Overview Repositories Revisions Requests Users Attributes Meta

Revisions of nrpe

Wolfgang Engel's avatar Wolfgang Engel (bigironman) accepted request 889404 from Lars Vogdt's avatar Lars Vogdt (lrupp) (revision 2) 
Lots of changes: most important a version upgrade to 4.0.3 and
apparmor work. nrpe is a leave package and should either be 
removed completely from Leap 15.3 - or we take this 4.0.3 version.

Sorry for that late submission...

Regards,
Lars



- fix apparmor profile to allow /run as well as /var/run 

- added nrpe-4.0.4-silence_wrong_package_version_messages.patch
  NRPE logs 'packet version was invalid' and 'Could not read request
  from client' if the NRPE version on the client does not match the
  one on the server side. 
  This patch reduces the importance of the log entry to be just 
  informal, which should silent most client logs, while it makes 
  it still available for debugging.

- update to 4.0.3
  ENHANCEMENTS
  * Added TLSv1.3 and TLSv1.3+ support for systems that have it (Nigel Yong, Rahul Golam)
  * Added IPv6 ip address to list of default allow_from hosts (Troy Lea)
  * Added -D option to disable logging to syslog (Tom Griep, Sebastian Wolf)
  * Added -3 option to force check_nrpe to use NRPE v3 packets
  * OpenRC: provide a default path for nrpe.cfg (Michael Orlitzky)
  * OpenRC: Use RC_SVCNAME over a hard-coded PID file (j-licht)
  FIXES
  * Fixed nasty_metachars not being read from config file (#235) (Sebastian Wolf)
  * Fixed buffer length calculations/writing past memory boundaries
    on some systems (#227, #228) (Andreas Baumann, hariwe, Sebastian Wolf)
  * Fixed use of uninitialized variable when validating requests (#229) (hariwe, Sebastian Wolf)
  * Fixed syslog flooding with CRC-checking errors when both plugin 
    and agent were updated to version 4 (Sebastian Wolf)
  * Checks for '!' now only occur inside the command buffer (Joni Eskelinen)
  * NRPE daemon is more resilient to DOS attacks (Leonid Vasiliev)
  * allowed_hosts will no longer test getaddrinfo records against the
    wrong protocol (dombenson)
  * nasty_metachars will now handle C escape sequences properly when
Wolfgang Engel's avatar Wolfgang Engel (bigironman) committed (revision 1) 
osc copypac from project:openSUSE:Leap:15.2 package:nrpe revision:14, using expand
Displaying all 2 revisions
openSUSE Build Service is sponsored by
Places