[Pkg-nagios-devel] Bug#745272: Bug#745272: Exploited by botnet
Alexander Wirt
formorer at debian.org
Wed Apr 30 18:15:07 UTC 2014
On Wed, 30 Apr 2014, Jan Lühr wrote:
> Hello,
>
> there some reports, that these issue is exploited by a bonnet.
> Please consider pushing security updates.
As said this is considered a feature by upstream. And to be honest, people
that are so stupid to allow dont_blame_nrpe + allowed_hosts=0.0.0.0/0
deserved a heise news entry.
I won't have time in the next days to write a patch for this. And if I would
do such a patch it will remove dont_blame_nrpe at all for all time.
So if you are interested in getting this nonsense working, feel free to
provide a patch.
Alex
More information about the Pkg-nagios-devel
mailing list