Nagios Support Forum

Is there any plan to update the MySQL 5.1.73 to a newer version?
I was told by the security folks that version 5.1.73 has reached end of support and there is no more patches available for it.

Please advice.

Hi rajasegar,

MySQL 5.1 is still supported by Oracle to the best of my knowledge. If you have other documented sources, please let me know so we can address the issue. Also, newer versions of Nagios XI utilize MariaDB instead of MySQL.

To clarify:

December 4, 2013
MySQL 5.1 covered under Oracle Lifetime Sustaining Support

Per Oracle's Lifetime Support policy, as of December 31, 2013, MySQL 5.1 is covered under Oracle Sustaining Support.

https://www.mysql.com/support/eol-notice.html

dwhitfield wrote:To clarify:

December 4, 2013
MySQL 5.1 covered under Oracle Lifetime Sustaining Support

Per Oracle's Lifetime Support policy, as of December 31, 2013, MySQL 5.1 is covered under Oracle Sustaining Support.

https://www.mysql.com/support/eol-notice.html

This clearly says pre-existing patches only which is the issue at hand.
How does moving to MariaDB help us when our DB is MySQL?

MariaDB is a fork of MySQL so it's the same thing.

RHEL and CentOS 7 come with MariaDB instead of MySQL. Nagios XI supports both MySQL and MariaDB.

However Oracle Enterprise Linux 7 (which is a code clone of RHEL) does not allow MariaDB to be installed (because Oracle owns MySQL and they aren't going to promote a fork of their own product). On this OS you need to install MySQL Community Edition. [While Oracle Linux is not support by Nagios XI I am using it as an example].

If you wanted to move to a newer verison of MySQL you may need to install the community edition.

https://dev.mysql.com/doc/mysql-repo-ex ... -repo.html

Box293 wrote:MariaDB is a fork of MySQL so it's the same thing.

RHEL and CentOS 7 come with MariaDB instead of MySQL. Nagios XI supports both MySQL and MariaDB.

However Oracle Enterprise Linux 7 (which is a code clone of RHEL) does not allow MariaDB to be installed (because Oracle owns MySQL and they aren't going to promote a fork of their own product). On this OS you need to install MySQL Community Edition. [While Oracle Linux is not support by Nagios XI I am using it as an example].

If you wanted to move to a newer verison of MySQL you may need to install the community edition.

https://dev.mysql.com/doc/mysql-repo-ex ... -repo.html

Thanks for the info.
My issue is the security folks are harassing me about using MySQL version that has no further updates/patches available.
So I expect Nagios to advice how to address this problem?

We are using RHEL 6.5, 6.6 and one CentOS 7.0

This clearly says pre-existing patches only which is the issue at hand.
How does moving to MariaDB help us when our DB is MySQL?

Pre-existing means basically security patches only until 2021. No new development on that branch.

avandemore wrote:

This clearly says pre-existing patches only which is the issue at hand.
How does moving to MariaDB help us when our DB is MySQL?

Pre-existing means basically security patches only until 2021. No new development on that branch.

Can you please point me to some documentary evidence on this. Thanks.

5.1 is definitely supported (as is 5.0): https://www.mysql.com/support/supported ... abase.html. The reason you don't see any updates in MySQL is because there have been no published vulnerabilities found against it after the EOL date.

That said, you are running an OS version Oracle does not support. Red Hat does support the packages.

Is your signature correct, that this is a 5.2.9 Nagios XI install that we are talking about on all three of the OSes you mention? If so, can you upgrade to 5.3.0?

dwhitfield wrote:5.1 is definitely supported (as is 5.0): https://www.mysql.com/support/supported ... abase.html. The reason you don't see any updates in MySQL is because there have been no published vulnerabilities found against it after the EOL date.

That said, you are running an OS version Oracle does not support. Red Hat does support the packages.

Is your signature correct, that this is a 5.2.9 Nagios XI install that we are talking about on all three of the OSes you mention? If so, can you upgrade to 5.3.0?

Already upgraded 3 of our 4 instances.

Pre-existing means basically security patches only until 2021. No new development on that branch.

Can you please advice where I can get more info on the above statement?