to work with latest doxygen 1.8.9.1 #30 * Fixed makefile target "html" to PHONY to fix GitHub issue #28 * Fixed typo as per GitHub issue #27 (Trevor McDonald) * Fixed jsonquery.php 404 not found error, and disabled Send Query button until form populates #43 * Fixed linking in Tactical Overview for several of the Host entries in Featured section #48 * Fixed passing limit and sort options to pagination and sort links #42 * Added form field for icon URL and clean-up when it changes in CGI Status Map. * Added options to cgi.cfg to uncheck sticky and send when acknowledging a problem * Low impact changes to automate the generation of RPMs from nagios.spec file.
Lars Vogdt
2015-08-19 16:12:07 +00:00
9a533d150d
Accepting request 319692 from home:pgajdos
Lars Vogdt
2015-08-19 13:45:19 +00:00
f98436bcbb
Accepting request 288142 from home:deadpoint:branches:server:monitoring
Lars Vogdt
2015-03-01 10:16:01 +00:00
38e67f29e7
- fix alias definition in systemd file
Lars Vogdt
2015-02-17 21:06:50 +00:00
2309fc9bbb
- ignore errors during *post* of nagios-theme-exfoliation caused by the script trying to restart apache during build (bnc#911755) - ignore suse-missing-rclink rpmlint warning, as we use a wrapper script to provide backward compatible features (check)
Lars Vogdt
2015-02-16 15:29:08 +00:00
782e4867ab
- add Alias=monitoring_daemon.service to systemd file to have a similar virtual provides like in the old times
Lars Vogdt
2015-01-28 17:24:20 +00:00
Ana Guerrero
Ansgar Esztermann
Dominique Leuenberger
Lars Vogdt
Dirk Stoecker
Eric Schirra
Yuchen Lin