OP5 Monitor 9.x Release Notes
Overview Copied
OP5 Monitor release notes contain the list of enhancements of features, and a set of issues fixed in the 9.x
release version of OP5 Monitor.
Compatibility and lifecycle Copied
For more information on versioning, including standard and rolling release, see OP5 Monitor 9.x Compatibility Matrix.
EOL
OP5 Monitor 8.x.x is no longer supported as of April 2024.
While 8.x.x documentation remains available, we highly recommend accessing the OP5 Monitor 9.x release notes to get the latest resources and security updates.
OP5 Monitor 9.12 Copied
Released: 21 August 2024
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- Updated the Magellan and Nachos libraries to address identified security vulnerabilities.
- Updated the
monitor-self-monitoring/op5-self-monitoring.spec
file to limit the maximum Infrastructure Agent version during non-root user updates.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13457 | Magellan | Updated Magellan libraries to address security issues. |
MON-13458 | Nachos | Updated Nachos libraries to address security issues. |
MON-13487 | Agents | Updated the monitor-self-monitoring/op5-self-monitoring.spec file to limit the maximum Infrastructure Agent version during non-root user updates. This prevents potential issues since OP5 Monitor is configured to run certain plugins as root or as monitor user. To perform a dnf update, run:
|
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13287 | Plugins, check_snmpif | Fixed an issue where the check_snmpif command fails to recognize the -p option, resulting in an error message Unknown argument: -p . |
MON-13423 | Autodiscovery | Updated PyCryptodome libraries to address security issues. |
MON-13459 | Plugins, check_snmpif | Fixed core dump issue when in traffic mode and using SNMP protocol version 1, if either interface name or description arguments are passed. |
MON-13481 | Config | Fixed an issue in /usr/bin/mon check distribution where the tool incorrectly returned an error when encountering expired checks. |
OP5 Monitor 9.11 Copied
Released: 13 June 2024
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- Docker images used to create offline installation tarballs for RHEL 8 have been updated to utilize the host system’s subscription.
- Updated the Nacoma hooks and Merlin applications to Python 3.9.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13242 | Install/upgrade | Docker images used to create offline installation tarballs for RHEL 8 have been updated to utilize the host system’s subscription. This eliminates the need for registration within the Docker container. See OP5 Monitor offline installation. |
MON-13334 | Business services, Geomap, Merlin, Nacoma, Ninja, pnp | Updated the Nacoma hooks to Python 3.9. This ensures that hook scripts run successfully after performing config changes in Nacoma. |
MON-13357 | Livestatus, Merlin | Updated the Merlin applications to Python 3.9. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13349 | Ninja, Reports | Fixed the display of the Trends graph in the PDF generated from Availability reports. |
OP5 Monitor 9.10 Copied
Released: 3 April 2024
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- The
check_by_snmp_memory
plugin now supports 64-bit counters for checking systems with large memory. This enhancement improves the plugin’s ability to monitor systems with significant amounts of memory. - The
check_aws
plugin now uses the latest versions of its dependencies. This update ensures that the plugin benefits from the latest bug fixes and security improvements available in its dependencies.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13354 | Plugins | The check_by_snmp_memory plugin now supports 64-bit counters for checking systems with large memory. |
MON-13394 | Plugins | The check_aws plugin now uses the latest versions of its dependencies. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13399 | Install/upgrade | Fixed an issue that prevented dnf updates on OP5 Monitor systems due to an outdated GPG key for the Infrastructure Agent package. The repository key has been updated. To ensure successful future updates, users with existing installations should manually update the GPG key in the Infrastructure Agent repository. |
OP5 Monitor 9.9 Copied
Released: 24 January 2024
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- The Monitoring plugins have been updated to version 2.3.5.
- Fixed the issue of inconsistent results for service scans using auto-detection services on Windows hosts.
