Changelog
The changelog contains the list of changes that you should be aware of such
as added features, changes in existing functionality, and bug fixes. To get
the latest updates for the standard release of OP5 Monitor, see ITRS OP5 Monitor 9.x Release Notes
2024.10.25
| Issue key |
Component |
Release description |
| MON-13506 |
|
Updated Host Wizard and Plugins Search to address the security vulnerability in XSS. |
2024.10.15
| Issue key |
Component |
Release description |
| MON-12822 |
Merlin |
Fixed an issue that caused Merlin to crash with segfaults when an empty binlog meta file was encountered during Naemon startup. |
| MON-13431 |
plugins,Pnp,Ninja |
Implemented a patch from monitoring-plugins 2.4.0 in check_icmp to resolve graph image issues for Performance data when hosts are down. |
2024.09.30
| Issue key |
Component |
Release description |
| MON-13440 |
op5reports |
The system now handles multiple object selection and deselection more effectively. Previously, deselecting one or more objects could lead to all objects being unselected, causing an error in the Availability Report. |
2024.09.11
| Issue key |
Component |
Release description |
| MON-13296 |
Merlin,Livestatus,Naemon |
The op5-naemon and monitor-livestatus have been upgraded to version 1.4.2, and Merlin has been updated for compatibility. The minimum required version of op5-naemon for Merlin is now 1.4.2. Additionally, a patch has been implemented to address an issue with the comment list where subsequent service comment deletions failed to synchronize with peers due to an empty in-memory list. |
2024.08.18
| Issue key |
Component |
Release description |
| MON-13487 |
Agents |
Updated the monitor-self-monitoring/op5-self-monitoring.spec file to limit the maximum Infrastructure Agent version during non-root user updates. This prevents potential issues as OP5 is configured to run certain plugins as root or as monitor user.
Steps:
# dnf update --exclude=infrastructure-agent
or
# dnf install 'dnf-command(versionlock)'
# dnf versionlock add infrastructure-agent-1.3.43440-1.el8.x86_64
# dnf update |
2024.08.02
| Issue key |
Component |
Release description |
| MON-13481 |
9.1 |
Fixed an issue in /usr/bin/mon check distribution where the tool incorrectly returned an error when encountering expired checks. |
2024.07.24
| Issue key |
Component |
Release description |
| MON-13423 |
autodiscovery |
Updated PyCryptodome to address security issues. |
| MON-13457 |
magellan |
Updated Magellan dependencies to address security issues. |
2024.07.24
| Issue key |
Component |
Release description |
| MON-13458 |
nachos |
Updated Nachos libraries to address security issues. |
2024.07.02
| Issue key |
Component |
Release description |
| MON-13287 |
plugins |
Fixed an issue where the check_snmpif command fails to recognize the -p option, resulting in an error message Unknown argument: -p. |
| MON-13459 |
plugins |
Fixed core dump issue when in traffic mode and using SNMP protocol version 1, if either interface name or description arguments are passed. |
2024.06.05
| Issue key |
Component |
Release description |
| MON-13349 |
Ninja,reports |
Fixed the display of the Trends graph in the PDF generated from Availability reports. |
2024.04.24
| Issue key |
Component |
Release description |
| MON-13334 |
Business services (synergy/bsm),geomap,Merlin,Nacoma,Ninja,pnp |
Updated the Nacoma hooks to Python 3.9. This ensures the hook scripts to run successfully after performing config changes in Nacoma. |
| MON-13357 |
livestatus,Merlin |
Updated the Merlin applications to Python 3.9. |
2024.03.06
| Issue key |
Component |
Release description |
| MON-13394 |
check_aws |
The check_aws plugin now uses the latest versions of its dependencies. |
2024.03.01
| Issue key |
Component |
Release description |
| MON-13399 |
install/upgrade |
Fixed an issue that prevented dnf updates on OP5 Monitor systems due to an outdated GPG key for the Infrastructure Agent package. The repository key has been updated. To ensure successful future updates, users with existing installations should manually update the GPG key in the Infrastructure Agent repository. |
2024.02.21
| Issue key |
Component |
Release description |
| MON-13354 |
|
The check_by_snmp_memory plugin now supports 64-bit counters for checking systems with large memory. |
2024.01.14
| Issue key |
Component |
Release description |
| MON-13313 |
Nacoma |
Fixed an issue that caused multiple services to be incorrectly displayed when adding a Windows host with port 9999. With this fix, only the intended NSclient services will be added when a Windows host with port 9999 is detected, ensuring accurate service configuration. |
| MON-13367 |
check_aws |
Fixed an issue that prevented users from successfully using other users in their credentials file with the --profile parameter. This issue was causing the NoCredentialsError: Unable to locate credentials error. |
2024.01.07
2023.12.21
| Issue key |
Component |
Release description |
| MON-13368 |
reports |
Sets the initial date range for the Events Log listview to the last 7 days. Previously, a timeout error occurred when displaying the Event Log due to OP5 Monitor attempting to retrieve all archived events. |
| MON-13380 |
op5config |
The self-monitoring check commands have been updated to use version 2.0 of NRPE packets for check_nrpe for better compatibility with the Infrastructure Agent. To apply this update to existing setups, you must force activate the management packs and save the resulting service check changes. |
2023.12.18
| Issue key |
Component |
Release description |
| MON-13374 |
Nacoma |
Fixed the issue that caused an Attribute Error when saving host configurations with custom variables in the template. |
| MON-13375 |
backup |
