Have you ever sat down at your desk, determined to crank out some serious work—only to find yourself two hours later, feverishly scrolling through social media, no closer to finishing your project than when you started?
REF: https://blog.trello.com/why-willpower-wont-make-you-more-productive
2018年9月29日 星期六
Argo Smart Routing improves the way traffic is routed across the Internet
REF: https://www.cloudflare.com/products/argo-smart-routing/
[Check_mk Announce] New Check_MK stable release 1.5.0p5
---------- Forwarded message ---------
From: Check_mk Announcements
Date: Sat, Sep 29, 2018 at 5:51 AM
WATO:
* 6662 Timespecific check parameters: Changed computation algorithm to allow more flexible configurations
NOTE: Please refer to the migration notes!
* 6709 SEC: Fixed possible information disclosure to apache log when editing users
* 6568 SEC: Fixed possible XSS on custom icon management page
* 6567 SEC: Fixed possible XSS on activate changes page
* 6609 SEC: Fixed possible XSS on SNMP MIB upload page
* 6611 SEC: Fixed multiple reflected XSS attacks using AJAX calls
* 6618 SEC: Fixed missing CSRF protection for host diagnostic AJAX calls
* 6626 FIX: Timeperiod deletion was not possible when using time specific parameters
* 6719 FIX: Simplified user setting: Temporarily disable notifications
* 6661 FIX: Periodic service discovery/cronjob: Changed loglevel of informational message
* 6727 FIX: Increased size of BI editor parameter input fields
* 6562 FIX: Fixed random "I/O operation on closed file" errors in different situations
* 6503 FIX: Fixed error handling for duplicate EC rule IDs.
* 6715 FIX: Editing BI Rules: Increased size of the rule ID input field
* 6495 FIX: Bulk discovery: "Include subfolders" does not make sense for a selection of hosts
* 6660 FIX: Background Jobs: fixed issue with monitoring sites running on nfs mount
User interface:
* 6710 SEC: Limit crash reporting functionality to permitted users
* 6615 SEC: Fixed unauthorized access to master control actions
* 6612 SEC: Fixed possible reflected XSS using back URLs in view editor
* 6622 SEC: Fixed possible open redirect on login page
* 6610 SEC: Fixed possible XSS using the dokuwiki snapin
* 6565 SEC: Fixed possible XSS issues in Bookmarks snapin
* 6613 SEC: Fixed multiple reflected XSS in affecting sidebar snapin AJAX calls
* 6620 SEC: Fixed missing CSRF protection for site status AJAX calls
* 6619 SEC: Fixed missing CSRF protection for master control AJAX calls
* 6749 FIX: New Theme: Fixed some minor bugs
* 6772 FIX: LDAP: Only save users on changed configuration
* 6728 FIX: Hide links to not permitted views from host context menu
* 6561 FIX: Fixed invalid context button links to "Service globally" and "Graphs globally"
* 6725 FIX: Fixed grouping of service descriptions when view rows are already grouped
* 6726 FIX: Fixed duplicate view names in "link to" dropdown in view editor
* 6773 FIX: Fixed URL redirect from /[site]/ when using custom ports
* 6560 FIX: Editing views: Increased size of unique ID input field
* 6750 FIX: Classic Theme: Added new logo to classic theme
* 6663 FIX: BI configuration: WATO slave sites without user login now also receive BI configuration changes
* 6724 FIX: Add missing permission for viewing host/service availability
Site management:
* 6559 OMD update is now warning when changing editions
* 6616 Add --no-tmpfs option to "omd create"
* 6717 3rd party components and licenses are now listed in central file
Other components:
* 6623 FIX: NagVis: Updated to 1.9.10
Notifications:
* 6720 FIX: Bulk mail notifications: Single notifications in bulks use non-bulk subject
HW/SW inventory:
* 6608 FIX: win_wmi_updates: Fixed parsing install date if reported in HEX format
* 6494 FIX: win_video: Fixed crash if driver date is missing
* 6600 FIX: inv_win_wmi_updates: Fixed parsing install date; regard all possible formats
* 6468 FIX: docker_node_network: Fix crashing HW/SW inventory when labels are not set
* 6631 FIX: docker_container_node_name: Fix broken inventory plugin
* 6599 FIX: HW/SW Inventory: Only count the real entries
* 6598 FIX: HW/SW Inventory: Do not list plugins on commandline for which the related section is empty
* 6627 FIX: Fixed exception in export hook software_csv
Event console:
* 6718 FIX: Fixed invalid exception handling when unable to initialize the Event Console
* 6716 FIX: Add SNMP trap processing log target for deep SNMP trap debugging
Core & setup:
* 6625 FIX: Fixed possible failed mkbackup because of changed mknotifyd state file
* 6713 FIX: Fixed monitoring of piggyback based services when "No agent" is configured
* 6712 FIX: Fixed TypeError exception when running "cmk -D" on hosts without IP address
Checks & agents:
* 6730 FIX: winperf_processor.util: Fixed displaying average values in graphs
* 6605 FIX: winperf_if: Fixed discovery of network interface alias
NOTE: Please refer to the migration notes!
