Hello,
With the Log4j vulnerability that was in the news this weekend I tought there would be some info on the Nagios forum on how to check for this security issue but no info was available.
The Log4j vulnerability is an Apache security flaw: https://unit42.paloaltonetworks.com/apa ... 021-44228/
The affected Red Hat OSses can be found here:https://access.redhat.com/security/cve/cve-2021-44228
For Red Hat Enterprise Linux 7 ( the one e are running)there are no issues since it is not affected but I was wondering if there was a possibility that for some reason Nagios would need it.
Maybe the Nagios needs to have it for some reason.
For the people that use a Red Hat Version that is affected they need to take action!
Log4j Vulnerability Nagios
-
benjaminsmith
- Posts: 5324
- Joined: Wed Aug 22, 2018 4:39 pm
- Location: saint paul
Re: Log4j Vulnerability Nagios
HI @nagios-retail,
We have published information this morning on this vulnerability on our company blog:
https://www.nagios.com/news/
While Nagios XI does not have this program by default, we recommend reviewing your systems for any java based integrations or other software that may utilize this package.
--Benjamin
We have published information this morning on this vulnerability on our company blog:
https://www.nagios.com/news/
While Nagios XI does not have this program by default, we recommend reviewing your systems for any java based integrations or other software that may utilize this package.
--Benjamin
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Be sure to check out our Knowledgebase for helpful articles and solutions!
Be sure to check out our Knowledgebase for helpful articles and solutions!