- Fixed an issue that prevented users from successfully using other users in their credentials file with the
--profile
parameter. - The self-monitoring check commands have been updated to use version 2.0 of NRPE packets for
check_nrpe
for better compatibility with the Infrastructure Agent.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13366 | Plugins | The Monitoring plugins have been updated to version 2.3.5. For more information, please see the following changelogs for version 2.3.4 and 2.3.5. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13223 | Nacoma | Fixed the issue of inconsistent results for service scans using auto-detection services on Windows hosts. |
MON-13313 | Nacoma | Fixed an issue that caused multiple services to be incorrectly displayed when adding a Windows host with port 9999 . With this fix, only the intended NSclient services are added when a Windows host with port 9999 is detected, ensuring accurate service configuration. |
MON-13367 | Plugins, check_aws | Fixed an issue that prevented users from successfully using other users in their credentials file with the --profile parameter. This issue was causing the NoCredentialsError: Unable to locate credentials error. |
MON-13368 | Reports | Set the initial date range for the Events Log listview to the last 7 days. Previously, a timeout error occurred when displaying the Event Log due to OP5 Monitor attempting to retrieve all archived events. |
MON-13374 | Nacoma | Fixed the issue that caused an AttributeError when saving host configurations with custom variables in the template. |
MON-13375 | Backup | Fixed an issue in the restore of Nacoma configuration caused by Python updates after addressing CVE-2007-4559. This was previously identified and fixed in CentOS Stream and is now applied to Rocky8 and RHEL8 users as well. |
MON-13379 | Backup | Set uniform folder permissions for both monitor-nacoma and monitor-backup within the /var/www/html/backup/ directory to eliminate past issues where inconsistent permissions led to errors during backup deletions. |
MON-13380 | Plugins, management-packs | The self-monitoring check commands have been updated to use version 2.0 of NRPE packets for check_nrpe for better compatibility with the Infrastructure Agent. To apply this update to existing setups, you must force activate the management packs and save the resulting service check changes. |
OP5 Monitor 9.8 Copied
Released: 26 October 2023
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- The OP5 Monitor server now uses the Infrastructure Agent instead of the SNMPv3 Agent for self-monitoring. This change only affects new installations of the OP5 Monitor 9.8 server. Existing installations continue to use the previous self-monitoring method.
- LMD has been updated to version 2.1.6 to stay in sync with the upstream project.
- Nagvis has been updated to version 1.9.37 to stay in sync with the upstream project.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13336 | Config | The Infrastructure Agent is now used instead of the SNMPv3 Agent to perform self-monitoring of the OP5 Monitor server for new installations of the OP5 Monitor server. If the OP5 Monitor server is updated from version 9.7 or upgraded from OP5 Monitor 8.x.x, the previous self-monitoring method will continue to be used. |
MON-13353 | LMD | LMD has been updated to version 2.1.6 to stay in sync with the upstream project. For more details, see LMD changes. |
MON-13360 | Nagvis | Nagvis has been updated to version 1.9.37 to stay in sync with the upstream project. For more information, see changelog. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13306 | Nacoma | Fixed the issue with disk scans that caused the application to display all service lists for NSClient service checks. The default list for Windows Client Services (NSClient) now displays correctly. |
MON-13341 | Widgets | Fixed an issue on the dashboard widget for the Show critical option checkbox where it was always enabled. |
MON-13345 | Nacoma | Fixed an issue where a custom variable could not be removed from a Nacoma object if it was the last one. |
MON-13352 | Nacoma | The error message displayed for missing check commands when adding new services has been updated. |
OP5 Monitor 9.7 Copied
Released: 29 August 2023
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- The error logging for LMD and Naemon has been improved when running external commands.
- Any incorrect versions of the
monitor-ninja
and HTTP API packages installed on the OP5 Monitor host were removed and replaced with the latest available version from the OP5 Monitor repository. - Fixed an issue where existing authentication modules were removed when a page was accessed with a random action value.
- Fixed an issue with the Merlin node status widget settings that prevented users from saving changes to the Checks and Latency details.
