New openITCOCKPIT Mobile Website

The brand new openITCOCKPIT Mobile website for Enterprise Edition users gives you an overview for your monitored devices at a glance – from everywhere! It is explicitly developed for Mobile devices.

openITCOCKPIT Mobile is deployed via Docker and can be hosted separately from openITCOCKPIT. It uses the openITCOCKPIT API with the API Key Authentication. To make things easier, we have integrated a new functionality in openITCOCKPIT, which allows you to scan the API Key as QR-Code.

openITCOCKPIT version 4.4.1 has been released. This version contains mainly compatibility features for the upcoming openITCOKPIT Mobile website.

openITCOCKPIT version 4.4.0 has been released. It is packed with new features and improvements like: Support for LDAP groups, the ability to use the openITCOCKPIT Monitoring Agent via satellite systems and automatically check deployment using the Import Module.

Manage user permissions via LDAP groups

openITCOCKPIT distinguishes between two options to define user permissions:

Is openITCOCKPIT affected by CVE-2021-44228?

No. openITCOCKPIT is not affected by the critical Log4j security vulnerability CVE-2021-44228. openITCOCKPIT itself is written in PHP and is not using or depending on any Java code.

Are any used components affected?

No. None of the backend components used by openITCOCKPIT is affected by CVE-2021-44228.

What about custom checks?

If you have installed any additional software on your openITCOCKPIT server like custom check plugins, you have to check these plugins by yourself. Even if it is very unlikely that a check plugin is implemented in Java, you should check your manually install plugins to be sure.

Why this post?

Many admins are concerned these days which software is using Log4j under the hood. We just want to inform you that openITCOCKPIT and all it used components are not affected and that no action is required.

Your openITCOCKPIT Team

Today we have released the next version of openITCOCKPIT 4.3.3.

Security: Update Grafana to v8.3.1 to resolve high severity security issue CVE-2021-43798

We updated the Grafana version used by openITCOCKPIT to 8.3.2, which resolves a critical security issue within Grafana. More information can be found in the official Grafana Blog

Due to the Grafana instance shipped with openITCOCKPIT is running inside a Docker Container, only files located in the Docker container where affected by this.

Graphite error: Could not connect: [99] Cannot assign requested address

We resolved an issue with Statusengine, that the TCP connections to Graphite where not terminated correctly and left alive with the state TIME_WAIT.