* 6590 FIX: uptime.include: Even if an SNMP-Device does not have a sysDesc it still can have an uptime
* 6478 FIX: synology_raid: Fixed crash on devices with more possibles raid states
* 6593 FIX: sylo: Fixed missing performance data 'IN' and 'OUT' rates
* 6592 FIX: snmp_info: Generate snmp_info service even if the sysDescription is not set
* 6493 FIX: netscaler_vserver: Discovers readable names
* 6466 FIX: netgear_fans: Don't crash on empty info
* 6597 FIX: netapp_api_vs_traffic: Fixed pending services
* 6467 FIX: jolokia_metrics.tp: Only discover services which can be checked
* 6591 FIX: if: Network appliances with only one network interface were not discovered
* 6589 FIX: ibm_svc_mdiskgrp: Fixed disregarded provisioning state
* 6734 FIX: ibm_svc_enclosure: Fixed parsing data of IBM-FLASH900 devices
* 6769 FIX: genua_fan genua_pfstate: Fixed crashing discovery on empty data
* 6601 FIX: fsc_sc2_fans, fsc_sc2_psu: Discover fans and PSUs only if present
* 5845 FIX: fsc checks: prevent fsc_fans and fsc_temp if corresponding fsc_sc2-* data is available, made snmp_scan_functions more readable
NOTE: Please refer to the migration notes!
* 6491 FIX: fortinet_controller_aps: Services disappear because no clients are connected
* 6714 FIX: docker_container_status: Fixed possible "ValueError" exception
* 6630 FIX: df: Do not ignore filesystems mounted at /var/lib/docker and /var/lib/docker-latest
* 6735 FIX: cpu_util_unix: Fixed calculation of CPU usage on UNIX
* 6496 FIX: check_mk_agent.linux: Moved piggybacked docker container sections to plugin 'mk_docker_container_piggybacked'
NOTE: Please refer to the migration notes!
* 6731 FIX: check_mk_agent.aix: Fixed multiline output processing
* 6497 FIX: ceph_status, ceph_status.osds, ceph_status.mgrs: Used wrong value epoch rate instead of epoch average
* 6564 FIX: Fixed incorrect rate computation affecting various checks in some cases
* 6596 FIX: Do status data inventory: Check "HW/SW Inventory" and shell commands behave the same way
* 6603 FIX: CRE: Fixed Check_MK service crash if a check plugin is unknown to the check context
* 5510 FIX: Add missing metrics for Windows Memory and Pagefile check
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
From: Check_mk Announcements
Date: Sat, Sep 29, 2018 at 5:51 AM
WATO:
* 6662 Timespecific check parameters: Changed computation algorithm to allow more flexible configurations
NOTE: Please refer to the migration notes!
* 6709 SEC: Fixed possible information disclosure to apache log when editing users
* 6568 SEC: Fixed possible XSS on custom icon management page
* 6567 SEC: Fixed possible XSS on activate changes page
* 6609 SEC: Fixed possible XSS on SNMP MIB upload page
* 6611 SEC: Fixed multiple reflected XSS attacks using AJAX calls
* 6618 SEC: Fixed missing CSRF protection for host diagnostic AJAX calls
* 6626 FIX: Timeperiod deletion was not possible when using time specific parameters
* 6719 FIX: Simplified user setting: Temporarily disable notifications
* 6661 FIX: Periodic service discovery/cronjob: Changed loglevel of informational message
* 6727 FIX: Increased size of BI editor parameter input fields
* 6562 FIX: Fixed random "I/O operation on closed file" errors in different situations
* 6503 FIX: Fixed error handling for duplicate EC rule IDs.
* 6715 FIX: Editing BI Rules: Increased size of the rule ID input field
* 6495 FIX: Bulk discovery: "Include subfolders" does not make sense for a selection of hosts
* 6660 FIX: Background Jobs: fixed issue with monitoring sites running on nfs mount
User interface:
* 6710 SEC: Limit crash reporting functionality to permitted users
* 6615 SEC: Fixed unauthorized access to master control actions
* 6612 SEC: Fixed possible reflected XSS using back URLs in view editor
* 6622 SEC: Fixed possible open redirect on login page
* 6610 SEC: Fixed possible XSS using the dokuwiki snapin
* 6565 SEC: Fixed possible XSS issues in Bookmarks snapin
* 6613 SEC: Fixed multiple reflected XSS in affecting sidebar snapin AJAX calls
* 6620 SEC: Fixed missing CSRF protection for site status AJAX calls
* 6619 SEC: Fixed missing CSRF protection for master control AJAX calls
* 6749 FIX: New Theme: Fixed some minor bugs
* 6772 FIX: LDAP: Only save users on changed configuration
* 6728 FIX: Hide links to not permitted views from host context menu
* 6561 FIX: Fixed invalid context button links to "Service globally" and "Graphs globally"
* 6725 FIX: Fixed grouping of service descriptions when view rows are already grouped
* 6726 FIX: Fixed duplicate view names in "link to" dropdown in view editor
* 6773 FIX: Fixed URL redirect from /[site]/ when using custom ports
* 6560 FIX: Editing views: Increased size of unique ID input field
* 6750 FIX: Classic Theme: Added new logo to classic theme
* 6663 FIX: BI configuration: WATO slave sites without user login now also receive BI configuration changes
* 6724 FIX: Add missing permission for viewing host/service availability
Site management:
* 6559 OMD update is now warning when changing editions
* 6616 Add --no-tmpfs option to "omd create"
* 6717 3rd party components and licenses are now listed in central file
Other components:
* 6623 FIX: NagVis: Updated to 1.9.10
Notifications:
* 6720 FIX: Bulk mail notifications: Single notifications in bulks use non-bulk subject
HW/SW inventory:
* 6608 FIX: win_wmi_updates: Fixed parsing install date if reported in HEX format
* 6494 FIX: win_video: Fixed crash if driver date is missing
* 6600 FIX: inv_win_wmi_updates: Fixed parsing install date; regard all possible formats
* 6468 FIX: docker_node_network: Fix crashing HW/SW inventory when labels are not set
* 6631 FIX: docker_container_node_name: Fix broken inventory plugin
* 6599 FIX: HW/SW Inventory: Only count the real entries
* 6598 FIX: HW/SW Inventory: Do not list plugins on commandline for which the related section is empty
* 6627 FIX: Fixed exception in export hook software_csv
Event console:
* 6718 FIX: Fixed invalid exception handling when unable to initialize the Event Console
* 6716 FIX: Add SNMP trap processing log target for deep SNMP trap debugging
Core & setup:
* 6625 FIX: Fixed possible failed mkbackup because of changed mknotifyd state file
* 6713 FIX: Fixed monitoring of piggyback based services when "No agent" is configured
* 6712 FIX: Fixed TypeError exception when running "cmk -D" on hosts without IP address
Checks & agents:
* 6730 FIX: winperf_processor.util: Fixed displaying average values in graphs
* 6605 FIX: winperf_if: Fixed discovery of network interface alias
NOTE: Please refer to the migration notes!