- Fixed an issue in the restore of Nacoma configuration that was introduced by updates to Python to address CVE-2007-4559.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-10404 | Ninja | Set the comment list view to descending order by default. |
MON-13199 | LMD, Ninja | The error logging for LMD and Naemon has been improved when running external commands. |
MON-13326 | API, Ninja | Any incorrect versions of the monitor-ninja and HTTP API packages installed on the OP5 Monitor host were removed and replaced with the latest available version from the OP5 Monitor repository. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-12842 | Nacoma, Ninja | Fixed an issue where existing authentication modules were removed when a page was accessed with a random action value. |
MON-12918 | Ninja, Widgets | Fixed an issue with the Merlin node status widget settings that prevented users from saving changes to the Checks and Latency details. Additionally, the initial values of display_checks and display_latency have been set to false . |
MON-13251 | NagVis | Fixed an issue where users were unable to schedule downtime through NagVis. |
MON-13271 | NagVis | Fixed an issue with the Javascript error prompt that was occurred on refresh upon modifying an object on the NagVis map. |
MON-13277 | NagVis | Fixed an issue where the popup window would not close after editing a host or service in Nagvis. |
MON-13280 | Config | Removed the extra socket configuration for rrdcached.socket . |
MON-13282 | Nacoma | Fixed an issue where the dropdown list selection would get reset when the Tab key was pressed. |
MON-13307 | Widgets | Fixed an issue that caused the Geomap widget to display an error message when it was added to a dashboard. |
MON-13328 | Trapper | Fixed an issue where SNMP traps from unknown hosts displayed blank in the trapper UI. The SNMP traps now display the IP addresses of the unknown hosts as hostnames. |
MON-13337 | API | Updated encoding conversion to avoid generating warning logs in the php-fpm file. |
MON-13340 | Backup | Fixed an issue in the restore of Nacoma configuration that was introduced by updates to Python to address CVE-2007-4559. |
Known issues Copied
To view the list of known issues for all 9.x releases, see Opsview Monitor 9.x Known Issues.
OP5 Monitor 9.6 Copied
Released: 14 June 2023
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- LMD has been updated to version 2.1.5 to stay in sync with the upstream project.
- Nachos and Magellan have been updated to fix security vulnerabilities with their dependencies.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13268 | LMD | LMD has been updated to version 2.1.5 to stay in sync with the upstream project. For more details, see LMD changes. |
MON-13310 | Nachos | Nachos has been updated to fix the following security vulnerabilities:
|
MON-13322 | Autodiscovery | Magellan has been updated to fix the following security vulnerabilities:
|
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13269 | API | Fixed an issue in the HTTP API to ensure that responses are encoded correctly. |
MON-13286 | Ninja | Fixed an issue that prevented users from toggling the check boxes under general options in the Event Log. |
MON-13298 | Ninja | Fixed an issue that caused widgets to stop working when filters were changed. Widgets will now continue to work properly even if filters are changed. |
MON-13301 | Naemon | A default value was added for an unset comment upon submitting a scheduled downtime. |
MON-13302 | Nacoma | Fixed an issue where NRPE checks were found instead of NSClient checks when performing Scan host for network services for Windows hosts. |
MON-13305 | Plugins, check_http | Fixed issues in the check_http plugin with the handling of chunk-encoded data. |
MON-13311 | Nacoma | Restored NRPE-style self-monitoring checks by enabling the NRPE group as a sudoer for asmonitor . |
OP5 Monitor 9.5 Copied
Released: 19 April 2023
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- Nagvis has been updated to version 1.9.34 to stay in sync with the upstream project.
- The Monitoring plugins have been updated to version 2.3.3.
