Hi,
Thanks to the LTS team for resolving for those on stretch.
Kind regards
James Greig
Hi Felix and all,
On Sat, Aug 01, 2020 at 08:37:17AM +0200, Salvatore Bonaccorso wrote:
> Hi Felix and all,
>
> On Fri, Jul 31, 2020 at 03:36:54PM +0200, Felix Sperling wrote:
> > Hi,
> >
> > we were also effected from the update 5.7.3+dfsg-1.7+deb9u2 causing lots of
> > broken icinga checks.
>
Hi,
Well, hopefully LTS can fix this for those of us that are using oldstable
(stretch). It almost seems like someone broke production on the oldstable
version, then said, "don't worry - we've fixed it on unstable" (a version no
one is using in production), then walked away :)
Current work
Same here. snmpd broke over night, now my mrtg which is reporting, e.g.,
disk temperatures using a smartctl-based cannot be reported anymore, and
I was wondering why this cron job now keeps flooding my inbox... All
intranet, all very inconvenient. As others mentioned, a warning would
have been
Hi Felix and all,
On Fri, Jul 31, 2020 at 03:36:54PM +0200, Felix Sperling wrote:
> Hi,
>
> we were also effected from the update 5.7.3+dfsg-1.7+deb9u2 causing lots of
> broken icinga checks.
>
> Our workaround is pinning 5.7.3+dfsg-1.7+deb9u1.
>
> What's unclear from the solution if 5.8 also
Hi,
we were also effected from the update 5.7.3+dfsg-1.7+deb9u2 causing lots
of broken icinga checks.
Our workaround is pinning 5.7.3+dfsg-1.7+deb9u1.
What's unclear from the solution if 5.8 also will be available in
stretch and buster which we need. Otherwise it would be great to enable
Hi,
Same here for all the nagios alerts, and we don't have any writable snmp
instance in our infrastructure only read-only.
What is to question is that the original bug #965166 that implied this
update proposed three different fixes that didn't imply breaking
production servers and none of these
Hi,
same here, woke up this morning to dozens of alert emails because extend
support is suddenly "removed" without any change logs indicating this,
nor in the man pages.
The snmpd runs in read-only mode here as well.
Alternatively, can you please provide a valid method of getting extended
Small
Sent: 31 July 2020 01:46
To: James Greig ; 966...@bugs.debian.org
Subject: Re: [Pkg-net-snmp-devel] Bug#966544: snmpd: extend option broken after
update
Hi James,
That would have been intentional, the EXTEND MIB has major security issues.
- Craig
On Thu, 30 Jul 2020 at 23:03, James
Hi Craig,
On Fri, 31 Jul 2020 14:17:46 +1000 Craig Small
wrote:
> I'm trying to understand why you (or anyone) would use such an
> insecure feature. One question, are you using in read-only mode or
> read-write mode?
We also use this feature in read-only mode for monitoring, and I woke
up to
We use read-only mode for monitoring custom things with nagios.
Maybe it is possible to disable extend by default, but to leave possibility
to enable it. In our case it is enough to have read-only mode.
Albertas
On Fri, Jul 31, 2020 at 7:18 AM Craig Small wrote:
> I'm trying to understand why
I'm trying to understand why you (or anyone) would use such an insecure
feature. One question, are you using in read-only mode or read-write mode?
read-only mode could be enabled, but read-write probably can't be anymore.
- Craig
On Fri, 31 Jul 2020 at 14:15, Albertas Sileika wrote:
> Hi,
>
Hi,
It is not acceptable to remove feature without possibility to enable it
again. This update breaks part of our monitoring system.
Albertas
On Fri, 31 Jul 2020 10:46:29 +1000 Craig Small wrote:
> Hi James,
> That would have been intentional, the EXTEND MIB has major security
> issues.
>
> -
Hello Craig,
These issues, do they warrant utterly breaking things w/o any recourse
short of recompiling things for many, many users that use the extend
feature?
Especially given the fact that SNMP traffic tends to be on private
networks and the feature not being enabled by default in the
Hi James,
That would have been intentional, the EXTEND MIB has major security
issues.
- Craig
On Thu, 30 Jul 2020 at 23:03, James Greig wrote:
> Package: snmpd
> Version: 5.7.3+dfsg-1.7+deb9u2
> Severity: important
>
> Dear Maintainer,
>
> *** Reporter, please consider answering these
Package: snmpd
Version: 5.7.3+dfsg-1.7+deb9u2
Severity: important
Dear Maintainer,
*** Reporter, please consider answering these questions, where appropriate ***
Updating snmpd from deb9u1 to deb9u2 via apt on any stretch system
breaks the ability to use 'extend' in snmpd.
After updating on
16 matches
Mail list logo