* 6590 FIX: uptime.include: Even if an SNMP-Device does not have a sysDesc it still can have an uptime
* 6478 FIX: synology_raid: Fixed crash on devices with more possibles raid states
* 6593 FIX: sylo: Fixed missing performance data 'IN' and 'OUT' rates
* 6592 FIX: snmp_info: Generate snmp_info service even if the sysDescription is not set
* 6493 FIX: netscaler_vserver: Discovers readable names
* 6466 FIX: netgear_fans: Don't crash on empty info
* 6597 FIX: netapp_api_vs_traffic: Fixed pending services
* 6467 FIX: jolokia_metrics.tp: Only discover services which can be checked
* 6591 FIX: if: Network appliances with only one network interface were not discovered
* 6589 FIX: ibm_svc_mdiskgrp: Fixed disregarded provisioning state
* 6734 FIX: ibm_svc_enclosure: Fixed parsing data of IBM-FLASH900 devices
* 6769 FIX: genua_fan genua_pfstate: Fixed crashing discovery on empty data
* 6601 FIX: fsc_sc2_fans, fsc_sc2_psu: Discover fans and PSUs only if present
* 5845 FIX: fsc checks: prevent fsc_fans and fsc_temp if corresponding fsc_sc2-* data is available, made snmp_scan_functions more readable
NOTE: Please refer to the migration notes!
* 6491 FIX: fortinet_controller_aps: Services disappear because no clients are connected
* 6714 FIX: docker_container_status: Fixed possible "ValueError" exception
* 6630 FIX: df: Do not ignore filesystems mounted at /var/lib/docker and /var/lib/docker-latest
* 6735 FIX: cpu_util_unix: Fixed calculation of CPU usage on UNIX
* 6496 FIX: check_mk_agent.linux: Moved piggybacked docker container sections to plugin 'mk_docker_container_piggybacked'
NOTE: Please refer to the migration notes!
* 6731 FIX: check_mk_agent.aix: Fixed multiline output processing
* 6497 FIX: ceph_status, ceph_status.osds, ceph_status.mgrs: Used wrong value epoch rate instead of epoch average
* 6564 FIX: Fixed incorrect rate computation affecting various checks in some cases
* 6596 FIX: Do status data inventory: Check "HW/SW Inventory" and shell commands behave the same way
* 6603 FIX: CRE: Fixed Check_MK service crash if a check plugin is unknown to the check context
* 5510 FIX: Add missing metrics for Windows Memory and Pagefile check
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
2018年9月27日 星期四
Top 10 Networking Features in Windows Server 2019: #5 Network Performance Improvements for Virtual Workloads
In the task manager window on the right, the same virtual NIC is now benefiting from RSC in the vSwitch. The CPU processing has decreased to 23% despite the receive throughput increasing to 37.9 Gbps!
REF: https://blogs.technet.microsoft.com/networking/2018/08/22/netperf4vw/
2018年9月26日 星期三
Plex: Subtitles without the work
REF: https://www.plex.tv/blog/subtitles-and-sunsets-big-improvements-little-housekeeping/
2018年9月25日 星期二
2018年9月24日 星期一
OpenBSD Routing Domains
2018年9月23日 星期日
Everything you need to know about Windows Server 2019
These guiding principles and areas of focus help us ensure that we not only provide reactive mitigation to what are sadly becoming commonplace threats, but that we also build in proactive measures that prevent attacks from ever starting in the first place. Stated succinctly, security isn’t a bolt-on, it’s an architectural principle and one that both Windows 10 and Windows Server 2019 are walking (well, running if you’ll excuse the pun) incarnations of.
