58de914819
Accepting request 1192323 from home:lrupp:branches:server:monitoring
Eric Schirra2024-08-07 15:43:15 +00:00
9ede19a487
- update to 4.1.1 + Use correct HUP signal for Solaris - introduced a simple check section
Eric Schirra2024-08-07 15:43:15 +00:00
a91807d5c6
Accepting request 1149543 from server:monitoring
Ana Guerrero2024-02-22 20:01:49 +00:00
cb2eac0766
Accepting request 1149543 from server:monitoring
Ana Guerrero2024-02-22 20:01:49 +00:00
a6048d89d7
Accepting request 1149503 from home:dimstar:rpm4.20:n
Michael Vetter2024-02-22 14:46:54 +00:00
b303551ff0
Accepting request 1149503 from home:dimstar:rpm4.20:n
Michael Vetter2024-02-22 14:46:54 +00:00
becdca1a15
Accepting request 1145416 from server:monitoring
Ana Guerrero2024-02-09 22:54:26 +00:00
886b2d9150
Accepting request 1145416 from server:monitoring
Ana Guerrero2024-02-09 22:54:26 +00:00
0d2d08c3d1
- update to 4.1.0 ENHANCEMENTS + Add support for OpenSSL 3 (and EL9/Debian 11/Ubuntu 22) + Allow tcpd/libwrap to be excluded from build when present on the system + Allow loading of full certificate chains + Change -u (connection issues return UNKNOWN) to include all SSL-layer failures. + Disable renegotiation and enforce server cipher order when using SSL + Verify that private keys match certificates when using SSL FIXES + Fixed incorrect default for nasty_metachars in nrpe.cfg + Fixed incorrect help text for --use-adh + Fixed potential out-of-bound read when used with IPv6 - use system-user-nagios package to create the neccessary user and group - remove macros for old, unsupported SUSE versions - refresh patches: + nrpe-implicit_declaration.patch + nrpe-static_dh_parameters.patch + nrpe-4.0.4-silence_wrong_package_version_messages.patch - remove patches: + nrpe-disable-chkconfig_in_Makefile.patch (obsolete) + nrpe-improved_help.patch (fixed upstream) + nrpe_check_control.patch (better fix inside the spec file and use existing nagios macros) - remove obsolete nrpe-rpmlintrc
Lars Vogdt
2024-02-09 12:55:31 +00:00
04173df0b2
- update to 4.1.0 ENHANCEMENTS + Add support for OpenSSL 3 (and EL9/Debian 11/Ubuntu 22) + Allow tcpd/libwrap to be excluded from build when present on the system + Allow loading of full certificate chains + Change -u (connection issues return UNKNOWN) to include all SSL-layer failures. + Disable renegotiation and enforce server cipher order when using SSL + Verify that private keys match certificates when using SSL FIXES + Fixed incorrect default for nasty_metachars in nrpe.cfg + Fixed incorrect help text for --use-adh + Fixed potential out-of-bound read when used with IPv6 - use system-user-nagios package to create the neccessary user and group - remove macros for old, unsupported SUSE versions - refresh patches: + nrpe-implicit_declaration.patch + nrpe-static_dh_parameters.patch + nrpe-4.0.4-silence_wrong_package_version_messages.patch - remove patches: + nrpe-disable-chkconfig_in_Makefile.patch (obsolete) + nrpe-improved_help.patch (fixed upstream) + nrpe_check_control.patch (better fix inside the spec file and use existing nagios macros) - remove obsolete nrpe-rpmlintrc
Lars Vogdt
2024-02-09 12:55:31 +00:00
a98e91c01a
Accepting request 1126912 from server:monitoring
Ana Guerrero2023-11-16 19:29:52 +00:00
d19e3d2a45
Accepting request 1126912 from server:monitoring
Ana Guerrero2023-11-16 19:29:52 +00:00
2d66b48b51
Accepting request 1121731 from home:msvec:branches:server:monitoring
Martin Hauke2023-11-16 14:35:27 +00:00
6aba940636
Accepting request 1121731 from home:msvec:branches:server:monitoring
Martin Hauke2023-11-16 14:35:27 +00:00
37ec4d7463
- use getent to check if the nrpe port is already added to the services description in post-script (bsc#1205157) - remove xinetd snipplets on newer (>15.5) distributions: xinetd is not supported any longer
Lars Vogdt
2023-03-16 10:59:59 +00:00
4c0e334f01
- use getent to check if the nrpe port is already added to the services description in post-script (bsc#1205157) - remove xinetd snipplets on newer (>15.5) distributions: xinetd is not supported any longer
Lars Vogdt
2023-03-16 10:59:59 +00:00
ef1885b423
- fix apparmor profile to allow /run as well as /var/run
Ruediger Oertel
2021-02-15 16:52:11 +00:00
f2c4c1563a
- fix apparmor profile to allow /run as well as /var/run
Ruediger Oertel
2021-02-15 16:52:11 +00:00
78b07b9961
- added nrpe-4.0.4-silence_wrong_package_version_messages.patch NRPE logs 'packet version was invalid' and 'Could not read request from client' if the NRPE version on the client does not match the one on the server side. This patch reduces the importance of the log entry to be just informal, which should silent most client logs, while it makes it still available for debugging.
