OpenNMS is now a CNA!

The security team at The OpenNMS Group has partnered with MITRE to become a Common Vulnerability and Exposures (CVE) Numbering Authority (CNA). Through the CVE program, MITRE ensures that application vulnerabilities are uniquely identified and accurately reported. As a numbering authority, The OpenNMS Group security team will assign numbers to vulnerabilities and exposures identified within our [...]

By |2022-08-30T13:32:13+00:00August 30th, 2022|

International Girls in ICT Day 2022: Access and Safety

We invited OpenNMS employees to share their own experiences in ICT as women, non-binary, those identifying as female, or allies. Read their stories. International Girls in ICT Day celebrates the importance of girls and women in the information and communications technology sector. Since 2001, the International Telecommunication Union (ITU), a United Nations agency, has sponsored [...]

By |2022-04-28T19:06:50+00:00April 28th, 2022|

OpenNMS + SpringShell CVE-2022-22965

OpenNMS and the Spring Core Remote Code Execution Vulnerability (SpringShell) CVE-2022-22965A serious remote code execution (RCE) vulnerability exists in some versions of the Spring Framework, which is used by OpenNMS Meridian and Horizon. OpenNMS Meridian and Horizon are not known to be vulnerable because the published exploit for this RCE requires: All Attributes Required for [...]

By |2022-04-04T12:15:11+00:00April 1st, 2022|

OpenNMS Products Affected by Apache Log4j Vulnerability CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105 (updated Dec. 20, 2021)

Serious remote code execution (RCE) and denial of service (DOS) vulnerabilities in Apache Log4j could affect customers running some OpenNMS products. These vulnerabilities could allow an attacker to shut down or compromise your system by causing OpenNMS to log specially crafted messages into system log files for malicious purposes. Apache Log4j could interpret one of those [...]

By |2021-12-20T21:00:33+00:00December 10th, 2021|

OpenNMS joins Hacktoberfest 2021

There will be just one Hacktoberfest 2021 and it is coming soon! The OpenNMS community will participate and we are looking for contributors who want to join us in October. Hacktoberfest is an annual, month-long celebration of open source software driven by Digital Ocean. During this event everyone can support open source by contributing changes, [...]

By |2021-09-23T19:16:54+00:00September 23rd, 2021|

How to: Contribute to OpenNMS

Submitting issues, fixing bugs, contributing features, enhancements, and extensions, writing documentation, or reporting security issues are all valuable ways that our community helps make OpenNMS a better monitoring platform. OpenNMS uses Jira to manage issue tracking and development. Once you have a Jira account and have signed the OpenNMS Contribution Agreement (OCA), you can start [...]

By |2021-09-02T18:51:35+00:00September 2nd, 2021|

How to: Store data with foreign sources

If you use Provisiond to populate all or part of your node database, you may want to define how data is stored so that it remains in the same directory even if a nodeID changes. Mark Mahacek, Senior Application Support Engineer at The OpenNMS Group, shares how to do this in Storing data with foreign sources [...]

By |2021-08-05T20:59:18+00:00August 5th, 2021|

How to: Troubleshoot Minion Connectivity and Functions

The OpenNMS Minion includes useful, built-in commands to verify configuration and debug access to management agents. In this Discourse article, Ronny Trommer, Community/Product Manager at The OpenNMS Group, shows how to test connectivity with the Minion, perform a health check, execute a remote ping to arbitrary FQDNs or IP addresses, execute remote DNS lookups, run SNMP [...]

By |2021-07-19T18:07:46+00:00July 22nd, 2021|

New docs: Where to find them, why they’re better, and how to contribute

If you look at the OpenNMS documentation, you’ll notice a change. Yes, it has a more polished appearance thanks to our new corporate branding, but it also has improved content and functionality as a result of our recent migration from AsciiDoctor to Antora for building the documentation. Migrating the documentation was a huge undertaking (we’ll discuss [...]

By |2021-06-10T20:18:04+00:00June 10th, 2021|
Go to Top