[icinga-devel] [icinga-users] Fwd: [Nagios-devel] host/servicegroup commands

Bernd Erk bernd.erk at netways.de
Sun Jun 26 01:53:30 CEST 2011


Performance 1+ :-)


On 26.06.11 00:43, "Matthew Brooks" <matthew at sonomatechpartners.com> wrote:

>FYI looks like Ricardo handled it already
>
>https://git.icinga.org/?p=icinga-core.git;a=commit;h=ed01c63
>
>
>
>2011/6/25 Robert Marxreiter <rmarxreiter at web.de>
>
>
>  
>
>    
>  
>  
>    Hello,
>    
>    this bug seems to apply to icinga as well.
>    
>    Regards
>    - Robert
>    
>    -------- Original Message --------
>    
>      
>        
>          Subject:
>          [Nagios-devel] host/servicegroup commands
>        
>        
>          Date: 
>          Sat, 25 Jun 2011 17:11:29 +0200
>        
>        
>          From: 
>          Sven Nierlein <sven.nierlein at consol.de>
><mailto:sven.nierlein at consol.de>
>        
>        
>          Reply-To:
>          
>          Nagios Developers List
>            <nagios-devel at lists.sourceforge.net>
><mailto:nagios-devel at lists.sourceforge.net>
>        
>        
>          To: 
>          nagios-devel at lists.sourceforge.net
>        
>      
>    
>    
>    
>    Hi,
>
>One of our customers found a bug in the nagios cgis. It's easy to
>reproduce:
>
>1. create a new user
>2. give him authorized_for_all_services and authorized_for_all_hosts in
>your cgi.cfg
>
>The contact should now be able to see all hosts and services but should
>not be allowed to submit any commands.
>However, if the contact submits hostgroup or servicegroup commands, they
>are accepted and executed.
>The attached patch fixes that behavior.
>
>Regards,
>   Sven
>
>
>  
>
>--------------------------------------------------------------------------
>----
>All the data continuously generated in your IT infrastructure contains a
>definitive record of customers, application performance, security
>threats, fraudulent activity and more. Splunk takes this data and makes
>sense of it. Business sense. IT sense. Common sense..
>http://p.sf.net/sfu/splunk-d2d-c1
>_______________________________________________
>icinga-users mailing list
>icinga-users at lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/icinga-users
>
>
>
>
>
>
>--------------------------------------------------------------------------
>----
>All the data continuously generated in your IT infrastructure contains a
>definitive record of customers, application performance, security
>threats, fraudulent activity and more. Splunk takes this data and makes
>sense of it. Business sense. IT sense. Common sense..
>http://p.sf.net/sfu/splunk-d2d-c1_________________________________________
>______
>icinga-devel mailing list
>icinga-devel at lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/icinga-devel





More information about the icinga-devel mailing list