- The
naemon-core
andnaemon-livestatus
have been upgraded to version 1.4.1. - Added support for modern SNMPv3 authentication and encryption protocols for all
check_by_snmp_*
plugins. - Updated Magellan dependencies due to security issues.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13021 | Plugins, check_by_snmp | Added support for modern SNMPv3 authentication and encryption protocols for all check_by_snmp_* plugins. |
MON-13179 | Ninja | The performance data table now includes an additional UOM column that contains the current unit of measure. When there is no assigned value for the item, this column will be empty. |
MON-13258 | Livestatus, Naemon | The naemon-core and naemon-livestatus have been upgraded to version 1.4.1. |
MON-13259 | Plugins | The Monitoring plugins have been updated to version 2.3.3. For more information, see changelog. |
MON-13261 | Plugins, check_aws | The check_aws plugin has been updated to use Python 3.9 to support the latest Boto3 module and other dependencies. |
MON-13262 | Nachos | Updated Python dependencies for Nachos. |
MON-13265 | Nagvis | Nagvis has been updated to version 1.9.34 to stay in sync with the upstream project. For more information, see changelog. |
MON-13276 | Autodiscovery | Updated Magellan dependencies due to security issues. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-11199 | API, Config, Nachos, Nacoma | Removed the parallelize check settings from the UI, set them to 0 in the database, and deleted them from the service configuration file. |
MON-11773 | LMD | LMD now supports the StatsNegate filter. |
MON-13191 | Nacoma | Fixed empty checkboxes when applying a host template. |
MON-13214 | Nacoma | Replaced remaining check_nt commands with check_nrpe for checking partitions. |
MON-13235 | Plugins, check_snmpif | Removed the -C option in the check_snmpif check command configuration. |
MON-13243 | Reports | Graphs are now rendered correctly in the Histogram Report. |
MON-13281 | Reports | Changed the default report period on Alert History from Forever to Last 24 Hours to reduce the number of items to load on the UI. |
OP5 Monitor 9.4 Copied
Released: 25 January 2023
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- LMD has been updated to version 2.1.2 to stay in sync with the upstream project.
- Restricted the privileges to run commands as a monitor user to service users running OP5 Monitor.
- Magellan and Nachos have been updated to use Python 3.9.
- The Monitoring plugins have been updated to version 2.3.2.
- The
naemon-core
andnaemon-livestatus
have been upgraded to version 1.4.0. - You can now use a CLI tool that prints a list of installed OP5 Monitor software packages and their licenses.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-11764 | Generic | Restricted the privileges to run commands as a monitor user to service users running OP5 Monitor. The /usr/bin/asmonitor script can now only be run by the intended internal service users and root. |
MON-12997 | Ninja | Information on software licensing has been added to the About > License Software window. |
MON-13186 | Merlin, Ninja | Added the Show logs from all node button to the Event Log page to display a consolidated list of event logs from all nodes. Each line in the log is appended with the node name where the log originated. |
MON-13218 | LMD | LMD has been updated to version 2.1.2 to stay in sync with the upstream project. For more details, see LMD changes. |
MON-13225 | Magellan | Magellan has been updated to use Python 3.9 to resolve security vulnerabilities with dependencies. |
MON-13226 | Nachos | Nachos has been updated to use Python 3.9 to resolve security vulnerabilities with dependencies. |
MON-13228 | Plugins | The Monitoring plugins have been updated to version 2.3.2. For more information, see the changelog. |
MON-13230 | Install/upgrade | The configuration of the installer script repository has been improved and is now more reliable. |
MON-13233 | Livestatus, Naemon | The naemon-core and naemon-livestatus have been upgraded to version 1.4.0. This release contains updated versions of all Naemon event broker modules that OP5 Monitor uses. |
MON-13234 | Backup, plugins | Self-monitoring check Monitor backup - Check backup files now returns an unknown state instead of critical when no backups have been created yet. This update also improved its plugin output text. The op5-backup now includes systemd service and timer units, which can be used to enable automatic backups by running systemctl enable --now op5-backup.timer . If an op5-backup scheduled job is configured in /etc/cron.d , it is advisable to remove that when the systemd timer is enabled |
