On 10/12/2021 6:11 AM, Christoph Zechner wrote:
after reading an old thread about remote code execution on here [1], I
wondered if something like this is still possible nowadays with xymon?
Last time I looked, the Xymon client software permitted execution of arbitrary code supplied from the Xymon server. This default behavior could be changed by flipping a switch in the client's configuration (uh huh. Yeah, sure).
I have never considered this to be a "feature".
--
Do things because you should, not just because you can.
John Thurston XXX-XXX-XXXX
user-ce4d79d99bab@xymon.invalid
Department of Administration
State of Alaska