tyler.durden
/
icinga2
mirror of https://github.com/Icinga/icinga2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,515 Commits 347 Branches 117 Tags 181 MiB
Commit Graph

9515 Commits

Author SHA1 Message Date
Jean Flach 73dcebe25b Get ICINGA2_USER and GROUP from sysconfig 2018-02-23 13:59:30 +01:00
Jean Flach 5aafc7eda5 Fix prepare-dirs permission exploit 
refs #5793
 2018-02-23 13:59:30 +01:00
Jean Flach f282b68fbd Add clarification on sysconfig location 2018-02-23 13:09:48 +01:00
Jean Flach 40e89c4184 Add Upgrading to Icinga 2.8.2 chapter 2018-02-23 13:09:46 +01:00
Gunnar Beutner 492b590a29 Remove debug output in ApiUserCommand::Run 2018-02-23 13:07:56 +01:00
Gunnar Beutner ed1dd36f09 Properly escape strings in ApiUserCommand::Run 2018-02-23 13:07:56 +01:00
Jean Flach aad44dfbb2 Improve api user command 
--oneline can now be used to print out only the password hash string.
This can be used to update ApiUser passwords through the API. There is
also now a validation to make use salt does not contain a '$' which
would break verification.
 2018-02-23 13:07:56 +01:00
Jean Flach 2e5aedd28a Fix crash when using incorrectly formatted password hash 2018-02-23 13:07:55 +01:00
Jean Flach 6387f5442e Move new password functions into tlsutility 2018-02-23 13:06:22 +01:00
Jean Flach 6504606e23 Hash API password and comparison 
fixes #4920
 2018-02-23 11:23:19 +01:00
Jean Flach adc054097d Build/Merge fixes 2018-02-23 10:27:55 +01:00
Jean Flach c5b92defec Minor codestyle and doc changes 2018-02-23 10:09:28 +01:00
Noah Hilverling 4b77afedcd Limit HTTP body size 2018-02-23 10:09:28 +01:00
Noah Hilverling 3fe818b44b Fix requests not being closed correctly 2018-02-23 10:09:28 +01:00
Jean Flach 70c81734c5 Add timeout for TLS handshakes 2018-02-23 10:09:26 +01:00
Jean Flach aa1ccd7ada Authenticate API user before parsing body 2018-02-23 10:08:24 +01:00
Jean Flach a46dc64e6a Only read body from authenticated connections 
This means we are not allowing unauthenticated requests anymore
 2018-02-23 09:52:54 +01:00
Jean Flach e1c46cedd1 Fix nullptr deref 2018-02-23 08:34:10 +01:00
Gunnar Beutner f5f8b90ec8 Add HTTP Header size limits 2018-02-23 08:31:28 +01:00
Gunnar Beutner 0339a2b827 Add validation for HTTP connection sizes 2018-02-23 08:31:28 +01:00
Jean Flach 6d45efab66
Merge pull request #6111 from Icinga/upgrading-icinga2-docs 
Add Upgrading to Icinga 2.8.2 chapter
 2018-02-22 15:10:28 +01:00
Dirk Goetz 3cb7d2dbd0 SELinux: Allows icinga2_t to send sigkill to all domains it transitions to 
Fixes #5916
 2018-02-22 15:09:25 +01:00
Jean Flach 9de36c0999 Rename macro RequireNotNull to REQUIRE_NOT_NULL 2018-02-22 15:07:36 +01:00
Noah Hilverling 71c420d501 Fix nullptr deref in cluster events 2018-02-22 14:55:44 +01:00
Noah Hilverling 3ba5090867 Add marco RequireNotNull 
This is used to fix a number of possible nullptr dereferences
 2018-02-22 14:55:42 +01:00
Gunnar Beutner 464e829fe1
Merge pull request #6113 from Icinga/testing/appveyor 
appveyor: Disable artifacts until we use them
 2018-02-22 14:38:55 +01:00
Markus Frosch ee9ba18c24 appveyor: Disable artifacts until we use them 
fixes #6106
 2018-02-22 14:25:53 +01:00
Jean Flach 95b3818d23 Add clarification on sysconfig location 2018-02-22 12:31:36 +01:00
Jean Flach 8d237e10c5 Add Upgrading to Icinga 2.8.2 chapter 2018-02-22 11:29:12 +01:00
Jean Flach 6bb2ed4258 Merge branch 'feature/security-features' 2018-02-21 16:19:54 +01:00
Jean Flach 68f0291a39
Merge pull request #6109 from Icinga/feature/used-memory 
Add 'used' feature to check_memory
 2018-02-21 15:48:37 +01:00
Noah Hilverling e9643467a0
Fix code style 2018-02-21 15:13:50 +01:00
Jean Flach de9adb2687 Add 'used' feature to check_memory 
Analogous to check_disk -U can now be used to check against and print the
used memory instead of the default available memory.

fixes #6108
 2018-02-21 15:10:26 +01:00
Jean Flach 184580f705
Merge pull request #6103 from Icinga/fix/http-security-fixes 
HTTP Security fixes
 2018-02-21 15:04:02 +01:00
Jean Flach 85f45d9b94 Minor codestyle and doc changes 2018-02-21 14:52:44 +01:00
Jean Flach fae7f172db Update docs 2018-02-21 14:40:22 +01:00
Jean Flach eda9bce8cb
Merge pull request #6104 from Icinga/fix/nullptr-deref 
Fix nullptr dereferences
 2018-02-21 13:56:09 +01:00
Jean Flach a71ab1e126 Rename macro RequireNotNull to REQUIRE_NOT_NULL 2018-02-21 13:47:46 +01:00
Noah Hilverling 64ffe4f840 Fix nullptr posibility in ProcessEvent 2018-02-21 13:47:46 +01:00
Noah Hilverling 948333225d Fix nullptr deref in cluster events 2018-02-21 13:47:46 +01:00
Noah Hilverling 6bebdf8a87 Add marco RequireNotNull 
This is used to fix a number of possible nullptr dereferences
 2018-02-21 13:47:46 +01:00
Jean Flach aea43ddeb9
Merge pull request #5850 from Icinga/fix/prepare-dirs-5793 
init script security fixes
 2018-02-21 13:02:40 +01:00
Michal Moravec bf909ce47f Allow MYSQL_LIB to be specified by ENV variable 2018-02-21 10:49:53 +01:00
Jean Flach 636ed8e238
Merge pull request #6101 from Icinga/fix/doc-operators-missing-word 
Add missing word in operator documentation
 2018-02-21 09:54:52 +01:00
Michael Insel 60962c0897 Add missing word in operator documentation 
This adds the missing word `sorted` to the operators documentation.
 2018-02-20 17:28:08 +01:00
Jean Flach 87adc88989 Remove need for init.conf 2018-02-20 14:16:43 +01:00
Jean Flach c8c193a9d8 Remove need for RunAsUser/Group 
They are now read form the sysconfig file which is owned by root
 2018-02-20 14:16:43 +01:00
Jean Flach 6ae376b7fd Add cli tool to send signals as Icinga user 
fixes #5991
 2018-02-20 14:16:43 +01:00
Jean Flach ba41d7f249 Get ICINGA2_USER and GROUP from sysconfig 2018-02-20 14:16:43 +01:00
Jean Flach 88f77f9f8d Fix prepare-dirs permission exploit 
refs #5793
 2018-02-20 14:16:43 +01:00