REF: https://cloudblogs.microsoft.com/windowsserver/2018/09/06/everything-you-need-to-know-about-windows-server-2019-part-3/
Trello: Push Off Flaws, Be Less Productive: How To Stop Making Excuses
You made a New Year’s resolution to go for a run at least three times per week, but have only managed to put on your running shoes a handful of times. It’s easy to muster up excuses as to why you haven’t stuck to your goal—you’ve been working late nights, it’s been too cold (or too hot) out to run—or you simply just can’t “find” the time to exercise consistently.
REF: https://blog.trello.com/stop-making-excuses-less-productive
TrendLabs: Viro Botnet Ransomware Breaks Through
Figure 1. Virobot queries the machine to see if contains the registry keys needed for encryption.
REF: https://blog.trendmicro.com/trendlabs-security-intelligence/virobot-ransomware-with-botnet-capability-breaks-through/
[Check_mk Announce] New Check_MK stable release 1.4.0p36
---------- Forwarded message ---------
From: Check_mk Announcements
Date: Thu, Sep 20, 2018 at 4:58 PM
WATO:
* 6568 SEC: Fixed possible XSS on custom icon management page
* 6567 SEC: Fixed possible XSS on activate changes page
* 6609 SEC: Fixed possible XSS on SNMP MIB upload page
* 6611 SEC: Fixed multiple reflected XSS attacks using AJAX calls
* 6618 SEC: Fixed missing CSRF protection for host diagnostic AJAX calls
* 4682 SEC: Add permission "Can add or modify executables" to be able to fine tune access rights
NOTE: Please refer to the migration notes!
* 6552 FIX: Role changes now create change entries on central site
* 6551 FIX: Fixed missing permission checking during "Discard changes"
User interface:
* 6615 SEC: Fixed unauthorized access to master control actions
* 6612 SEC: Fixed possible reflected XSS using back URLs in view editor
* 6622 SEC: Fixed possible open redirect on login page
* 6610 SEC: Fixed possible XSS using the dokuwiki snapin
* 6565 SEC: Fixed possible XSS issues in Bookmarks snapin
* 6613 SEC: Fixed multiple reflected XSS in affecting sidebar snapin AJAX calls
* 6620 SEC: Fixed missing CSRF protection for site status AJAX calls
* 6619 SEC: Fixed missing CSRF protection for master control AJAX calls
HW/SW inventory:
* 6494 FIX: win_video: Fixed crash if driver date is missing
Checks & agents:
* 5223 juniper_alarm, juniper_bgp_state, juniper_cpu, juniper_cpu_util, juniper_fru, juniper_mem: Try discovery also on QFX series devices
* 6472 FIX: zpool: Fixed title and units of graphs
* 6590 FIX: uptime.include: Even if an SNMP-Device does not have a sysDesc it still can have an uptime
* 6593 FIX: sylo: Fixed missing performance data 'IN' and 'OUT' rates
* 6461 FIX: solaris_mem: Fix crashing check when values in agent output are given in Kilobytes
* 6592 FIX: snmp_info: Generate snmp_info service even if the sysDescription is not set
* 6404 FIX: oracle_undostat: prevent the discovery of invalid services
* 6493 FIX: netscaler_vserver: Discovers readable names
* 6597 FIX: netapp_api_vs_traffic: Fixed pending services
* 6398 FIX: netapp_api_environment: Fixed discovery of environmental sensors like PSU
* 6489 FIX: mssql_backup: Fixed parsing of backup date, time and type
* 6460 FIX: jolokia_generic: Do not crash when non-numeric data is supplied for number or rate type values
* 6591 FIX: if: Network appliances with only one network interface were not discovered
* 6589 FIX: ibm_svc_mdiskgrp: Fixed disregarded provisioning state
* 6313 FIX: esx_vsphere_hostsystem: Fixed discovery of multipaths
* 6400 FIX: brocade_fcport: fix for the calculation of received and transmitted bytes per second
* 6476 FIX: apc_symmetra: Fixed transposed default levels for battery capacity
NOTE: Please refer to the migration notes!
* 6474 FIX: aix_diskiod: Fixed style of graphs
* 6459 FIX: 3par_volumes: Fix crash due to unknown provisioning type
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
From: Check_mk Announcements
Date: Thu, Sep 20, 2018 at 4:58 PM
WATO:
* 6568 SEC: Fixed possible XSS on custom icon management page
* 6567 SEC: Fixed possible XSS on activate changes page
* 6609 SEC: Fixed possible XSS on SNMP MIB upload page
* 6611 SEC: Fixed multiple reflected XSS attacks using AJAX calls
* 6618 SEC: Fixed missing CSRF protection for host diagnostic AJAX calls
* 4682 SEC: Add permission "Can add or modify executables" to be able to fine tune access rights
NOTE: Please refer to the migration notes!
* 6552 FIX: Role changes now create change entries on central site
* 6551 FIX: Fixed missing permission checking during "Discard changes"
User interface:
* 6615 SEC: Fixed unauthorized access to master control actions
* 6612 SEC: Fixed possible reflected XSS using back URLs in view editor
* 6622 SEC: Fixed possible open redirect on login page
* 6610 SEC: Fixed possible XSS using the dokuwiki snapin
* 6565 SEC: Fixed possible XSS issues in Bookmarks snapin
* 6613 SEC: Fixed multiple reflected XSS in affecting sidebar snapin AJAX calls
* 6620 SEC: Fixed missing CSRF protection for site status AJAX calls
* 6619 SEC: Fixed missing CSRF protection for master control AJAX calls
HW/SW inventory:
* 6494 FIX: win_video: Fixed crash if driver date is missing
Checks & agents:
* 5223 juniper_alarm, juniper_bgp_state, juniper_cpu, juniper_cpu_util, juniper_fru, juniper_mem: Try discovery also on QFX series devices
* 6472 FIX: zpool: Fixed title and units of graphs
* 6590 FIX: uptime.include: Even if an SNMP-Device does not have a sysDesc it still can have an uptime
* 6593 FIX: sylo: Fixed missing performance data 'IN' and 'OUT' rates
* 6461 FIX: solaris_mem: Fix crashing check when values in agent output are given in Kilobytes
* 6592 FIX: snmp_info: Generate snmp_info service even if the sysDescription is not set
* 6404 FIX: oracle_undostat: prevent the discovery of invalid services
* 6493 FIX: netscaler_vserver: Discovers readable names
* 6597 FIX: netapp_api_vs_traffic: Fixed pending services
* 6398 FIX: netapp_api_environment: Fixed discovery of environmental sensors like PSU
* 6489 FIX: mssql_backup: Fixed parsing of backup date, time and type
* 6460 FIX: jolokia_generic: Do not crash when non-numeric data is supplied for number or rate type values
* 6591 FIX: if: Network appliances with only one network interface were not discovered
* 6589 FIX: ibm_svc_mdiskgrp: Fixed disregarded provisioning state
* 6313 FIX: esx_vsphere_hostsystem: Fixed discovery of multipaths
* 6400 FIX: brocade_fcport: fix for the calculation of received and transmitted bytes per second
* 6476 FIX: apc_symmetra: Fixed transposed default levels for battery capacity
NOTE: Please refer to the migration notes!
* 6474 FIX: aix_diskiod: Fixed style of graphs
* 6459 FIX: 3par_volumes: Fix crash due to unknown provisioning type
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
2018年9月19日 星期三
Wowza's new blog and sign up
|
2018年9月18日 星期二
Crypto Week of Cloudflare
|
2018年9月17日 星期一
[USN-3763-1] Linux kernel vulnerability
---------- Forwarded message ---------
From: Steve Beattie
Date: 2018年9月11日 週二 下午1:18
Juha-Matti Tilli discovered that the TCP implementation in the Linux kernel
performed algorithmically expensive operations in some situations when
handling incoming packets. A remote attacker could use this to cause a
denial of service.
References:
https://usn.ubuntu.com/usn/usn-3763-1
CVE-2018-5390
From: Steve Beattie
Date: 2018年9月11日 週二 下午1:18
Juha-Matti Tilli discovered that the TCP implementation in the Linux kernel
performed algorithmically expensive operations in some situations when
handling incoming packets. A remote attacker could use this to cause a
denial of service.
References:
https://usn.ubuntu.com/usn/usn-3763-1
CVE-2018-5390
2018年9月15日 星期六
Introducing Blackmagic RAW!
2018年9月14日 星期五
TrendLabs: September Patch Tuesday: Windows Fixes ALPC Elevation of Privilege, Remote Code Execution Vulnerabilities
September’s Patch Tuesday provides a security patch for CVE-2018-8440, an elevation of privilege vulnerability that occurs when Windows incorrectly handles calls to the Advanced Local Procedure Call (ALPC) interface. This bug allows threat actors to run code with administrative privileges, install programs, or even create new accounts with full user rights. This bug’s source code has been publicly disclosed as of August 27 via Twitter and has been seen actively used in malicious campaigns as early as September 5.
REF: https://blog.trendmicro.com/trendlabs-security-intelligence/september-patch-tuesday-windows-fixes-alpc-elevation-of-privilege-remote-code-execution-vulnerabilities/
REF: https://blog.trendmicro.com/trendlabs-security-intelligence/september-patch-tuesday-windows-fixes-alpc-elevation-of-privilege-remote-code-execution-vulnerabilities/
2018年9月13日 星期四
Trello: Candid Thoughts on Getting $#!* Done
Motivation is a tricky thing. It’s hard to stay motivated, and it’s hard to find time to work on ourselves. What do we do when “just do it” doesn’t work?
REF: https://blog.trello.com/gsd-productivity-how-to-get-unstuck
2018年9月12日 星期三
[Check_mk Announce] New Check_MK stable release 1.5.0p4
---------- Forwarded message ---------
From: Check_mk Announcements
Date: Tue, Sep 11, 2018 at 7:49 PM
WATO:
* 6552 FIX: Role changes now create change entries on central site
* 6551 FIX: Fixed missing permission checking during "Discard changes"
* 6579 FIX: Fixed host renaming in notification rules
User interface:
* 6475 FIX: New Theme: Fixed snapins in dashboards
* 6549 FIX: Crash reports: Filter out password/_password from HTTP vars of GUI crashes
Site management:
* 6550 FIX: Fixed warning "bad ps syntax" when stopping a site on e.g. SLES11
Linux distributions:
* 6557 Add build support for SLES15
Core & setup:
* 6554 FIX: Raw Edition: Improved handling of configuration errors
* 6553 FIX: Fix "Error running .../MKEVENTD 'set' 'on'" error in case of config errors during update
Checks & agents:
* 6409 FIX: wmi.include: don't throw exepctions in the parse function
* 6488 FIX: storeonce_servicesets, storeonce_clusterinfo: Consider new API keys of capacity and free space values
* 6489 FIX: mssql_backup: Fixed parsing of backup date, time and type
* 6485 FIX: fsc_sc2_voltage: Do not discover not-available voltage units
* 6476 FIX: apc_symmetra: Fixed transposed default levels for battery capacity
NOTE: Please refer to the migration notes!
