The IT department through network scanning NagiosXI and found several weakness, how to fix that?
since there're thousands of hosts & services been monitored, if need upgrade, will it cause some monitoring damaged?
Scan NagiosXI and found several weakness?!
Scan NagiosXI and found several weakness?!
You do not have the required permissions to view the files attached to this post.
-
benjaminsmith
- Posts: 5324
- Joined: Wed Aug 22, 2018 4:39 pm
- Location: saint paul
Re: Scan NagiosXI and found several weakness?!
Hi @Xpertech,
Thanks for posting the screenshot of your system profile. Can you provide us some details regarding the scan for us to review.
Thanks.
Thanks for posting the screenshot of your system profile. Can you provide us some details regarding the scan for us to review.
Thanks.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Be sure to check out our Knowledgebase for helpful articles and solutions!
Be sure to check out our Knowledgebase for helpful articles and solutions!
Re: Scan NagiosXI and found several weakness?!
Here's the scan information.
You do not have the required permissions to view the files attached to this post.
Re: Scan NagiosXI and found several weakness?!
I am not your org's security expert. This is not authoritative in any way.
Without knowing more about the scanning utility used, it's hard to say for sure what's going on.
I haven't looked at all of the CVEs, but every single one I've skimmed has a corresponding RHEL errata or CentOS tracker entry with patch date. Example:
https://bugs.centos.org/view.php?id=14530
If this scanner is blindly flagging CVEs based exclusively on PHP versions, rather than actually verifying and reproducing CVEs, I would suggest the IT team review RedHat's policy regarding PHP security:
https://access.redhat.com/security/updates/backporting
Without knowing more about the scanning utility used, it's hard to say for sure what's going on.
I haven't looked at all of the CVEs, but every single one I've skimmed has a corresponding RHEL errata or CentOS tracker entry with patch date. Example:
https://bugs.centos.org/view.php?id=14530
If this scanner is blindly flagging CVEs based exclusively on PHP versions, rather than actually verifying and reproducing CVEs, I would suggest the IT team review RedHat's policy regarding PHP security:
https://access.redhat.com/security/updates/backporting
Former Nagios employee
https://www.mcapra.com/
https://www.mcapra.com/
Re: Scan NagiosXI and found several weakness?!
@mcapra is correct - the patches are backported by the OS and should not be an issue.
Be sure to check out our Knowledgebase for helpful articles and solutions!