Lars Vogdt
2021-02-04 16:39:39 +00:00
beb0c9ae07
- added nrpe-4.0.4-silence_wrong_package_version_messages.patch NRPE logs 'packet version was invalid' and 'Could not read request from client' if the NRPE version on the client does not match the one on the server side. This patch reduces the importance of the log entry to be just informal, which should silent most client logs, while it makes it still available for debugging.
Lars Vogdt
2021-02-04 16:39:39 +00:00
2bde70b759
- update to 4.0.3 ENHANCEMENTS * Added TLSv1.3 and TLSv1.3+ support for systems that have it (Nigel Yong, Rahul Golam) * Added IPv6 ip address to list of default allow_from hosts (Troy Lea) * Added -D option to disable logging to syslog (Tom Griep, Sebastian Wolf) * Added -3 option to force check_nrpe to use NRPE v3 packets * OpenRC: provide a default path for nrpe.cfg (Michael Orlitzky) * OpenRC: Use RC_SVCNAME over a hard-coded PID file (j-licht) FIXES * Fixed nasty_metachars not being read from config file (#235) (Sebastian Wolf) * Fixed buffer length calculations/writing past memory boundaries on some systems (#227, #228) (Andreas Baumann, hariwe, Sebastian Wolf) * Fixed use of uninitialized variable when validating requests (#229) (hariwe, Sebastian Wolf) * Fixed syslog flooding with CRC-checking errors when both plugin and agent were updated to version 4 (Sebastian Wolf) * Checks for '!' now only occur inside the command buffer (Joni Eskelinen) * NRPE daemon is more resilient to DOS attacks (Leonid Vasiliev) * allowed_hosts will no longer test getaddrinfo records against the wrong protocol (dombenson) * nasty_metachars will now handle C escape sequences properly when specified in the config file (Sebastian Wolf) * Calculated packet sizes now struct padding/alignment when sending and receiving messages (Sebastian Wolf) * Buffer sizes are now checked before use in packet size calculation (Sebastian Wolf) * When using include_dir, individual files' errors do not prevent the remaining files from being read (Sebastian Wolf) - refreshed the following patches: * nrpe-implicit_declaration.patch * nrpe-improved_help.patch * nrpe_check_control.patch
Lars Vogdt
2021-01-22 10:07:13 +00:00
ccfb564306
- update to 4.0.3 ENHANCEMENTS * Added TLSv1.3 and TLSv1.3+ support for systems that have it (Nigel Yong, Rahul Golam) * Added IPv6 ip address to list of default allow_from hosts (Troy Lea) * Added -D option to disable logging to syslog (Tom Griep, Sebastian Wolf) * Added -3 option to force check_nrpe to use NRPE v3 packets * OpenRC: provide a default path for nrpe.cfg (Michael Orlitzky) * OpenRC: Use RC_SVCNAME over a hard-coded PID file (j-licht) FIXES * Fixed nasty_metachars not being read from config file (#235) (Sebastian Wolf) * Fixed buffer length calculations/writing past memory boundaries on some systems (#227, #228) (Andreas Baumann, hariwe, Sebastian Wolf) * Fixed use of uninitialized variable when validating requests (#229) (hariwe, Sebastian Wolf) * Fixed syslog flooding with CRC-checking errors when both plugin and agent were updated to version 4 (Sebastian Wolf) * Checks for '!' now only occur inside the command buffer (Joni Eskelinen) * NRPE daemon is more resilient to DOS attacks (Leonid Vasiliev) * allowed_hosts will no longer test getaddrinfo records against the wrong protocol (dombenson) * nasty_metachars will now handle C escape sequences properly when specified in the config file (Sebastian Wolf) * Calculated packet sizes now struct padding/alignment when sending and receiving messages (Sebastian Wolf) * Buffer sizes are now checked before use in packet size calculation (Sebastian Wolf) * When using include_dir, individual files' errors do not prevent the remaining files from being read (Sebastian Wolf) - refreshed the following patches: * nrpe-implicit_declaration.patch * nrpe-improved_help.patch * nrpe_check_control.patch