MON-13237 | ModSecurity | Newly updated URLs that were previously linked to 403 pages now point to official documentation instead of support pages. |
MON-13238 | Generic | In OP5 Monitor 8.x and 9.x, broken links to documentation, knowledge base articles, and other external resources are fixed. |
MON-13250 | Generic | You can now use a CLI tool that prints a list of installed OP5 Monitor software packages and their licenses. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-9490 | Nacoma | Clicking the Complete reimport link now prompts the configuration files to be loaded into the database, regardless of the file’s timestamp. This change also improved the messaging by explaining how importing the configuration files into the database will affect the current settings. |
MON-12194 | Nacoma | Updated the popup text for the Undo button to clarify that it reverts all the changes the logged-in user has made since the last save. Additionally, if you reimport configuration files into the database, this action reverses all user configurations since the last save. |
MON-13132 | GUI, Config | Removed the complete reimport link from the GUI after restoring from backup. Reimport already happens during a backup restore, so performing it again is redundant. |
MON-13144 | GUI | Decreased the time it takes for the business object tree to load in order to prevent coming across a blank page. |
MON-13207 | Plugins | All VMware check timeouts caused by connection attempts to slow-responding vSphere servers have been resolved. |
MON-13209 | Ninja, Widgets | A validation has been added when creating a quicklink to avoid cross-site scripting attacks. |
MON-13215 | Nacoma | Fixed an issue where all services were removed when removing an item from a selected service group. |
MON-13222 | Ninja | Added a default value for an unset comment upon submitting a problem acknowledgment. |
MON-13240 | GUI | The OP5 Monitor binaries now contain the fonts required for offline installation. |
MON-13253 | Backup | The issue with restoring migration backups from OP5 Monitor 8.4.x to version 9.x has been resolved. |
OP5 Monitor 9.3 Copied
Released: 2 November 2022
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- LMD has been updated to version 2.1.0 to stay in sync with the upstream project.
- Updated the httpd directives to follow the Apache 2.4 standard.
- The MySQL user privileges for Trapper are now only allowed to access their own database.
- Fixed an issue in Scheduled Downtimes that prevented editing the recipients of an existing scheduled report.
- The compatibility issue with the traped script in the Lua 5.1.4 interpreter packaged in
op5-trapper-luapack
has been resolved. - The message output for invalid requests no longer displays server config on API error.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13171 | Ninja | Updated the httpd directives to follow the Apache 2.4 standard. |
MON-13206 | LMD | LMD has been updated to version 2.1.0 to stay in sync with the upstream project. For more information, see LMD changes. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13149 | GUI | Improved error messages for Test this check. |
MON-13174 | API | The message output for invalid requests no longer displays server config on API error. |
MON-13190 | Trapper | The compatibility issue with the traped script in the Lua 5.1.4 interpreter packaged in op5-trapper-luapack has been resolved. |
MON-13205 | Ninja, Reports | Fixed an issue in Scheduled Downtimes that prevented editing the recipients of an existing scheduled report. |
MON-13210 | Trapper | The MySQL user privileges for Trapper are now only allowed to access their own database. |
OP5 Monitor 9.2 Copied
Released: 6 September 2022
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- Updated logging so that the host name or template name is indicated in logs when an invalid host configuration is found by Nachos.
- Added the new
check_http_json
plugin as a replacement forcheck_json
which has been removed in OP5 Monitor 9.0. - Added the selector command-line option to the
check_k8s
plugin to enable resource queries using labels. - Added a new plugin for checking the REST API of NSClient++. You can use this plugin instead of
check_nrpe
for gathering check results. - Automatically detected Windows services when adding a new host now use
check_nrpe
instead ofcheck_nt
. - Removed the debug log setting from
/etc/op5/check_vmware/service.cfg
. Debug logs are now enabled by setting loglevel = ‘debug’ in/etc/op5/check_vmare/gunicorn.cfg
