The brand new openITCOCKPIT Mobile website for Enterprise Edition users gives you an overview for your monitored devices at a glance – from everywhere! It is explicitly developed for Mobile devices.
openITCOCKPIT Mobile is deployed via Docker and can be hosted separately from openITCOCKPIT. It uses the openITCOCKPIT API with the API Key Authentication. To make things easier, we have integrated a new functionality in openITCOCKPIT, which allows you to scan the API Key as QR-Code.
openITCOCKPIT version 4.4.0 has been released. It is packed with new features and improvements like: Support for LDAP groups, the ability to use the openITCOCKPIT Monitoring Agent via satellite systems and automatically check deployment using the Import Module.
openITCOCKPIT distinguishes between two options to define user permissions:
No. openITCOCKPIT is not affected by the critical Log4j security vulnerability CVE-2021-44228. openITCOCKPIT itself is written in PHP and is not using or depending on any Java code.
No. None of the backend components used by openITCOCKPIT is affected by CVE-2021-44228.
If you have installed any additional software on your openITCOCKPIT server like custom check plugins, you have to check these plugins by yourself. Even if it is very unlikely that a check plugin is implemented in Java, you should check your manually install plugins to be sure.
Many admins are concerned these days which software is using Log4j under the hood. We just want to inform you that openITCOCKPIT and all it used components are not affected and that no action is required.
Your openITCOCKPIT Team
Today we have released the next version of openITCOCKPIT 4.3.3.
We updated the Grafana version used by openITCOCKPIT to 8.3.2, which resolves a critical security issue within Grafana. More information can be found in the official Grafana Blog
Due to the Grafana instance shipped with openITCOCKPIT is running inside a Docker Container, only files located in the Docker container where affected by this.
We resolved an issue with Statusengine, that the TCP connections to Graphite where not terminated correctly and left alive with the state