Licensing 🔗 link

Hi,
Is Xymon a licensed software or Open source ?


[cid:FlexiVanLogo_45deb83e-dda0-4034-ac40-31a4568e8246.png]<https://www.flexivan.com/>;
Ehtesham Mohammed
Cloud Architect
7320 E. Butherus Dr, Ste 201
Scottsdale, AZ 85260
(o) | (m)
user-964b3a0623b5@xymon.invalid<mailto:user-964b3a0623b5@xymon.invalid>

Confidentiality   Notice:     The information contained in this email  and any   attachments
may contain confidential and/or proprietary material and is intended solely for the person
or entity to which it is addressed.   Any unauthorized review disclosure or   distribution of
this email is strictly prohibited.   If you have received this email in error, please notify the
sender by reply email and destroy all copies of this email and any attachments.

Open source.

https://sourceforge.net/projects/xymon/

Josh Luthman
24/7 Help Desk: XXX-XXX-XXXX
Direct: XXX-XXX-XXXX
XXXX Wayne St
Suite XXXX
Troy, OH XXXXX


On Mon, Nov 16, 2020 at 3:52 PM Mohammed, Ehtesham <user-964b3a0623b5@xymon.invalid>
wrote:

Hi,

Is Xymon a licensed software or Open source ?


<https://www.flexivan.com/>;

*Ehtesham Mohammed*Cloud Architect
XXXX E. Butherus Dr, Ste XXX
Scottsdale, AZ 85260
(o) | (m)
user-964b3a0623b5@xymon.invalid

We have several hobbit servers running in different environments (4.3.28)
In order to ack or enable and disable alerts we have (of course) an account created within hobbit 

i.e.?? htpasswd -c /etc/xymon/server/etc/xymonpasswd <user>

Across multiple different web browsers (IE, Edge, FF, Chrome, opera etc) over time I've used these credentials and theyve somehow/somewhere been cached. But here's the wierd thing - I cant clear them!? eg if I use shit+ctrl+delete for all time and everything, or firefox.exe -p for a clean profile, in a browser with no proxies and reopened after clwearing etc...? an attempt to ack goes straight to the ack page and doesnt prompt me for the UI account credentials?? This must be browser/OS based rather than? hobbit/xymon itself of course but its driving me nuts?
Anyone able to put me out of my siery and advise how i can make sure I clear this stuff so ic an test correctly etc ?
cheers
didds

Didds

Firstly, make sure that your webserver is actually requiring authentication
when accessing the ack page. This could be by inspecting the headers in
"Developer Tools" (Ctrl+Shift-I in Firefox, Chrome and Edge) or by
reviewing the webserver log for the authenticated user field. Or you could
temporarily change the password or remove the account from xymonpasswd to
see if that fails to authenticate.

In Edge and Chrome you can selectively review and delete cached credentials
by going into Settings -> (Autofill / Profiles) -> Passwords, or entering
edge://settings/passwords or chrome://settings/passwords into the location
bar. In Firefox it's about:logins, or go to Options -> Privacy & Security
-> Logins and Passwords.

It's possible that changing the password on the webserver (in xymonpasswd)
will force the browser to prompt you for the password, and also clear the
cached entry. You can then change the password back again on the server.
But I'm not confident - it might just continue to try the old cached entry.

Just a thought: are you running a password manager such as Lastpass or
Bitwarden? These utilities might be automagically entering the credentials
for you. Lastpass has an "autofill" option that can be set/cleared for each
username/password, and if set, this might be authenticating you
automagically.

Cheers
Jeremy


On Mon, 30 Nov 2020 at 21:28, Ian Diddams via Xymon <xymon at xymon.com> wrote:

Date: Mon, 30 Nov 2020 10:08:03 +0000 (UTC)
Subject: Clearing ACK user credentials in the user interface (UI)

Across multi
ple different web browsers (IE, Edge, FF, Chrome, opera etc) over time

If you got an email from user-21ce70f3747e@xymon.invalid it is a SCAM.  Do not
click the link!

Josh Luthman
24/7 Help Desk: XXX-XXX-XXXX
Direct: XXX-XXX-XXXX
XXXX Wayne St
Suite XXXX
Troy, OH XXXXX

On Mon, Nov 16, 2020 at 3:58 PM Josh Luthman <user-4c45a83f15cb@xymon.invalid>

wrote: