Xymon Mailing List Archive search

Xymon 4.3.30 Released

list Japheth Cleaver
Fri, 14 Aug 2020 19:56:42 -0700
Message-Id: <user-3474adc72d69@xymon.invalid>

Hi Ralph,

For direct SSL wrapping of client submission to xymond, yes. For 
authentication of source messages via proxy or intermediary, no.

For high-volume situations, or where a reply is not needed, cgimsg will 
still be a useful mechanism. SSL setup, teardown, and decryption in the 
core daemon still has an impact, so offloading that to a receiver for 
termination would be recommended depending on your scale.

Regards,
-jc

On 8/14/2020 7:30 PM, Ralph M wrote:
Is the 4.4 release going to have?encrypted communications?? I'm not 
supposed to send plain text over the network, so I've been faking it 
with curl posting to?xymoncgimsg?on port 443.? It would be really nice 
to get port 1984 opened and do it properly.

Thanks,

Ralph Mitchell


On Fri, Jul 31, 2020 at 11:33 AM James Louis <user-518fefde45bd@xymon.invalid 
<mailto:user-518fefde45bd@xymon.invalid>> wrote:

    Thanks for the update Japheth!

    On Fri, Jul 31, 2020 at 9:27 AM Japheth Cleaver
    <user-87556346d4af@xymon.invalid <mailto:user-87556346d4af@xymon.invalid>> wrote:

        Hi Jim,

        I'm looking at the XSS report and sorting through a variety of
        the patches since this release now.
        There will be a 4.3.31 release with this as well as other
        updates, as well as a 4.4 pre-release. Due to there being a
        longish gap, a maintenance release is appropriate.

        -jc


        On 7/31/2020 7:15 AM, James Louis wrote:
        Japheth,

        Will 4.3.31 be out soon or will it jump to 4.4?

        Thanks,
        Jim

        On Thu, Sep 5, 2019 at 5:29 PM Japheth Cleaver
        <user-87556346d4af@xymon.invalid <mailto:user-87556346d4af@xymon.invalid>> wrote:

            Xymon 4.3.30 has been released and is now available for
            download.

            4.3.30 is mostly a bug-fix release, quashing issues
            stemming from the
            security fixes in 4.3.29, including improperly-tight
            restrictions on
            allowed characters in hostname for browsing along with
            several other
            parsing errors. Thanks in particular to Tom Schmidt for
            his assistance
            in tracking these down.

            Xymon should also now be more easily buildable on older
            GCC versions
            without the diagnostics pragma available.

            Xymon 4.3.30 is available from the Xymon SourceForge page at
            https://sourceforge.net/projects/xymon/

            As always, thank you to all who have contributed code,
            ideas, and features
            to the project!


            Regards,
            Japheth "J.C." Cleaver

            
        -- 
        *Jim Louis

        \\\\||////
        ? ? ? ? ? \ ~ ~? /
        ? ? ? ? ? | @ @ |
        • *--oOo---(_)---oOo--

        • ?It does me no injury for my neighbor to say there are twenty
        gods, or no God. It neither picks my pocket nor breaks my leg.?

        ~ Thomas Jefferson

    -- 
    *Jim Louis

    \\\\||////
    ? ? ? ? ? \ ~ ~? /
    ? ? ? ? ? | @ @ |
    • *--oOo---(_)---oOo--

    • ?It does me no injury for my neighbor to say there are twenty
    gods, or no God. It neither picks my pocket nor breaks my leg.?

    ~ Thomas Jefferson