* 6464 FIX: Linux Agent: Fix excluded filesystems in df section
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
From: Check_mk Announcements
Date: Tue, Sep 11, 2018 at 7:49 PM
WATO:
* 6552 FIX: Role changes now create change entries on central site
* 6551 FIX: Fixed missing permission checking during "Discard changes"
* 6579 FIX: Fixed host renaming in notification rules
User interface:
* 6475 FIX: New Theme: Fixed snapins in dashboards
* 6549 FIX: Crash reports: Filter out password/_password from HTTP vars of GUI crashes
Site management:
* 6550 FIX: Fixed warning "bad ps syntax" when stopping a site on e.g. SLES11
Linux distributions:
* 6557 Add build support for SLES15
Core & setup:
* 6554 FIX: Raw Edition: Improved handling of configuration errors
* 6553 FIX: Fix "Error running .../MKEVENTD 'set' 'on'" error in case of config errors during update
Checks & agents:
* 6409 FIX: wmi.include: don't throw exepctions in the parse function
* 6488 FIX: storeonce_servicesets, storeonce_clusterinfo: Consider new API keys of capacity and free space values
* 6489 FIX: mssql_backup: Fixed parsing of backup date, time and type
* 6485 FIX: fsc_sc2_voltage: Do not discover not-available voltage units
* 6476 FIX: apc_symmetra: Fixed transposed default levels for battery capacity
NOTE: Please refer to the migration notes!
* 6464 FIX: Linux Agent: Fix excluded filesystems in df section
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
2018年9月11日 星期二
TrendLabs: A Closer Look at the Locky Poser, PyLocky Ransomware
GNU/LinuxDay in the Alps
The GNU/LinuxDay is the biggest conference on Linux and Free Software in the Alps, close to the beautiful Lake Constance which is situated in Austria, Germany and Switzerland.
Proxmox VE und Ceph - Hyperkonvergente Infrastruktur
Proxmox will give a presentation on how to build a hyper-converged infrastructure with the open-source solutions Proxmox VE & Ceph. We will also have a booth there, so come and meet us at the LinuxDays 2018 in Dornbirn, Austria.
REF: https://www.linuxday.at/proxmox-ve-und-ceph-hyperkonvergente-infrastruktur
2018年9月9日 星期日
TrendLabs: Stolen Data from Chinese Hotel Chain and Other Illicit Products Sold in Deep Web Forum
Figure 1: Advertisements in dark web selling stolen PII from the hacked databases of the hotel chain
REF: https://blog.trendmicro.com/trendlabs-security-intelligence/we-uncovered-personally-identifiable-information-pii-stolen-from-a-china-based-hotel-chain-being-sold-on-a-deep-web-forum-we-were-monitoring/
2018年9月8日 星期六
Who's afraid of Spectre and Meltdown?
From July 31 by Alexandre Oliva
Freedom doesn't magically repel each and every threat, but freedom and control of our software give us the opportunity to protect ourselves and each other. That is, software freedom does not protect you from remote NetSpectre attacks, but if all the software running on computers under your control is free software, you can scan its source code for remotely-exploitable gadgets, modify them so that they are no longer exploitable, and be assured that none remain hiding in binary blobs, because such blobs do not belong in free software.
REF: https://www.fsfla.org/ikiwiki/blogs/lxo/pub/who-is-afraid-of-spectre-and-meltdown
Freedom doesn't magically repel each and every threat, but freedom and control of our software give us the opportunity to protect ourselves and each other. That is, software freedom does not protect you from remote NetSpectre attacks, but if all the software running on computers under your control is free software, you can scan its source code for remotely-exploitable gadgets, modify them so that they are no longer exploitable, and be assured that none remain hiding in binary blobs, because such blobs do not belong in free software.
REF: https://www.fsfla.org/ikiwiki/blogs/lxo/pub/who-is-afraid-of-spectre-and-meltdown
2018年9月7日 星期五
Open FinTech Forum: AI, Blockchain & Kubernetes
2018年9月6日 星期四
[Check_mk Announce] New Check_MK stable release 1.5.0p3
---------- Forwarded message ---------
From: Check_mk Announcements
Date: Tue, Sep 4, 2018 at 2:02 PM
This maintenance release ships with 53 changes affecing all editions of Check_MK,