. - Fixed an issue where updating using the tarball installer always update OP5 Monitor to the latest version available in online OP5 RPM repositories, not the version supplied in the tarball.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-12774 | Nachos | Updated logging so that the host name or template name is indicated in logs when an invalid host configuration is found by Nachos. |
MON-13162 | Plugins | Added the new check_http_json plugin as a replacement for check_json which has been removed in OP5 Monitor 9.0. |
MON-13168 | Plugins, check_k8s | Added the selector command-line option to the check_k8s plugin to enable resource queries using labels. |
MON-13172 | Plugins, NSClient | Added a new plugin for checking the REST API of NSClient++. You can use this plugin instead of check_nrpe for gathering check results. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-12701 | Nacoma | Removed the default value of stalking_options , n , when new hosts are created. |
MON-12796 | Merlin, Naemon | Fixed an issue where the host notification suppressed events are not displayed in event log. |
MON-13027 | Nacoma | Automatically detected Windows services when adding a new host now use check_nrpe instead of check_nt . |
MON-13142 | Nacoma | Fixed an issue in the Host configuration page where the Advanced toggle button was not working. |
MON-13160 | Plugins, check_k8s | Improved error handling. |
MON-13180 | Merlin | Updated the rename tool to preserve file permissions when log files are updated. |
MON-13185 | Backup, Nacoma | Fixed an issue in backup and restore that caused an error when restoring the management_pack table for the Nacoma database. |
MON-13194 | PNP | The /opt/monitor/etc/pnp/npcd.cfg now has a root user and group ownership on fresh installs and updates. |
MON-13197 | Plugins | Removed the debug log setting from /etc/op5/check_vmware/service.cfg . Debug logs are now enabled by setting loglevel = ‘debug’ in /etc/op5/check_vmare/gunicorn.cfg . |
MON-13198 | Install/Upgrade | Fixed an issue where updating using the tarball installer always update OP5 Monitor to the latest version available in online OP5 RPM repositories, not the version supplied in the tarball. |
OP5 Monitor 9.1 Copied
Released: 15 June 2022
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- Removed the
urlize
plugin since it was vulnerable to remote code execution. - Security hardening. The
negate
plugin has been updated to only accept commands and scripts to execute from the plugin path/opt/plugin/
. - Security hardening has been improved to set the Apache policy to never include referrer URLs.
- Improved security by disabling auto-complete on sensitive input fields.
- Improved security of HTTP response headers.
- The Secure and HttpOnly attributes are now set on the PHPSESSID cookie in the HTTP API.
- The Kubernetes management pack now has fields for the namespace, while the namespace parameter for
check_k8s_nodes
check command has been removed. - Added the
--ignore
command-line option to thecheck_k8s
plugin to exclude specified resource names from the check result. - Added capability to check multiple namespaces to
check_k8s
plugin. - Attributions, in NagVis and Geomap, to Map and Data have been updated in accordance with terms and conditions with providers.
Breaking changes Copied
These are the breaking changes in this release:
-
Pollers which depend on
ssh-less
test-this-check
, particularly pollers with connect=no set on the master side will need to add the node settingaccept_runcmd=1
in order to keep on usingtest this check
. -
The changes in the
negate
plugin may break the existing configurations if this plugin is used to execute applications and scripts outside the/opt/plugin/
path. -
The changes in the Kubernetes management pack and
check_k8s_nodes
check command may break existing hosts configured using the Kubernetes management pack due to the addition of a custom variable for the namespace. To restore the functionality of the existing Kubernetes checks, add a custom variable named_NAME_SPACE
with a value set to""
(blank) to the existing host configuration. It is also necessary to configure and activate the updated management packs, see Management packs. -
The updates made to all NSClient checks to use the
check_nrpe
version 4 (version 2 is no longer working on EL8 operating systems) will have some implications, so take note of the following:- Configure and activate the updated management packs. See Management packs.
- Import the updated check commands. See Import commands.
