Whenever I upgrade a NetEye Cluster with all its Satellites, it’s important that no host is forgotten, and that all packages are installed (which can happen because an upgrade error occurred, for example if one forgot to call neteye_finalize_installation). So I thought it would be handy to have a script/plugin that shows the current version…
Read MoreIn this blog, I’ll propose and describe a solution for detecting potential infostealers targeting Chromium-based browsers, taking a cue from the research exposed by Google’s Chrome Security Team (Detecting browser data theft using Windows Event Logs). Obviously a solution using Elastic 🙂 ! What is an Infostealer (in a nutshell) ? In the realm of…
Read MoreEvery so often it may happen (in particular after a cluster update or hardware issues) that you see your storage in a warning state on OpenShift. The first thing to do is to check what’s wrong with your cluster: sometimes you may have a real issue, in other cases it may just be a temporary…
Read MoreOn May 21, Veeam published details about four different vulnerabilities detected in their product Veeam Backup Enterprise Manager (VBEM). One of them is critical and allows an unauthenticated attacker to log in to the Veeam Backup Enterprise Manager web interface as any user. CVE Number CVSS Score EPSS Score CVE-2024-29849 9.8 (Critical) 0.04% (Low) CVE-2024-29850…
Read MoreGLPI logging sensitive data We fixed some bugs related to the GLPI where sensitive data were incorrectly logged during log-in and log-out procedures. Updated packages We updated the following packages:
Read MoreRPM Mirror We fixed some bugs related to the NetEye rpmmirror: Updated packages We updated the following packages: Post installation steps After installing the neteye-pulp3-mirror package you should re-run the setup of the rpmmirror ( neteye rpmmirror setup ) to make the bugfixes effective.
Read MoreRPM Mirror We fixed some bugs related to the NetEye rpmmirror: Module Audit Log We also fixed another bug in the audit log module that did not allow correct display in environments with many logs. Updated packages We updated the following packages: Post installation steps After installing the neteye-pulp3-mirror package you should re-run the setup…
Read MoreIn a previous blog post, we looked at how we sped up certain stages of the NetEye pipeline through parallelization. This boost not only lifted team spirits but, more importantly, ramped up the pace of delivering new features and bug fixes, giving everyone the motivation to keep enhancing the pipeline across different stages. In another…
Read MoreSYNLAB, European leader in medical diagnostic services, was the victim of a cyber attack last April. The compromised infrastructure is the one that runs Italians clinics only, other countries were not affected. In early May, ransomware group BlackBasta claimed responsibility for the attack, saying it had stolen 1.5TB of sensitive medical data from Italian citizens….
Read MoreWe fixed a few bugs in Tornado: Updated packages We updated the following packages:
Read MoreIn this blog post, we’ll explore the power of custom branding in NetEye reports. The reporting module offers the ability to filter specific hosts and services while also enabling the configuration of custom thresholds to visually emphasize unmet SLAs. Users have the flexibility to generate reports manually or automatically, such as on a weekly or…
Read MoreNews from Las Vegas #wewerethere A lot is going on in the Atlassian world and a lot of news was announced in the past days during Team ’24, an annual conference held in Las Vegas🎉 All the recorded sessions can be found here, …but if you want a quick summary of all the news, you’re…
Read MoreWe fixed a bug in the Logrotate configuration for GLPI that prevented the logs to be compressed and archived. Updated packages We updated the following packages:
Read MoreAs you may know, I do ntopng consulting, and support companies in their implementation of ntop solutions. For some time now, ntopng users have noticed a high amount of QUIC traffic in their respective networks. Most people don’t really know what QUIC is, which is why I’d like to take this as an opportunity to…
Read MoreWe fixed a bug in the neteye update and neteye upgrade commands that was causing the NetEye default Logstash plugins to be installed from the Internet on passive cluster nodes. In particular this was causing the commands to fail in case these nodes did not have access to rubygems.org. Updated packages We updated the following…
Read More