Ever wondered how Icinga 2 manages all those variables, and how it knows which one to use? In this blog post, we will explore all the different variable scopes in Icinga 2, and by the end, you will...
Icinga 2 DSL – Variable Scopes
Ever wondered how Icinga 2 manages all those variables, and how it knows which one to use? In this blog post, we will explore all the different variable scopes in Icinga 2, and by the end, you will...
Uncovering a Client Certificate Verification Bypass in Icinga
This is a guest blogpost from Finn Steglich. As of Icinga 2 versions 2.14.3, 2.13.10, 2.12.11, and 2.11.12 from 12th November 2024, a critical security issue affecting Icinga 2 Masters, Satellites and Agents has been addressed. Now we'd like to release some more...
Icinga for Windows without an Icinga 2 agent
I've already dropped a hint at this topic in a previous post of mine which reflected the history of Icinga on Windows: Icinga 2.14 will be able to directly speak to the PowerShell daemon REST API without even fork(2) or exec(3) for a subprocess (...). In fact this...
Icinga 2.13.1 + 2.12.6 + 2.11.11: Security and Bugfix Releases
Today we're releasing the security and bugfix versions 2.13.1, 2.12.6 and 2.11.11. The main focus of these versions is a security vulnerability in the TLS certificate verification of our metrics writers ElasticsearchWriter, GelfWriter, InfluxdbWriter and...
Releasing Icinga 2.13.0
Today we're releasing our next major version of Icinga 2. Icinga 2.13 includes many long awaited enhancements and bug fixes, but also a lot of smaller changes. Units of measurement This release adds a bunch of new and improved UoMs (Units of measurement) to Icinga 2....
Our Workflow for Security Releases using GitHub Security Advisories
We recently started using GitHub Security Advisories as part of our workflow for pushing out security releases. This post will give a brief introduction on how they work, how we use them, some of their limitations, and how we overcome them. We are still experimenting...
Icinga 2.12.5 + 2.11.10: Security Releases
Today we are releasing Icinga 2.12.5 and 2.11.10, including two security fixes that may lead to privilege escalation for authenticated API users. Depending on your setup, manual intervention beyond installing the new versions may be required, so please read the...
Monitoring the Monitor: How to keep a watch on Icinga 2
The question is (probably) older than monitoring itself: Who monitors the monitor? While Icinga comes with countless options to monitor a wide range of devices and applications, at some point you will ask yourself how you can observe if Icinga itself is having errors....
Calculating a state over multiple services
These days many setups have a lot of redundancy and you may not want to send notifications during the night, just because one of multiple http servers has a problem. This blog post will show you how to setup a single service with a state combining multiple other...
Debugging Filters and Apply Rules using the Script Debugger
Have you ever been in a situation where something in your Icinga configuration did not work as expected and you ended up doing small changes and reloading Icinga over and over again? This can be especially tricky with apply rules and filters if they don't match the...
Revoke certificate of an Icinga endpoint
A Certificate Revocation List (CRL) is a list of certificates that have been revoked by the issuing Certificate Authority (CA) before their scheduled expiration date. Those certificates should no longer be trusted. A client application such as an Icinga Agent can use...
Using Thola for monitoring your network devices
This is a guest blogpost by Alexander Biehl from the Thola development team. --- Once upon a time there was a small company in the south west of Germany that used an old check plugin for monitoring its network devices. But as their network got bigger and bigger over...
Subscribe to our Newsletter
A monthly digest of the latest Icinga news, releases, articles and community topics.