Fixed an issue in the restore of Nacoma configuration caused by Python updates after addressing CVE-2007-4559. This was previously identified and fixed in CentOS Stream and is now applied to Rocky8 and RHEL8 users as well. |
| MON-13379 |
backup |
Set uniform folder permissions for both monitor-nacoma and monitor-backup within the /var/www/html/backup/ directory to eliminate past issues where inconsistent permissions led to errors during backup deletions. |
2023.11.19
| Issue key |
Component |
Release description |
| MON-13223 |
Nacoma |
Fixed the issue of inconsistent results for service scans using auto-detection services on Windows hosts. |
2023.10.15
2023.10.09
| Issue key |
Component |
Release description |
| MON-13341 |
|
Fixed an issue on the dashboard widget for the Show Critical option checkbox where it is always enabled. |
| MON-13352 |
Nacoma |
The error message displayed for missing check commands when adding new services has been updated. |
2023.10.06
| Issue key |
Component |
Release description |
| MON-13336 |
config |
The Infrastructure Agent will be used instead of the SNMPv3 Agent to perform self-monitoring of the OP5 Monitor server. This change will only affect new installations of the OP5 Monitor server. If the OP5 Monitor server is updated from version 9.7 or upgraded from OP5 Monitor 8.x.x, the previous self-monitoring method will continue to be used. |
2023.09.24
2023.09.17
| Issue key |
Component |
Release description |
| MON-13306 |
Nacoma |
Fixed the issue with disk scans that caused the application to display all service lists for NSClient service checks. The default list for Windows Client Services (NSClient) now displays correctly. |
| MON-13345 |
Nacoma |
Fixed an issue where a custom variable could not be removed from a Nacoma object if it was the last one. |
2023.08.16
| Issue key |
Component |
Release description |
| MON-13337 |
API |
Updated encoding conversion to avoid generating warning logs in php-fpm file. |
2023.08.13
| Issue key |
Component |
Release description |
| MON-13199 |
LMD,Ninja |
The error logging for LMD and Naemon has been improved when running external commands. |
2023.08.10
| Issue key |
Component |
Release description |
| MON-12918 |
Ninja,widgets |
Fixed an issue with the Merlin node status widget settings that prevented users from saving changes to the Checks and Latency details. Additionally, the initial values of display_checks and display_latency have been set to false. |
| MON-13340 |
backup |
Fixed an issue in the restore of Nacoma configuration that was introduced by updates to Python to address CVE-2007-4559. |
2023.07.27
| Issue key |
Component |
Release description |
| MON-13280 |
|
Removed the extra socket configuration for rrdcached.socket. |
| MON-13307 |
widgets |
Fixed an issue that caused the Geomap widget to display an error message when it was added to a dashboard. |
2023.07.05
| Issue key |
Component |
Release description |
| MON-12842 |
Ninja |
Fixed an issue where existing authentication modules were removed when a page was accessed with a random action value. |
| MON-13251 |
nagvis |
Fixed an issue where users were unable to schedule downtime through Nagvis. |
| MON-13271 |
|
Fixed an issue with the Javascript error prompt that was occurring on refresh upon modifying an object on the NagVis map. |
| MON-13277 |
|
Fixed an issue where the popup window would not close after editing a host or service in Nagvis. |
2023.07.04
| Issue key |
Component |
Release description |
| MON-13328 |
trapper |
Fixed an issue where SNMP traps from unknown hosts were displayed as blank in the trapper UI. The SNMP traps now display the IP addresses of the unknown hosts as hostnames. |
2023.06.25
| Issue key |
Component |
Release description |
| MON-13282 |
Nacoma |
Fixed an issue where the dropdown list selection would get reset when the "Tab" key was pressed. |
2023.06.19
| Issue key |
Component |
Release description |
| MON-10404 |
Ninja |
Set the comment list view to descending order by default. |
| MON-13326 |
API,Ninja |
Any incorrect versions of the monitor-ninja and HTTP API packages installed on the OP5 Monitor host were removed and replaced with the latest available version from the OP5 Monitor Repository. |
2023.06.05
| Issue key |
Component |
Release description |
| MON-13301 |
Naemon |
A default value was added for an unset comment upon submitting a scheduled downtime. |
| MON-13311 |
Nacoma |
Restored NRPE-style self-monitoring checks by enabling the NRPE group as a sudoer for asmonitor. |
2023.06.01
| Issue key |
Component |
Release description |
| MON-13310 |
nachos |
Nachos have been updated to fix security vulnerabilities with their dependencies. |
2023.05.31
| Issue key |
Component |
Release description |
| MON-13322 |
autodiscovery |
Magellan has been updated to fix security vulnerabilities with its dependencies. |
2023.05.30
2023.05.25
| Issue key |
Component |
Release description |
| MON-13305 |
plugins |
Fixed issues in the check_http plugin with the handling of chunk-encoded data. |
2023.05.22
| Issue key |
Component |
Release description |
| MON-13298 |
Ninja |
Fixed an issue that caused widgets to stop working when filters were changed. Widgets will now continue to work properly even if filters are changed. |
2023.05.14
| Issue key |
Component |
Release description |
| MON-13302 |
Nacoma |
Fixed an issue where NRPE checks were found instead of NSClient checks when "Scan host for network services" was performed for Windows hosts. |
2023.04.27
| Issue key |
Component |
Release description |
| MON-13269 |
API |
Fixed an issue in the HTTP API to ensure that responses are encoded correctly. |
| MON-13286 |
Ninja |
Fixed an issue that prevented users from toggling the check boxes under general options in the Event Log. |
ERRATUM
NOTE: This issue does not affect OP5 Monitor systems that use the Standard Release repository (versions 9.x).