- All servers with NSClient that are still using 512-bit keys for their NRPE SSL encryption require updating to use 2048-bit keys. For more information, see the check_nrpe article.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-13076 | Plugins, check_k8s | Added capability to check multiple namespaces. |
MON-13083 | Host-wizard | Fixed UI issues in the Host Wizard. |
MON-13089 | Plugins, check_k8s | The Succeeded phase is now counted as an OK state. |
MON-13092 | API | The Secure and HttpOnly attributes are now set on the PHPSESSID cookie in the HTTP API. |
MON-13106 | Autodiscovery | Updated to Bootstrap 5 in Autodiscovery which removes the dependency on jQuery. |
MON-13108 | Generic | Improved security of HTTP response headers. |
MON-13110 | Generic | Implemented a Content Security Policy (CSP) in the OP5 Monitor. |
MON-13111 | Ninja | Improved security by disabling auto-complete on sensitive input fields. |
MON-13131 | Generic | Security hardening has been improved to set the Apache policy to never include referrer URLs. |
MON-13138 | Nacoma | Removed the automatic discovery of Sensatronic and NetWare devices since the required plugins are no longer shipped. |
MON-13140 | Plugins | Removed the urlize plugin since it was vulnerable to remote code execution. |
MON-13141 | Plugins, negate | Security hardening. The negate plugin has been updated to only accept commands and scripts to execute from the plugin path /opt/plugin/ . |
MON-13152 | Plugins, check_k8s | Added the --ignore command-line option to the check_k8s plugin to exclude specified resource names from the check result. |
MON-13153 | Plugins, check_k8s | Added the --version command-line option. |
MON-13161 | Livestatus, Naemon | Livestatus and Naemon have been updated to version 1.3.1 to stay in sync with upstream. |
MON-13163 | Geomap, NagVis | Attributions, in Geomap and NagVis, to Map and Data have been updated in accordance with terms and conditions with providers. |
MON-13166 | Plugins, check_k8s | The Kubernetes management pack now has fields for the namespace, while the namespace parameter for check_k8s_nodes check command has been removed. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13188 | Ninja | Fixed an issue where scheduled reports were sent every minute. |
MON-6729 | Plugins, check_radius | Updated the check_radius check command to use the correct path to the config file. |
MON-13014 | Geomap | The default map in Geomap now works correctly. |
MON-13058 | Ninja | Improved jQuery compatibility. |
MON-13091 | API | Mitigated XSS vulnerability in the API error messages. |
MON-13093 | API | Removed ability to spoof the URLs generated in the API documentation by setting the host header to something malicious. |
MON-13121 | Reports | Improved error messages in the UI. |
MON-13125 | Nacoma, WMIC | Updated WMI network scanning to work with the latest version of check_wmi and made it compatible with DCOM security hardening. |
MON-13126 | Backup | Fixed an issue where the wrong SNMP user would be recreated after restoring a backup. |
MON-13129 | Autodiscovery | Fixed an issue in the Autodiscovery where having spaces around an ip-range would result in an error. |
MON-13135 | Ninja | Improved UI in the date picker component. |
MON-13139 | Nacoma | The Remove button for custom variable now works correctly. |
MON-13146 | Ninja, Reports | Fixed manual sending of scheduled reports and saving of reports to system /tmp folder now works correctly. |
MON-13147 | Nachos | The migration script now checks if configurations are correctly encoded in UTF-8. |
MON-13148 | Merlin | Added the new accept_runcmd node setting. This node setting must be enabled in order to use test this check on that node. Note that this only affects the ssh-less test this check . |
MON-13157 | Ninja, Reports | Fixed UI issues when editing reports. |
MON-13159 | Plugins, check_yum_update | GPG keys are now imported for users when using the check_yum_update plugin. |
MON-13169 | Plugins, management-packs | Updated all NSClient checks to use the check_nrpe version 4, and removed the check_nrpe version 2 from OP5 Monitor. |
OP5 Monitor 9.0 Copied
Released: 5 April 2022
To download ITRS OP5 Monitor, including all components, see ITRS Downloads.
Highlights Copied
These are the highlights of this release:
- Support for EL8 to provide a modern operating system as a base, including Enterprise Linux 8, CentOS 8 Stream, and Rocky Linux 8.x distributions. To view the upgrade notes for OP5 Monitor 9, see Upgrade to OP5 Monitor 9.
- Security improvements through upgrades to PHP 7.4 and MariaDB 10.5 as well as dependency removal of RabbitMQ.
- Updated plugins to provide a more relevant set of plugins.
- Email templates have been updated with a newer and fresher look.
- The OP5 Monitor UI has been refreshed with new logos and colours.
- You can now set the root password of MySQL without impacting OP5 Monitor functionality.
- Session IDs are now regenerated on login.