Lars Vogdt
2021-01-22 10:07:13 +00:00
048d9e4a35
- nrpe.xml firewalld file is handled by firewalld package - Leap 15.1 is suse_version 1500 (thanks, dimstar)
Lars Vogdt
2020-02-21 15:55:21 +00:00
5308fbf9f0
- nrpe.xml firewalld file is handled by firewalld package - Leap 15.1 is suse_version 1500 (thanks, dimstar)
Lars Vogdt
2020-02-21 15:55:21 +00:00
4f0cb091f1
Accepting request 769649 from home:dimstar:Factory
Lars Vogdt
2020-02-03 19:42:14 +00:00
c2aa39afed
Accepting request 769649 from home:dimstar:Factory
Lars Vogdt
2020-02-03 19:42:14 +00:00
baabc3ec6b
- Do not package nrpe.xml for Leap 15.0, as it is included in firewalld package there.
Lars Vogdt
2019-03-17 01:39:30 +00:00
c630a9fdaa
- Do not package nrpe.xml for Leap 15.0, as it is included in firewalld package there.
Lars Vogdt
2019-03-17 01:39:30 +00:00
7993a30d95
- specfile cleanup & remove other distribution specials
Lars Vogdt
2019-02-17 19:46:19 +00:00
3cc749babe
- specfile cleanup & remove other distribution specials
Lars Vogdt
2019-02-17 19:46:19 +00:00
47481783d8
- disable chkconfig call in Makefile on old distributions nrpe-3.2.1-disable-chkconfig_in_Makefile.patch
Lars Vogdt
2019-02-17 18:41:51 +00:00
b9f24a83c5
- disable chkconfig call in Makefile on old distributions nrpe-3.2.1-disable-chkconfig_in_Makefile.patch
Lars Vogdt
2019-02-17 18:41:51 +00:00
833e28d69c
fix build for SLE-11
Lars Vogdt
2019-02-17 18:41:14 +00:00
6e7d646dd8
fix build for SLE-11
Lars Vogdt
2019-02-17 18:41:14 +00:00
e3dd27a2e4
condition. Default is: "on" for suse_version >= 15
Lars Vogdt
2019-02-17 17:54:50 +00:00
90dcd8fe61
condition. Default is: "on" for suse_version >= 15
Lars Vogdt
2019-02-17 17:54:50 +00:00
ba801c705c
- rename nagios-nrpe-rpmlintrc and nagios-nrpe-SuSEfirewall2 to nrpe-rpmlintrc and nrpe-SuSEfirewall2 - build nrpe-doc package as noarch
Lars Vogdt
2019-02-17 17:53:06 +00:00
c7fb9a2960
- rename nagios-nrpe-rpmlintrc and nagios-nrpe-SuSEfirewall2 to nrpe-rpmlintrc and nrpe-SuSEfirewall2 - build nrpe-doc package as noarch
Lars Vogdt
2019-02-17 17:53:06 +00:00
a91577c9b3
- add nrpe.xml snipplet for firewalld - still ship nrpe snipplet for SuSEfirewalld for now - use systemd files directly from upstream: + drop Requires=var-run.mount line from service file + drop nrpe.service + drop nrpe.socket + do not create tmpfiles.d/nrpe in spec any longer - handle migration from /etc/nagios/nrpe.cfg to /etc/nrpe.cfg also for systemd case (triggerun) - increase warn/crit level for processes to 350/400 in a default installation - added patch and dh.h file to NOT re-calculate dh.h parameters during each build (for reproducable builds). Can be enable/disable by setting the 'reproducable' build condition. Default is: "on" for now + nrpe-3.2.1-static_dh_parameters.patch + nrpe-3.2.1-dh.h - use _rundir and _tmpfilesdir macros everywhere - do not create nagios user/group during install on (open)SUSE systems and rely on the files section here instead
Lars Vogdt
2019-02-17 17:49:38 +00:00