HTTP API and Ninja packages were previously released with versions 2024 instead of 2023 in Rolling Releases repository.
This should be corrected by manually installing the latest Rolling Release version.
To check if your system is affected:
- Check if incorrect OP5 packages are present in the system
[root@localhost ~]# rpm -qa | grep 2024
- Verify the following are displayed:
*monitor-http-api-2024.04.27-op5.1.20230427184600.el8.x86_64
*monitor-ninja-2024.04.27-op5.1.20230427183956.el8.x86_64.rpm
*monitor-ninja-monitoring-2024.04.27-op5.1.20230427183956.el8.x86_64.rpm
If no packages are displayed, the OP5 Monitor is not affected by this issue. Otherwise proceed to step 3.
- Update to the latest OP5 monitor packages
[root@localhost ~]# dnf update
- Get the version of the latest Available Packages for Ninja in op5-monitor-9-rolling-updates repo
[root@localhost ~]# dnf list --showduplicate monitor-ninja
Installed Packages
monitor-ninja.x86_64 2024.04.27-op5.1.20230427183956.el8 @op5-monitor-9-rolling-updates
Available Packages
monitor-ninja.x86_64 2023.03.30-op5.1.20230330171931.el8 op5-monitor-9-updates
monitor-ninja.x86_64 2023.04.05-op5.1.20230405171449.el8 op5-monitor-9-updates
monitor-ninja.src 2023.04.27-op5.1.20230601175106.el8 op5-monitor-9-rolling-source
monitor-ninja.x86_64 2023.04.27-op5.1.20230601175106.el8 op5-monitor-9-rolling-updates
monitor-ninja.src 2023.05.19-op5.1.20230519133705.el8 op5-monitor-9-rolling-source
monitor-ninja.x86_64 2023.05.19-op5.1.20230519133705.el8 op5-monitor-9-rolling-updates
In this case, it is 2023.05.19-op5.1.20230519133705.el8.
- Reinstall Ninja packages (monitor-ninja, monitor-ninja-monitoring) with specifying the package version (2023.05.19-op5.1.20230519133705.el8):
[root@localhost ~]# dnf install monitor-ninja-2023.05.19-op5.1.20230519133705.el8 monitor-ninja-monitoring-2023.05.19-op5.1.20230519133705.el8
- Get the version of the latest Available Packages for HTTP API in op5-monitor-9-rolling-updates repo
[root@localhost ~]# dnf list --showduplicate monitor-http-api
Last metadata expiration check: 0:10:50 ago on Fri Jun 2 10:35:14 2023.
Installed Packages
monitor-http-api.x86_64 2024.04.27-op5.1.20230427184600.el8 @op5-monitor-9-rolling-updates
Available Packages
monitor-http-api.x86_64 2023.01.11-op5.1.20230111162833.el8 op5-monitor-9-updates
monitor-http-api.src 2023.04.27-op5.1.20230601180700.el8 op5-monitor-9-rolling-source
monitor-http-api.x86_64 2023.04.27-op5.1.20230601180700.el8 op5-monitor-9-rolling-updates
In this case, it is 2023.04.27-op5.1.20230601180700.el8.
- Reinstall HTTP API package (monitor-http-api) with specifying the package version (2023.04.27-op5.1.20230601180700.el8):
[root@localhost ~]# dnf install monitor-http-api-2023.04.27-op5.1.20230601180700.el8
2023.04.05
| Issue key |
Component |
Release description |
| MON-11773 |
LMD |
LMD now supports the StatsNegate filter. |
| MON-13179 |
Ninja |
The performance data table now includes an additional UOM column that contains the current unit of measure. When there is no assigned value for the item, this column will be empty. |
| MON-13235 |
plugins |
Removed the "-C" option in the check_snmpif check command configuration. |
| MON-13259 |
plugins |
The Monitoring plugins have been updated to version 2.3.3. Detailed changelog: https://github.com/monitoring-plugins/monitoring-plugins/releases/tag/v2.3.3 |
2023.03.30
| Issue key |
Component |
Release description |
| MON-11199 |
nacoma,nachos |
Removed the parallelize check settings from the UI, set them to 0 in the database, and deleted them from the service configuration file. |
| MON-13261 |
check_aws |
The check_aws plugin has been updated to use Python 3.9 to support the latest Boto3 module and other dependencies. |
| MON-13262 |
nachos |
Updated Python dependencies for Nachos. |
| MON-13281 |
reports |
Changed the default report period on Alert History from "Forever" to "Last 24 Hours" to reduce the number of items to load on the UI. |
2023.03.29
| Issue key |
Component |
Release description |
| MON-13276 |
autodiscovery |
Updated Magellan dependencies due to security issues. |
2023.03.20
| Issue key |
Component |
Release description |
| MON-13258 |
livestatus,Naemon |
The naemon-core and naemon-livestatus have been upgraded to version 1.4.1. |
2023.03.08
| Issue key |
Component |
Release description |
| MON-13191 |
Nacoma |
Fixed empty checkboxes when applying a host template. |
| MON-13214 |
Nacoma |
Replaced remaining check_nt commands with check_nrpe for checking partitions. |
2023.03.05
2023.02.13
| Issue key |
Component |
Release description |
| MON-13021 |
plugins |
Added support for modern SNMPv3 authentication and encryption protocols for check_by_snmp_* plugins. |
Additional release documentation
MON-13021:
In addition to MD5 and SHA (SHA1), support SHA-224, SHA-256, SHA-384 and SHA-512 for authentication protocol (--authproto option).
