[Pkg-nagios-devel] Bug#745272: Bug#745272: Exploited by botnet

Alexander Wirt formorer at debian.org
Wed Apr 30 18:15:07 UTC 2014


On Wed, 30 Apr 2014, Jan Lühr wrote:

> Hello,
> 
> there some reports, that these issue is exploited by a bonnet.
> Please consider pushing security updates.
As said this is considered a feature by upstream. And to be honest, people
that are so stupid to allow dont_blame_nrpe + allowed_hosts=0.0.0.0/0
deserved a heise news entry.

I won't have time in the next days to write a patch for this. And if I would
do such a patch it will remove dont_blame_nrpe at all for all time.

So if you are interested in getting this nonsense working, feel free to
provide a patch.

Alex



More information about the Pkg-nagios-devel mailing list