4539fe6c35
- add nrpe.xml snipplet for firewalld - still ship nrpe snipplet for SuSEfirewalld for now - use systemd files directly from upstream: + drop Requires=var-run.mount line from service file + drop nrpe.service + drop nrpe.socket + do not create tmpfiles.d/nrpe in spec any longer - handle migration from /etc/nagios/nrpe.cfg to /etc/nrpe.cfg also for systemd case (triggerun) - increase warn/crit level for processes to 350/400 in a default installation - added patch and dh.h file to NOT re-calculate dh.h parameters during each build (for reproducable builds). Can be enable/disable by setting the 'reproducable' build condition. Default is: "on" for now + nrpe-3.2.1-static_dh_parameters.patch + nrpe-3.2.1-dh.h - use _rundir and _tmpfilesdir macros everywhere - do not create nagios user/group during install on (open)SUSE systems and rely on the files section here instead
Lars Vogdt
2019-02-17 17:49:38 +00:00
a877fc460b
add the missing bugzilla numbers to the line: - call tmpfiles_create in postinstall (bsc#1080637 and bsc#924649) (from Wed Oct 12 12:39:31 CEST 2016 by ro@suse.de)
Lars Vogdt
2018-10-15 07:45:23 +00:00
f0af551d07
add the missing bugzilla numbers to the line: - call tmpfiles_create in postinstall (bsc#1080637 and bsc#924649) (from Wed Oct 12 12:39:31 CEST 2016 by ro@suse.de)
Lars Vogdt
2018-10-15 07:45:23 +00:00
cd3d07d863
- only include %{_sysconfdir}/xinetd.d on newer distributions (fixes submission of this package as update for SLE12-SP4 and Leap 42.3 - boo#938906)
Lars Vogdt
2018-06-04 17:58:30 +00:00
a2e19494e4
- only include %{_sysconfdir}/xinetd.d on newer distributions (fixes submission of this package as update for SLE12-SP4 and Leap 42.3 - boo#938906)
Lars Vogdt
2018-06-04 17:58:30 +00:00
39496c7cc9
- update to 3.1.1: FIXES - The '--log-file=' or '-g' option is missing from the help (John Frickson) - check_nrpe = segfault when specifying a config file (John Frickson) - Alternate log file not being used soon enough (John Frickson) - Unable to compile v3.1.0rc1 with new SSL checks on rh5 (John Frickson) - Unable to compile nrpe-3.1.0 - undefined references to va_start, va_end (John Frickson) - Can't build on Debian Stretch, openssl 1.1.0c (John Frickson) - Fix build failure with -Werror=format-security (Bas Couwenberg) - Fixed a typo in nrpe.spec.in (John Frickson) - More detailed error logging for SSL (John Frickson) - Fix infinite loop when unresolvable host is in allowed_hosts (Nick / John Frickson) - refreshed all patches
Lars Vogdt
2017-05-29 15:30:03 +00:00
b305b8f09d
- update to 3.1.1: FIXES - The '--log-file=' or '-g' option is missing from the help (John Frickson) - check_nrpe = segfault when specifying a config file (John Frickson) - Alternate log file not being used soon enough (John Frickson) - Unable to compile v3.1.0rc1 with new SSL checks on rh5 (John Frickson) - Unable to compile nrpe-3.1.0 - undefined references to va_start, va_end (John Frickson) - Can't build on Debian Stretch, openssl 1.1.0c (John Frickson) - Fix build failure with -Werror=format-security (Bas Couwenberg) - Fixed a typo in nrpe.spec.in (John Frickson) - More detailed error logging for SSL (John Frickson) - Fix infinite loop when unresolvable host is in allowed_hosts (Nick / John Frickson) - refreshed all patches
Lars Vogdt
2017-05-29 15:30:03 +00:00
Dominique Leuenberger
Eric Schirra
Ana Guerrero
Michael Vetter
Lars Vogdt
Martin Hauke
Ruediger Oertel