For privacy protocol (--privproto option), support AES-192 and AES-256 encryptions in addition to DES and AES.
Example checking used RAM with check_by_snmp_memory over SNMPv3 using SHA-256 for authproto and AES-256 for privproto:
Create a new check command:
-
Manage -> Configure -> Commands
-
Enter a name for the command, e.g. "my_check_snmp_ram_used_aes256"
-
Construct a command line suitable for your needs and enter it info command_line field. Example command line using SHA-256 for authentication protocol and AES-256 for privacy protocol:
$USER1$/check_by_snmp_memory -H $HOSTADDRESS$ -P 3 --authproto=SHA-256 --privproto=AES-256 -U '$ARG1$' --authpassword '$ARG2$' --privpassword '$ARG3$' -T ram_used -m $ARG4$ -w$ARG5$ -c$ARG6$
-
Press submit.
-
Create a new service on a host or hostgroup.
-
Select the newly created check command.
-
Fill in all the required arguments in "check_command_args", separated by "!" characters. Press "show syntax help" to see the command line of the check command. E.g.:
snmpv3_username!snmpv3_auth_secret!snmpv3_priv_secret!%!70!90
where the check command arguments "$ARG1$" through "$ARG6$" gets substituted with the values in check_command_args.
- Press submit.
- Save configuration.
It's also possible to use the existing check command "check_by_snmp_memory_ram_used_v3" and inputting options with arguments in the first check_command_args argument ($ARG1$). Example check_command_args:
-U snmpv3_username -A 'snmpv3_auth_secret' -X 'snmpv3_priv_secret' -a SHA-256 -x AES-256!%!70!90
2023.02.06
| Issue key |
Component |
Release description |
| MON-13243 |
reports |
Graphs are now rendered correctly in the Histogram Report. |
2023.01.18
| Issue key |
Component |
Release description |
| MON-13253 |
|
The issue with restoring migration backups from OP5 Monitor 8.4.x to version 9 has been resolved. |
2023.01.12
| Issue key |
Component |
Release description |
| MON-12997 |
Ninja |
Information on software licensing has been added to the About > License Software window. |
2023.01.11
| Issue key |
Component |
Release description |
| MON-12194 |
Nacoma |
Updated the popup text for the Undo button to clarify that it reverts all the changes the logged-in user has made since the last save. Additionally, if you reimport configuration files into the database, this change reverses all user configurations since the last save. |
| MON-13144 |
|
Decreased the time it takes for the business object tree to load in order to prevent coming across a blank page. |
| MON-13207 |
plugins |
All VMware check timeouts caused by connection attempts to slow-responding vSphere servers have been resolved. |
| MON-13238 |
|
In OP5 Monitor versions 8 and 9, broken links to documentation, knowledge base articles, and other external resources were fixed. |
| MON-13250 |
|
You can now use a CLI tool that prints a list of installed OP5 Monitor software packages and their licenses. |
2023.01.03
| Issue key |
Component |
Release description |
| MON-13240 |
gui |
The OP5 Monitor binaries now contain the fonts required for offline installation. |
2022.12.20
| Issue key |
Component |
Release description |
| MON-13234 |
backup,manual / documentation,plugins |
Self-monitoring check "Monitor backup - Check backup files" now returns an unknown state instead of critical when no backups have been created yet. This update also improved its plugin output text. |
Additional release documentation
MON-13234:
The op5-backup now includes systemd service and timer units, which can be used to enable automatic backups by running "systemctl enable --now op5-backup.timer". If an op5-backup scheduled job is configured in /etc/cron.d, it is advisable to remove that when the systemd timer is enabled.
2022.12.20
| Issue key |
Component |
Release description |
| MON-13228 |
plugins |
The Monitoring plugins have been updated to version 2.3.2. |
Additional release documentation
MON-13228:
Detailed changelog: https://github.com/monitoring-plugins/monitoring-plugins/releases/tag/v2.3.2
2022.12.15
| Issue key |
Component |
Release description |
| MON-13233 |
livestatus,Naemon |
The naemon-core and naemon-livestatus have been upgraded to version 1.4.0. |
Additional release documentation
MON-13233:
This release contains updated versions of all Naemon event broker modules that OP5 Monitor uses, as they were rebuilt with Naemon 1.4.0.