7 Enterprise Edition specific changes and 0 Managed Services Edition specific changes.
Changes in all Check_MK Editions:
WATO:
* 6513 FIX: hp_msa: Hide password from GUI in configuration dialogs
* 6451 FIX: Service discovery: "Analyze parameters..." link of manual checks is now correct
* 6510 FIX: Global Settings: Custom localizations recognizes new languages now immediately
* 6511 FIX: Global Settings: Custom localizations fixed possible exception when language alias contains non-ascii characters
* 6519 FIX: Fixed unselecting items from dual list choice via double click
* 6518 FIX: Fixed sorting of dual list choices (like network interface types)
* 6293 FIX: Fixed exeption when trying to delete hosts of disabled slave sites
* 6454 FIX: Fixed "tree_spec" exception in virtual host tree snapin with older configs
* 6524 FIX: BI: Fixed folding of BI aggregations of the same type
User interface:
* 6452 SEC: Fixed wrong sidebar snapin permission checking
* 6522 FIX: if_fortigate: Add perfometer
* 6292 FIX: Werk list: Fixed wrong number of werks shown at top of the page
* 6291 FIX: Werk list: Fixed input validation and error handling
* 6289 FIX: User profile: Theme changes are applied to result page automatically
* 6525 FIX: Raw Edition: Graphing pages are now themed correctly
* 6471 FIX: New Theme: Updated fixes
* 6470 FIX: New Theme: New fixes for modern theme
* 6469 FIX: New Theme: Fixed again several bugs
* 6290 FIX: Limit the output of the werk list to the number of groups
* 6453 FIX: LDAP: Users with non-ASCII characters in uid could be created incorrectly
* 6455 FIX: LDAP: Multiple sync processes could be running at the same time
* 6526 FIX: LDAP: Fixed another "ValueError: option error" exception when using LDAP over SSL on some distros
* 6530 FIX: Fixed possible error "You can not override a builtin auxiliary tag" after update
Site management:
* 6528 FIX: TMPFS config hook is now available again
* 6285 FIX: Improved Check_MK installations in containers
Other components:
* 6517 FIX: Nagios: Improved init script when tmpfs is not prepared
* 6527 FIX: Add missing package dependency cron/cronie on most distros
Event console:
* 6499 FIX: Fixed execution of event console actions
Core & setup:
* 6458 FIX: IPMI Management board: Use USER privilege level for monitoring
* 6457 FIX: IPMI Management board: Improved error handling when sensors can not be read
* 6456 FIX: IPMI Management board: Fixed "cmk -d" on hosts with enabled mgmt board
Checks & agents:
* 6472 FIX: zpool: Fixed title and units of graphs
* 6461 FIX: solaris_mem: Fix crashing check when values in agent output are given in Kilobytes
* 6404 FIX: oracle_undostat: prevent the discovery of invalid services
* 6523 FIX: nginx_status: Fixed discovery of running instances on Ubuntu
* 6398 FIX: netapp_api_environment: Fixed discovery of environmental sensors like PSU
* 6402 FIX: mssql_counters.locks_per_batch: avoid crash if parameters are defined
* 6407 FIX: mk_postgres, postgres_instances: output missing instance data
NOTE: Please refer to the migration notes!
* 6218 FIX: mgmt_ipmi_sensors: Wrong battery / power supply WARN state
* 6217 FIX: mgmt_ipmi_sensors: Fix wrong state for IPMI Sensor warnings
* 6403 FIX: memory.include: return UNKNOWN if the total memory is not present
* 6406 FIX: df: fix a crash of the check if the inode count is '-'
* 6529 FIX: df: Fixed inode monitoring
* 6215 FIX: cisco_secure: Fix UNKOWN state for disabled portsecurity
* 6401 FIX: brocade_mlx.module_mem: avoid a crash of all services if SNMP data for one service is missing
* 6400 FIX: brocade_fcport: fix for the calculation of received and transmitted bytes per second
* 6408 FIX: blade_health: The state "degraded (non critical)" is now treated as WARN instead of CRIT
* 6520 FIX: akcp_sensor_temp: Add missing reference to check default levels
* 6521 FIX: akcp_exp_temp: Fixed reference to invalid default levels variable
* 6474 FIX: aix_diskiod: Fixed style of graphs
* 6512 FIX: agent_3par: Fixed broken 3par special agent (Regression in 1.5.0p1, #6420)
* 6397 FIX: Fixed too high CPU utilization on SNMP devices like HP procurve switches
* 6484 FIX: Fixed filtering check plugins for the management board and the host itself
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
From: Check_mk Announcements
Date: Tue, Sep 4, 2018 at 2:02 PM
This maintenance release ships with 53 changes affecing all editions of Check_MK,