- Cronjobs have been replaced with systemd timers.
- PNP4Nagios and NagVis have been updated to the latest versions.
- Logger has been removed from the OP5 Monitor since its functionality is obsolete.
New features and enhancements Copied
These are the new features and enhancements of this release:
Issue key | Component | Release description |
---|---|---|
MON-10355 | Plugins | Updated monitoring-plugins suite to version 2.3.1. |
MON-11847 | Nacoma | The maximum size of configuration fields in the Nacoma database has been increased. |
MON-12319 | Nachos | The character set used in the Nacoma database has been updated to UTF-8. This change does not have any functional impact on the product. |
MON-12535 | Mayi | The Test this host and Test this service group rights have been removed from the limited_edit role. |
MON-12574 | Nachos | Enabled change of root password for MySQL. |
MON-12621 | Notify | Email templates have been updated with a newer and fresher look. |
MON-12622 | Portal | OP5 Monitor Portal has been removed. |
MON-12697 | Plugins | The default behavior of the check_aws shipped check_command has been changed to not include the unit argument. |
MON-12700 | Ninja | Removed cookie usage banner from OP5 Monitor. |
MON-12877 | Ninja, Nacoma, Merlin | Cron jobs have been replaced with systemd timers. |
MON-12889 | Nacoma, Ninja, Reports | Multiple OP5 Monitor components have been updated to use the upgraded version of jQuery 3.6.x and jQuery-UI 1.13.x. |
MON-12908 | Nacoma | The Help link in the configuration UI now points to the OP5 Monitor documentation instead of an internal help page. |
MON-12935 | Ninja | Removed option to change themes in the UI. |
MON-12946 | Plugins | Updated the check_wmi_plus plugin to work with Windows DCOM hardening. |
MON-12965 | Generic | PHP version has been upgraded from 7.2 to 7.4. |
MON-12999 | Plugins | All default NRPE checks, except for specific to Windows, now use check_nrpe4 . |
MON-13024 | NagVis | NagVis has been updated to 1.9.30 to address the security vulnerability: CVE-2021-33178. |
MON-13035 | Autodiscovery | Removed RabbitMQ dependency and switched worker model for Magellan Autodiscovery service. |
MON-13045 | Plugins | The check_mssql plugin has been removed, and the recommended check_mssql_health plugin has been updated to 2.7.2.2. |
MON-13061 | Ninja | Updated the About menu to include the OP5 Monitor version, and removed the Naemon version. |
MON-13062 | API | Removed the deprecated Status API endpoints (/api/status and /api/help/status ). Use the Filter API instead. |
MON-13064 | Plugins | Updated the check_wmi_plus plugin to 1.66. |
MON-13077 | Ninja | Successful login attempts are now logged on level notice. |
Issues fixed Copied
These are the issues we have fixed in this release:
Issue key | Component | Release description |
---|---|---|
MON-13020 | Ninja, pnp | Clicking the Make default graph button on a PNP graphs page now works correctly. The default graph is displayed when hovering over the graph image in the list views. |
MON-13039 | Nacoma, Ninja | Forced a complete reimport of the configuration files when restoring a backup to ensure the configuration database is in sync. |
MON-13101 | Plugins | Added the missing -a option in the check_oracle_query and check_oracle_query_regex check commands. |
Click the links below to view other versions of OP5 Monitor release notes.
Release Notes | Release Date | |
---|---|---|
9.x Release Notes | Released: April 2022 | |
8.x Release Notes | Released: January 2019 | Last updated: April 2022 |
7.x Release Notes | Released: March 2019 | Last updated: October 2020 |
Disclaimer
The information contained in this document is for general information and guidance on our products, services, and other matters. It is only for information purposes and is not intended as advice which should be relied upon. We try to ensure that the content of this document is accurate and up-to-date, but this cannot be guaranteed. Changes may be made to our products, services, and other matters which are not noted or recorded herein. All liability for loss and damage arising from reliance on this document is excluded (except where death or personal injury arises from our negligence or loss or damage arises from any fraud on our part).