2022.12.13
| Issue key |
Component |
Release description |
| MON-13225 |
|
Magellan has been updated to use Python 3.9 to resolve security vulnerabilities with dependencies. |
2022.12.02
| Issue key |
Component |
Release description |
| MON-13209 |
Ninja,widgets |
Added validation when creating a quicklink to avoid cross-site scripting attacks. |
| MON-13226 |
nachos |
Nachos has been updated to use Python 3.9 to resolve security vulnerabilities with dependencies. |
2022.11.28
2022.11.28
| Issue key |
Component |
Release description |
| MON-9490 |
Nacoma |
Clicking the reimport link now prompts the configuration files to be loaded into the database, regardless of the file's timestamp. This change also improved the messaging by explaining how importing the configuration files into the database will affect things. |
| MON-11764 |
|
Restricted privileges to run commands as a monitor user to service users required to run OP5 Monitor. |
| MON-13132 |
|
Removed the complete reimport link from the GUI after restoring from backup. The reimport already happens during a backup restore, so performing it again would be redundant. |
| MON-13186 |
Merlin,Ninja |
Added the "Show logs from all node" button to the Event Log page to display a consolidated list of event logs from all nodes. Each line in the log is appended with the node name where the log originated. |
| MON-13222 |
Ninja |
Added a default value for an unset comment upon submitting a problem acknowledgment. |
| MON-13237 |
ModSecurity |
Updated URLs referenced in 403 page to refer to official documentation instead of support pages. |
Additional release documentation
MON-11764:
The "/usr/bin/asmonitor" script can now only be run by the intended internal service users, and root.
2022.11.17
| Issue key |
Component |
Release description |
| MON-13215 |
Nacoma |
Fixed an issue where all services were removed when removing an item from a selected service group. |
2022.10.23
| Issue key |
Component |
Release description |
| MON-13149 |
gui |
Improved error messages for "Test this check". |
| MON-13190 |
trapper |
Corrected entries in /etc/processor/processor.conf to address errors encountered in the trap processor. |
| MON-13205 |
Ninja,reports |
Fixed an issue in Scheduled Downtimes that prevented you from editing the recipients of an existing scheduled report. |
| MON-13210 |
trapper |
The MySQL user trapper privileges are now restricted to their own database only. |
2022.10.17
| Issue key |
Component |
Release description |
| MON-13174 |
API |
The message output for invalid request no longer displays server config on API error. |
| MON-13206 |
LMD |
LMD has been updated to version 2.1.0 to stay in sync with the upstream project. For more information, see https://github.com/sni/lmd/blob/v2.1.0/Changes. |
2022.09.30
| Issue key |
Component |
Release description |
| MON-13171 |
Ninja |
Updated the httpd directives to follow the Apache 2.4 standard. |
2022.08.11
| Issue key |
Component |
Release description |
| MON-12774 |
nachos |
Updated logging so that the host name or template name is indicated in logs when an invalid host configuration is found by Nachos. |
| MON-13197 |
plugins |
Removed the debug log setting from /etc/op5/check_vmware/service.cfg. Debug logs are now enabled by setting loglevel = 'debug' in /etc/op5/check_vmare/gunicorn.cfg. |
2022.08.04
| Issue key |
Component |
Release description |
| MON-12701 |
Nacoma |
Removed the default value of stalking_options 'n' when new hosts are created. |
| MON-13180 |
Merlin |
Updated rename tool to preserve file permissions when log files are updated. |
| MON-13194 |
pnp |
The /opt/monitor/etc/pnp/npcd.cfg now has root user and group ownership on fresh installs and updates. |
2022.07.14
| Issue key |
Component |
Release description |
| MON-13027 |
Nacoma |
Automatically detected Windows services when adding a new host now use check_nrpe instead of check_nt. |
| MON-13142 |
|
Fixed an issue in the Host configuration page where the Advanced toggle button was not working. |
2022.07.07
| Issue key |
Component |
Release description |
| MON-13160 |
check_k8s,plugins |
Improved error handling. |
| MON-13162 |
plugins |
Added the new check_http_json plugin as a replacement for check_json which has been removed in OP5 Monitor 9. |
| MON-13172 |
NSClient,plugins |
Added a new plugin for checking the REST API of NSClient++. You can use this plugin instead of check_nrpe for gathering check results. |
Additional release documentation
MON-13162:
New check command needs to be imported. See import commands.
