Vulnerability fixed in visualizing agents in Pandora FMS 5.1

Share via email

This morning, William Costa, one of our Opensource community members, has discovered a new vulnerability in the agents visualization of Pandora FMS 5.1 SP1, that allows the arbitrary execution of HTML/script code that is executed in the context of the user or “victim” browser. The code injection is done through the parameter “refr” in the [...]

Pandora FMS SP1 is finally here

Share via email

We are very pleased to announce the new Service Pack 1 for version 5.1 of Pandora FMS, with many new features and numerous bug fixes compared to the last release that we launched last June. You can find out everything below: *Improved planning of scheduled stops, and their exclusion in all reports of SLA. Now, [...]

Improving performance of Pandora FMS

Share via email

Introduction The main goal of this article is to highlight the bottlenecks in the execution of such a demanding resources system as Pandora FMS. In order of relevance we can remark the following: CPU Memory Disc access DB performance Configuration of the Pandora FMS Server Status of the DB of Pandora FMS Now we are [...]

Estonian delegation visits our headquarters

Share via email

This week we have the honor to receive a visit from a delegation of Estonia in our headquarters in Madrid. Estonia is a small country of around 1.3 million population, located in the east of Europe and characterized for having a great technical skills and high levels of entrepreneurship among the younger population. The reason [...]

New Cisco IPSLA Plugin

Share via email

In the early 70’s the computer networks appeared for the first time. These networks were rapidly converted into an absolute necessity for all the IT people who were troubled with the need to transfer information. In the companies, the integration of computer networks at all levels improved the general work rate, as well as the [...]

Shellshock Vulnerability (CVE-2014-6271, CVE-2014-7169)

Share via email

Some days ago, a user ask us about the new ShellShock vulnerability (affecting Bash). I give him this answer: Most interaction with Pandora on the user side is using CONSOLE, this is build on PHP and it uses bash for executing some custom scripts defined by the admin. So if the admin enter a vulnerable [...]

Pandora FMS moves to GitHub!

Share via email

After almost ten years working with conventional repository codes, first CVS and after Subversion, we have realized of the advantages and improvements of working with a system as advanced as GIT. We have been working inrelocating all the Pandora FMS code in this platform since September, and we’ve also adopted the GitFlow methodology for managing [...]

False Positives in Monitoring

Share via email

False positives (as well as false negatives) are a recurrent issue in our experience in monitoring, and after a while we are pretty sure that it’s worth talking about them. The best way to approach a problem is using an example: Suppose we use Pandora FMS to monitor a network with 500 servers, in which [...]

Graphs in Pandora FMS

Share via email

Nowadays, the best way to resolve a technical problem in our systems or devices is to solve this problems even before it happens. Here is where a proper prevention system is required. The prevention of problems in each electronic component nowadays is based upon our capabillity to monitor it,  and understand the recollected information. In [...]

How to monitor Apache Hbase

Share via email

In this brave new world of big data, a database technology called “Bigtable”, for example Apache Hbase, would seem to be worth considering — particularly if that technology is the creation of engineers at Google, a company that should know a thing or two about managing large quantities of data.  Now with Pandora FMS you can [...]