Today, we are releasing security updates for Icinga 2 fixing a critical vulnerability that allowed to bypass the certificate validation for JSON-RPC and HTTP API connections. Impact The TLS...
Critical Icinga 2 Security Releases: 2.14.3, 2.13.10, 2.12.11, 2.11.12 (CVE-2024-49369)
Today, we are releasing security updates for Icinga 2 fixing a critical vulnerability that allowed to bypass the certificate validation for JSON-RPC and HTTP API connections. Impact The TLS...
Icinga Notifications: Incidents, Escalations, and Event Rules
Following the Icinga Notifications beta announcement, we already had a more general post on how to get started and one going into the details of schedules. This week's blog post is a follow up in this series and will describe incidents, escalations, and event rules in...
Making Use of Previous State in Icinga2 Check Commands
When writing a custom check plugin for Icinga 2, there are situations where in addition to observing the current state of a system, taking the past into account as well can be helpful. A common case for this is when the data source provides counter values, i.e. values...
Analyzing configuration problems with Icinga 2
Today, I want to showcase an old, but still very useful, tool when it comes to analyzing and debugging an Icinga 2 configuration: the icinga2 object list command. It can be helpful in a variety of situations, for example when you want to verify that a config change...
Dependency Redundancy Groups in Icinga 2.14
Icinga 2.14 introduced a new feature that allows to better model complex dependencies between your hosts and services: redundancy groups. Let's take an e-mail server as an example. In order to deliver outgoing messages, it has to look up the addresses of the...
Releasing Icinga 2.14 and 2.13.8
We are happy to announce the release of Icinga 2.14.0 and 2.13.8 today. Especially the 2.14.0 release comes with a lot of fixes and improvements and this blog post will highlight the most important ones. There are some breaking changes in 2.14.0, so please make sure...
The Tale of a Single Lock in Icinga 2
To speed up startup and reload times of Icinga 2, we have already put a lot of effort into improving the configuration load performance and still continue to do so for the next major release. In this blog post, I will share the story of one particular issue we found,...
Authenticating Icinga 2 API Users with TLS Client Certificates
When interacting with the Icinga 2 API, the client is commonly authenticated using a password provided via HTTP basic auth. Icinga 2 also supports a second authentication mechanism: TLS client certificates. This is a feature of TLS that also allows the client to send...
Releasing Icinga DB v1.1
We are happy to announce the release of Icinga DB version 1.1 today. The main feature of this release is the addition of a tool for migrating host and service history from the IDO to Icinga DB. Migrating lots of history data can take some time, so we built two...
New Releases for Icinga 2, Icinga Web and Icinga DB Web available
We've been working on a bunch of minor releases lately. Today we're happy to announce new versions for Icinga 2, Icinga Web and the Icinga DB Web module. Check out the details below. Icinga 2 v2.13.6 Today we are releasing Icinga 2.13.6. The main focus is improved...
How the current OpenSSL vulnerabilities affect Icinga
Recently, OpenSSL published an advisory about two vulnerabilities, X.509 Email Address 4-byte Buffer Overflow (CVE-2022-3602) and X.509 Email Address Variable Length Buffer Overflow (CVE-2022-3786). Depending on the operating system you are using, this may affect...
More reliable host and service history with Icinga DB
Today's blog post will give an insight into one of the many things that improved with Icinga DB: how host and service history is written to the database, both by the old IDO feature, as well as what has changed with Icinga DB and how this leads to more reliable...
Subscribe to our Newsletter
A monthly digest of the latest Icinga news, releases, articles and community topics.