2022.06.30
| Issue key |
Component |
Release description |
| MON-12796 |
Merlin,Naemon |
Fixed an issue where the host notification suppressed events are not displayed in event log. |
| MON-13168 |
check_k8s,plugins |
Added the selector command-line option to the check_k8s plugin to enable resource queries using labels. |
| MON-13185 |
backup,Nacoma |
Fixed an issue in the backup and restore that caused an error when restoring the management_pack table for the Nacoma database. |
2022.06.23
| Issue key |
Component |
Release description |
| MON-13188 |
Ninja |
Fixed an issue where scheduled reports were sent every minute. |
2022.05.30
| Issue key |
Component |
Release description |
| MON-13126 |
backup |
Fixed an issue where the wrong SNMP user would be recreated after restoring a backup. |
| MON-13147 |
nachos |
The migration script now checks if configurations are correctly encoded in UTF-8. |
| MON-13166 |
check_k8s,plugins |
The Kubernetes management pack now has fields for the namespace, while the namespace parameter for check_k8s_nodes check command has been removed. |
| MON-13169 |
management-packs,plugins |
Updated all NSClient checks to use the check_nrpe version 4, and removed the check_nrpe version 2 from OP5 Monitor. |
Additional release documentation
MON-13169:
Since version 2 of check_nrpe does not work on EL8 we have decided to migrate all remaining NSClient checks over to
version 4. This has some notable implications:
- All servers with NSClient that are still using 512-bit keys for their NRPE SSL encryption will need to update to
use 2048-bit keys. We have written a guide on how to do this here: https://support.itrsgroup.com/hc/en-us/articles/4412703611665
- Not all command line arguments are compatible across versions. SSL is enabled by default in version 4 so the -s flag has changed meaning, so we recommend removing this flag.
- NSClient is still using version 2 of the nrpe protocol to communicate, which causes check_nrpe to complain about
invalid packet versions, to get around this warning message, the -2 flag can be used to force the use of protocol version 2.
We have implemented fixes for 2 and 3 for all check commands we ship by default.
Note: Checks using the check_nrpe4 plugin will still work, but be aware that it is just a symlink towards check_nrpe. We
suggest moving them over to use check_nrpe since we can't guarantee the stability of that link in the future.
2022.05.25
| Issue key |
Component |
Release description |
| MON-13152 |
check_k8s,plugins |
Added the --ignore command-line option to the check_k8s plugin to exclude specified resource names from the check result. |
Additional release documentation
MON-13152:
The --ignore option takes as input a regular expression (regex) which will be compared to the Kubernetes resource name (Node, Deployments, Pods) to determine which resources will be excluded from the check results. Refer to Python's re module documentation for supported regex.
2022.05.18
| Issue key |
Component |
Release description |
| MON-13014 |
geomap |
The default map in Geomap now works correctly. |
| MON-13163 |
geomap,nagvis |
Attributions, in Nagvis and Geomap, to Map and Data have been updated in accordance with terms and conditions with providers. |
2022.05.17
| Issue key |
Component |
Release description |
| MON-13141 |
plugins |
Updated the negate plugin to only accept commands and scripts to execute from the plugin path /opt/plugin/. |
| MON-13161 |
livestatus,Naemon |
Naemon and Livestatus have been updated to version 1.3.1. |
Additional release documentation
MON-13141:
This update may break the existing configurations if the negate plugin is used to execute applications and scripts outside the /opt/plugin/ path.
2022.05.12
| Issue key |
Component |
Release description |
| MON-13159 |
plugins |
GPG keys are now imported for users when using the check_yum_update plugin. |
2022.05.11
| Issue key |
Component |
Release description |
| MON-13111 |
Ninja |
Improved security by disabling autocomplete on sensitive input fields. |
| MON-13135 |
Ninja |
Improved UI in the date picker component. |
| MON-13148 |
Merlin |
A new "accept_runcmd" node setting has been added. This node setting must be enabled in order to use test this check on that node. |
| MON-13157 |
Ninja,reports |
Fixed UI issues when editing reports. |
Additional release documentation
MON-13148:
The new setting must be enabled on nodes from which runcmds are to be accepted, in addition to having encryption enabled. This enables setting up encrypted nodes without, per default, also allowing testing of checks from those nodes. Some safety checks have also been introduced in order to make sure the application does not accept or send runcmds from pollers. By default, Slim pollers will have this setting enabled for its masters.
Note: This is possibly a breaking change if you are already using test this check, since it will stop working without this setting.
2022.05.05
| Issue key |
Component |
Release description |
| MON-13058 |
Ninja |
Improved jQuery compatibility. |
| MON-13121 |
reports |
Improved error messages in the UI. |
| MON-13146 |
Ninja,reports |
Fixed manual sending of scheduled reports and saving of reports to system /tmp folder now works correctly. |
2022.05.04
| Issue key |
Component |
Release description |
| MON-13125 |
Nacoma,wmic |
Updated WMI network scanning to work with the latest version of check_wmi and made it compatible with DCOM security hardening. |
Additional release documentation
MON-13125:
A new field has been added which allows passing extra arguments to wmic while doing the service discovery.