7 Enterprise Edition specific changes and 0 Managed Services Edition specific changes.
Changes in all Check_MK Editions:
WATO:
* 6513 FIX: hp_msa: Hide password from GUI in configuration dialogs
* 6451 FIX: Service discovery: "Analyze parameters..." link of manual checks is now correct
* 6510 FIX: Global Settings: Custom localizations recognizes new languages now immediately
* 6511 FIX: Global Settings: Custom localizations fixed possible exception when language alias contains non-ascii characters
* 6519 FIX: Fixed unselecting items from dual list choice via double click
* 6518 FIX: Fixed sorting of dual list choices (like network interface types)
* 6293 FIX: Fixed exeption when trying to delete hosts of disabled slave sites
* 6454 FIX: Fixed "tree_spec" exception in virtual host tree snapin with older configs
* 6524 FIX: BI: Fixed folding of BI aggregations of the same type
User interface:
* 6452 SEC: Fixed wrong sidebar snapin permission checking
* 6522 FIX: if_fortigate: Add perfometer
* 6292 FIX: Werk list: Fixed wrong number of werks shown at top of the page
* 6291 FIX: Werk list: Fixed input validation and error handling
* 6289 FIX: User profile: Theme changes are applied to result page automatically
* 6525 FIX: Raw Edition: Graphing pages are now themed correctly
* 6471 FIX: New Theme: Updated fixes
* 6470 FIX: New Theme: New fixes for modern theme
* 6469 FIX: New Theme: Fixed again several bugs
* 6290 FIX: Limit the output of the werk list to the number of groups
* 6453 FIX: LDAP: Users with non-ASCII characters in uid could be created incorrectly
* 6455 FIX: LDAP: Multiple sync processes could be running at the same time
* 6526 FIX: LDAP: Fixed another "ValueError: option error" exception when using LDAP over SSL on some distros
* 6530 FIX: Fixed possible error "You can not override a builtin auxiliary tag" after update
Site management:
* 6528 FIX: TMPFS config hook is now available again
* 6285 FIX: Improved Check_MK installations in containers
Other components:
* 6517 FIX: Nagios: Improved init script when tmpfs is not prepared
* 6527 FIX: Add missing package dependency cron/cronie on most distros
Event console:
* 6499 FIX: Fixed execution of event console actions
Core & setup:
* 6458 FIX: IPMI Management board: Use USER privilege level for monitoring
* 6457 FIX: IPMI Management board: Improved error handling when sensors can not be read
* 6456 FIX: IPMI Management board: Fixed "cmk -d" on hosts with enabled mgmt board
Checks & agents:
* 6472 FIX: zpool: Fixed title and units of graphs
* 6461 FIX: solaris_mem: Fix crashing check when values in agent output are given in Kilobytes
* 6404 FIX: oracle_undostat: prevent the discovery of invalid services
* 6523 FIX: nginx_status: Fixed discovery of running instances on Ubuntu
* 6398 FIX: netapp_api_environment: Fixed discovery of environmental sensors like PSU
* 6402 FIX: mssql_counters.locks_per_batch: avoid crash if parameters are defined
* 6407 FIX: mk_postgres, postgres_instances: output missing instance data
NOTE: Please refer to the migration notes!
* 6218 FIX: mgmt_ipmi_sensors: Wrong battery / power supply WARN state
* 6217 FIX: mgmt_ipmi_sensors: Fix wrong state for IPMI Sensor warnings
* 6403 FIX: memory.include: return UNKNOWN if the total memory is not present
* 6406 FIX: df: fix a crash of the check if the inode count is '-'
* 6529 FIX: df: Fixed inode monitoring
* 6215 FIX: cisco_secure: Fix UNKOWN state for disabled portsecurity
* 6401 FIX: brocade_mlx.module_mem: avoid a crash of all services if SNMP data for one service is missing
* 6400 FIX: brocade_fcport: fix for the calculation of received and transmitted bytes per second
* 6408 FIX: blade_health: The state "degraded (non critical)" is now treated as WARN instead of CRIT
* 6520 FIX: akcp_sensor_temp: Add missing reference to check default levels
* 6521 FIX: akcp_exp_temp: Fixed reference to invalid default levels variable
* 6474 FIX: aix_diskiod: Fixed style of graphs
* 6512 FIX: agent_3par: Fixed broken 3par special agent (Regression in 1.5.0p1, #6420)
* 6397 FIX: Fixed too high CPU utilization on SNMP devices like HP procurve switches
* 6484 FIX: Fixed filtering check plugins for the management board and the host itself
You can download Check_MK from our download page:
* http://mathias-kettner.de/check_mk_download.html
2018年9月5日 星期三
Graylog leads the latest Info-Tech SIEM Category Report
|
2018年9月4日 星期二
Zero Trust model
The Zero Trust architecture approach, first proposed by Forrester Research, is intended to address this by promoting "never trust, always verify" as its guiding principle. With Zero Trust there is no default trust for any entity — including users, devices, applications, and packets — regardless of what it is and its location on or relative to the corporate network. By establishing Zero Trust boundaries that effectively compartmentalize different segments of the network, you can protect critical intellectual property from unauthorized applications or users, reduce the exposure of vulnerable systems, and prevent the lateral movement of malware throughout your network.
REF: https://www.paloaltonetworks.com/solutions/initiatives/network-segmentation
REF: https://www.paloaltonetworks.com/solutions/initiatives/network-segmentation
2018年9月3日 星期一
Presenting TeamViewer’s Native Linux Client
REF: https://community.teamviewer.com/t5/Community-Blog/The-Wait-is-Over-Presenting-TeamViewer-s-Native-Linux-Client/ba-p/36765
2018年9月2日 星期日
Homebrew published their GitHub API token key in plaintext.
A hacker named Eric Holmes discovered that Homebrew published their GitHub API token key in plaintext.
“This is essentially an access key that, when inserted into web requests made to Homebrew’s GitHub account, tells the server what access rights to grant to those requests,” said Paul Ducklin,Senior Security Advisor, Sophos.
REF: http://www.admin-magazine.com/News/One-Hacker-Could-Have-Taken-Control-of-Macs-Used-by-IT-Professionals
2018年9月1日 星期六
Plex:Sonos + Podcasts
Sonos + Podcasts =
|
Big fan of that crisp, clear sound offered by Sonos? It’s your lucky day! We’ve improved support for music playback AND brought podcasts to Sonos. Now, not only can you listen to any song in your entire library, but you can also play your favorite series or news podcast on Plex in any room you have Sonos. |
訂閱:
文章 (Atom)