As you probably all know, a new NetEye version is released every two months. For this reason I’d like to emphasize that we recommend regular updating of your NetEye system. In particular with version 4.23 we released a major update of the operating system from CentOS 7 to RedHat 8. Since we’re doing a lot…
Read MoreIn NetEye 4.23 we shifted our base containers from CentOS to RedHat Enterprise Linux. Within our NetEye image and container we ship packages that come from RedHat Enterprise Linux’s private repositories and are thus subject to subscription, hence we need a way to be able to use our subscription when building NetEye containers. RedHat allows…
Read MoreSometimes you just need to temporarily grant access to a user to copy some files to your server. But no user should have access to the shell. For sftp this is quite simple (see below), but for scp it’s not that trivial. Also, you probably want to set the user up in a directory with…
Read MoreIn August I had the opportunity to assist an experienced consultant who was upgrading a NetEye cluster. Now, I’m a software developer, and while I know the consultants here who work with clients, I’ve always worked at the Würth Phoenix offices. I’ve never actually gone out in the field. So my goal was to try…
Read MoreSynopsis Important: Multiple Security updates for NetEye 4 Type/Severity Security Advisory: Important Topic Wuerth Phoenix has released some Critical Patches (CPs) for NetEye 4. These CPs resolve multiple vulnerabilities related to Privilege Escalation and authenticated remote command execution (RCE) exploits. Description GLPI was affected by an SSRF vulnerability in the External Calendars feature of the GLPI…
Read MoreWe fixed a bug that during the upgrade to NetEye 4.24 caused the RedHat version to update incorrectly. For NetEye 4.23 we updated the following packages: neteye-upgrade-manager to version 0.31.1-1
Read MoreWelcome to version 4.25 of our NetEye v4 Unified Monitoring Solution. In this release, NetEye goes to the alpine pastures to meet one of the more than 130,000 cows in South Tyrol. Ample space, pure air and environment are just some of the advantages that the South Tyrolean land offers to grazing animals. During the…
Read MoreWithin our Research and Development team we maintain a set of both physical and virtual machines for many purposes: internal repository mirrors, CI/CD, testing, internal docker registry, etc… Maintaining them is demanding, especially considering that our infrastructure has grown over the years and was often configured by different colleagues using different software and tools. And…
Read MoreDuring our implementation of the NetEye migration to Red Hat 8 we decided to drop our internal mirror for system packages and instead rely on Red Hat’s official repositories. Our goal was to improve reliability, speed up the delivery of updates, and alleviate the development team’s workload. But it also introduced a new issue: we…
Read MoreWelcome to version 4.23 of our NetEye v4 Unified Monitoring Solution. In the last two months, NetEye travelled from the western side of South Tyrol to eastern side, reaching the beautiful Lake Landro, located at more than 1,400 meters a.s.l. in the eponymous valley, near the municipality of Toblach/Dobbiaco. The lake is positioned between two…
Read MoreSynopsis Important: Elasticsearch and Logstash security mitigation Type/Severity Security Advisory: Important Topic A mitigation for Logstash and Elasticsearch is now available for NetEye 3. NetEye Product Security has rated this mitigation as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for…
Read MoreSynopsis Important: Elasticsearch and Logstash security updates Type/Severity Security Advisory: Important Topic An update for Logstash and Elasticsearch is now available for NetEye 4.20 and 4.21. NetEye Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is…
Read MoreSynopsis Important impact: httpd security update Type/Severity Security Advisory: Important impact Topic An update for httpd is now available for NetEye 4.17. NetEye Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating. Description httpd is the Apache…
Read MoreWhen you have to publicly release software like we do with NetEye every two months, it’s fundamental that users can verify that software: in our case that the RPMs that we build come from us and not from someone who pretends to be us, that they have not been tampered with, and that they do…
Read MoreSynopsis Critical: NeDi security update Type/Severity Security Advisory: Critical Topic An update for NeDi is now available for NetEye. NetEye Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE…
Read More