2022.05.02
| Issue key |
Component |
Release description |
| MON-13153 |
check_k8s,plugins |
Added the --version command-line option. |
2022.04.28
| Issue key |
Component |
Release description |
| MON-13140 |
plugins |
Removed the urlize plugin since it was vulnerable to remote code execution. |
2022.04.24
| Issue key |
Component |
Release description |
| MON-13138 |
Nacoma |
Removed the automatic discovery of Sensatronic and NetWare devices since the required plugins are no longer shipped. |
2022.04.19
| Issue key |
Component |
Release description |
| MON-13110 |
generic |
Implemented a Content Security Policy (CSP) in OP5 Monitor. |
| MON-13129 |
autodiscovery |
Fixed an issue in the Autodiscovery where having spaces around an ip-range would result in an error. |
| MON-13131 |
generic |
Security hardening has been improved to set the Apache policy to never include referrer URLs. |
| MON-13139 |
Nacoma |
The Remove button for custom variable now works corectly. |
2022.04.07
| Issue key |
Component |
Release description |
| MON-13091 |
API |
Mitigated XSS vulnerability in the API error messages. |
2022.04.04
| Issue key |
Component |
Release description |
| MON-6729 |
plugins |
Update check_radius check commad to use correct path to config file. |
2022.03.29
| Issue key |
Component |
Release description |
| MON-13133 |
Ninja |
Fixed UI issues when you toggle a runtime option. |
2022.03.24
| Issue key |
Component |
Release description |
| MON-13061 |
Ninja |
Updated the About menu to include the OP5 version, and removed the Naemon version. |
| MON-13076 |
check_k8s |
Added capability to check multiple namespaces. |
| MON-13089 |
check_k8s |
The Succeeded phase is now counted as an OK state. |
| MON-13106 |
autodiscovery |
Updated to Bootstrap 5 in Autodiscovery which removes the dependency on jQuery. |
2022.03.23
| Issue key |
Component |
Release description |
| MON-13093 |
API |
Removed ability to spoof the URLs generated in the API documentation by setting the host header to something malicious. |
| MON-13119 |
Ninja |
Fixed database migration errors during installation. |
2022.03.22
| Issue key |
Component |
Release description |
| MON-13039 |
Nacoma,Ninja |
Forced a complete reimport of the configuration files when restoring a backup to ensure the configuration database is in sync. |
| MON-13083 |
host-wizard |
Fixed UI issues in the Host Wizard. |
2022.03.21
| Issue key |
Component |
Release description |
| MON-13108 |
generic |
Improved security of HTTP response headers. |
2022.03.17
| Issue key |
Component |
Release description |
| MON-13077 |
Ninja |
Successful login attempts are now logged on level "notice". |
| MON-13092 |
API |
The Secure and HttpOnly attributes are now set on the PHPSESSID cookie in the HTTP API. |
2022.03.11
| Issue key |
Component |
Release description |
| MON-12535 |
mayi |
The "Test this host" and "Test this service" group rights have been removed from the "limited_edit" role. |
| MON-12946 |
plugins |
Updated the check_wmi_plus plugin to work with Windows DCOM hardening. |
| MON-13035 |
autodiscovery |
Removed RabbitMQ dependency and switched worker model for Magellan autodiscovery service. |
| MON-13064 |
plugins |
Added the check_wmi_plus plugin to OP5 Monitor. |
| MON-13080 |
Nacoma |
Fixed an issue that caused Nachos JavaScript to not load in certain browsers. |
| MON-13084 |
plugins |
Added the check_oracle plugin in the OP5 Monitor. |
| MON-13101 |
plugins |
Added the missing "-a" option in the check_oracle_query and check_oracle_query_regex check commands. |
| MON-13103 |
install/upgrade |
The repository configuration for the GA release of OP5 Monitor 9 has been added. |
Additional release documentation
MON-12535:
As part of security hardening, when migrating from OP5 Monitor 8 to 9, the "Test this host" and "Test this service" permissions are removed from the "limited_edit" role configured by default in OP5 Monitor.
The permissions are required to use the "Test this check" functionality when editing hosts and services in OP5 Monitor configuration UI.
If it's desired to keep these permissions on the "limited_edit" group, they can be re-added (Manage > Configure > Group rights > Expand Host and Service categories and select one or both of "Test this host" and "Test this service".
MON-13103:
To continue to receive rolling updates, after upgrading from an earlier version of Monitor 9 Beta, you must execute the following:
dnf install op5-release-rolling
2022.03.09
| Issue key |
Component |
Release description |
| MON-13079 |
Ninja |
Corrected scaling of the OP5 Monitor logo. |
2022.03.08
| Issue key |
Component |
Release description |
| MON-13060 |
Business services (synergy/bsm) |
Fixed a UI issue in BSM that would not allow you to add a service sub-element. |
| MON-13081 |
Nacoma |
The Save all users button is disabled when there are no changes to save. |
| MON-13100 |
|
The /etc/op5-monitor-release package now shows the same version as the OP5 Monitor release instead of showing the RPM package version. |
2022.03.04
| Issue key |
Component |
Release description |
| MON-12319 |
nachos |
The character set used in the Nacoma database has been updated to UTF-8. This change does not have any functional impact on the product. |
| MON-12697 |
plugins |
The default behavior of the check_aws shipped check_command has been changed to not include the unit argument. |
| MON-12700 |
Ninja |
Removed cookie usage banner from OP5 Monitor. |
| MON-12965 |
