Checkmk werks level1

checkmk-werks-lvl1@lists.checkmk.com

1 participants
15953 discussions

Checkmk Werk 15447: SAML: global settings default user profile overwrites manual configuration

by Lisa Pichler

ID: 15447 Title: SAML: global settings default user profile overwrites manual configuration Component: setup Level: 1 Class: Bug fix Version: 2.3.0b1 When a user attribute was *not* mapped via SAML, the default user profile, which is configured in the global settings (Global settings -> User management -> Default user profile), would overwrite any manual configuration done for this user. This has been fixed. User profiles are now created/updated with the following priority: 1. SAML attributes (if configured) 2. Manually selected attributes 3. Defaults

1 year, 6 months

Checkmk Werk 14595: McAfee Web Gateway: Add Plugins

by Solomon Jacobs

ID: 14595 Title: McAfee Web Gateway: Add Plugins Component: Checks & agents Level: 1 Class: New feature Version: 2.3.0b1 This change adds two new plugins. LI: <tt>mcafee_webgateway_time_consumed_by_rule_engine</tt> LI: <tt>mcafee_webgateway_time_to_resolve_dns</tt>

1 year, 6 months

Checkmk Werk 13976: Fields with autocompletion will not also match on internal ids

by Teresa Siegmantel

ID: 13976 Title: Fields with autocompletion will not also match on internal ids Component: Multisite Level: 1 Class: New feature Version: 2.3.0b1 UI fields that offer autocompletion of values will now also match against the internal ids of these values.

1 year, 6 months

Checkmk Werk 15069: Fix Email HTML Injection

by Maximilian Wirtz

ID: 15069 Title: Fix Email HTML Injection Component: Notifications Level: 1 Class: Security fix Version: 2.3.0b1 Previously an authenticated attacker with permissions to configure HTML notifications was able to inject HTML into E-Mails via Insert HTML section between body and table. All versions up to 1.6. are subject to this vulnerability. To detect previous exploitation of this vulnerability one can check <tt>etc/check_mk/conf.d/wato/notifications.mk</tt>. Search for <tt>insert_html_section</tt> and malicious HTML. This vulnerability was found internally. We calculated a CVSS3.1 score of 4.1 (Medium) CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N and assigned CVE-2023-22288.

1 year, 6 months

Checkmk Werk 15280: synology_disk: use diskRole to ignore "not initialized" warning

by Benedikt Seidl

ID: 15280 Title: synology_disk: use diskRole to ignore "not initialized" warning Component: Checks & agents Level: 1 Class: Bug fix Version: 2.3.0b1 It's okay if a disk is not initialized (this is normally a warning) if the disk is not used at all, a SSD-cache or a hot-spare. Before all disks containing SSD or NVME in the disk model were assumed to be caches.

1 year, 6 months

Checkmk Werk 15278: synology_disk: read disk health status

by Benedikt Seidl

ID: 15278 Title: synology_disk: read disk health status Component: Checks & agents Level: 1 Class: Bug fix Version: 2.3.0b1 A Failing disks would report a working file system (as the file system was still readable) but still needs to be replaced. The check was extended to also report disk health status which was introduced with DSM 7.1. Also split the summary, remove duplicated temperature text, and remove text about temperature levels, as no temperature levels can be defined for this service.

1 year, 6 months

Checkmk Werk 15418: Agent bakery: Provide AIX tar.gz package in USTAR format

by Andreas Umbreit

ID: 15418 Title: Agent bakery: Provide AIX tar.gz package in USTAR format Component: agents Level: 1 Class: Bug fix Version: 2.3.0b1 By default, the agent bakery packages the .tar.gz packages in PAX (POSIX.1-2001) format. AIX only supports PAX format since AIX 7.3.1 (released Dev 2022), and expects USTAR (POSIX.1-1988) format by default. Hence, we now package AIX .tar.gz packages in USTAR format.

1 year, 6 months

Checkmk Werk 15419: Windows agent: Run plugins/local checks using non-system account

by Andi Umbreit

ID: 15419 Title: Windows agent: Run plugins/local checks using non-system account Component: Checks & agents Level: 1 Class: Bug fix Version: 2.3.0b1 This Werk addresses a regression that appeared with Werk #14871, which introduced stricter access rights for the Windows agent's ProgramData directory. Windows agent plugins and local checks can be configured to run under a specific user or group, either by configuring the agent ruleset Run plugins and local checks using non-system account or by editing the <tt>check_mk.user.yaml</tt> file appropriately. Starting with Checkmk 2.1.0p15/the abovementioned Werk, plugins and local checks that are configured to run under a specific user failed to execute. The reason for this behavior was that, due to a preexisting bug, the Windows agent service then failed to set the proper access rights on the underlying files. With the stricter default access rights, the files were not accessible any longer. This only affected plugins/local checks that are configured with the option Run as User, while the ones configured with Run as local group did succeed. The abovementioned bug is now fixed, and plugins/local checks will resume to work as configured. To apply this fix, you need to update/reinstall the Windows Agent once.

1 year, 6 months

Checkmk Werk 15255: Fixed removal of persistent acknowledgements

by Sven Panne

ID: 15255 Title: Fixed removal of persistent acknowledgements Component: Multisite Level: 2 Class: Bug fix Version: 2.3.0b1 Due to a regression introduced in 2.1.0, it was not possible anymore to remove the comment part of persistent acknowledgements via the GUI. This has been fixed.

1 year, 6 months

Checkmk Werk 15429: group_config: restrict name pattern for service-, contact-, host-group config

by Wontek Hong

ID: 15429 Title: group_config: restrict name pattern for service-, contact-, host-group config Component: REST API Level: 1 Class: Bug fix Version: 2.3.0b1 Prior to this werk, the user was allowed to specify any string for host group, service group and contact group names. This behaviour differs from the UI and also the delete and get endpoints. This werk unifies the restriction.

1 year, 6 months

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

Checkmk werks level1