generic |
PHP version has been upgraded from 7.2 to 7.4. |
| MON-13020 |
Ninja,pnp |
Clicking the "Make default graph" button on a PNP graphs page now works correctly. The default graph is displayed when hovering over the graph image in the list views. |
| MON-13023 |
plugins |
Added the check_snmp plugins from the monitoring-plugins project to OP5 Monitor 9 Beta. |
| MON-13026 |
LMD |
Fixed an issue in LMD where the "event_handler" and "check_source" host attributes would be set incorrectly. |
| MON-13029 |
generic |
Updated links to the OP5 Monitor documentation and support articles from the OP5 Monitor UI. |
| MON-13031 |
backup |
Fixed migration of network connections with op5-backup. |
| MON-13033 |
Ninja |
Fixed an issue with updating the refresh rate on the listview pages. |
| MON-13034 |
API,LMD |
Fixed an issue causing the contact attributes address1 through address6 to be missing from the API. |
| MON-13037 |
backup |
Removed the deprecated "migrate i386 to x64_64" mode from op5-backup. |
| MON-13038 |
backup |
Fixed issues with the remote transfer of backup archives. |
| MON-13045 |
plugins |
The check_mssql plugin has been replaced with a more modern check_mssql_health plugin. |
| MON-13046 |
backup |
When migrating between OS versions with op5-backup, only SSH host keys are now restored on the new system, not all SSH settings. |
| MON-13047 |
Ninja |
Fixed a UI issue in the list view when the refresh rate button is selected. |
| MON-13048 |
Ninja |
Fixed a UI issue in the list view where manually entering an input value was not getting saved after clicking refresh rate. |
| MON-13050 |
backup |
Included the custom configuration file "custom_config.php" for config UI in the op5-backup if the file is present. |
| MON-13059 |
plugins |
Added explicit dependency on "bind-utils" ensuring that the "check_dig" plugin works correctly. |
| MON-13062 |
API |
Removed the deprecated Status API endpoints (/api/status and /api/help/status). Use the Filter API instead. |
| MON-13067 |
Nacoma |
Nacoma now shows the error message in the config UI when the maximum input variables to PHP have exceeded. |
| MON-13070 |
nachos |
Fixed an issue causing saved configuration fails to not show error messages correctly. |
| MON-13097 |
LMD |
LMD has been updated to 2.0.7 to stay in sync with upstream. For more information, see https://github.com/sni/lmd/blob/v2.0.7/Changes. |
Additional release documentation
MON-12965:
Before upgrading from an earlier version of the OP5 Monitor Beta to a newer version, you must execute the following:
dnf module switch-to php:7.4 && dnf update php-op5license op5license
Before executing:
dnf update
2022.02.11
| Issue key |
Component |
Release description |
| MON-12970 |
pnp |
Graphs now load correctly on the PNP basket page. |
2022.02.09
| Issue key |
Component |
Release description |
| MON-13024 |
nagvis |
Nagvis has been updated to 1.9.30 to address the security vulnerability: CVE-2021-33178. |
2022.02.08
2022.01.21
| Issue key |
Component |
Release description |
| MON-13002 |
Nacoma |
Network scanning of large ranges no longer leads to the UI being inaccessible. |
| MON-12998 |
backup |
Fixed an issue causing the interactive mode in op5-backup to not work correctly. |
| MON-11847 |
Nacoma |
The maximum size of configuration fields in the Nacoma database has been increased. |
| MON-12622 |
portal |
OP5 Portal has been removed. |
| MON-12889 |
Nacoma,Ninja,reports |
Multiple OP5 Monitor components have been updated to use the upgraded version of jQuery 3.6.x and jQuery-UI 1.13.x. |
| MON-12992 |
pnp |
Generation of PDFs from graph baskets containing graphs using the lslprediction-label template now works correctly. |
| MON-12985 |
Ninja |
The GUI backup tool now correctly backs up the relevant files. This resolved an issue where the backups taken from the GUI could not be correctly restored. |
| MON-12999 |
plugins |
Two versions of check_nrpe are now shipped: check_nrpe (v2) and check_nrpe4 (v4). Both versions of check_nrpe match the behaviour on OP5 Monitor 8. Also, all default windows checks use check_nrpe (v2), while all other default checks use check_nrpe4 (v4). |
| MON-12984 |
Nacoma,pnp |
Creating a graph collection using regular expression (regex) now works correctly. |
| MON-12934 |
install/upgrade |
Improvements have been made to op5-backup to facilitate the migration from OP5 Monitor 8 to OP5 Monitor 9. |
| MON-12830 |
Ninja |
The broken link from the Hostgroup page to the host list view has been corrected. |
| MON-12976 |
install/upgrade |
Rsyslog is now defined as an explicit dependency in the OP5 Monitor server installation. |
| MON-12963 |
plugins |
Improved log messages in the check_vmware_v2 service. |
| MON-12908 |
Nacoma |
The Help link in the configuration UI now points to the ITRS OP5 Monitor documentation instead of an internal help page. |
| MON-12661 |
plugins |
check_op5_license now checks if the signing certificate is not expired. |
| MON-12949 |
plugins |
Fixed packet performance data for the host check graphs. |
2022.01.18
| Issue key |
Component |
Release description |
| MON-13001 |
autodiscovery |
IP addresses with a maximum length of 15 characters are now correctly discovered. Also, the timeout of a running discovery job has been increased. |
2022.01.17
2022.01.13
| Issue key |
Component |
Release description |
| MON-12986 |
plugins |
Fixed the warning message in the check_file plugin when a Perl error was encountered during runtime. |
