Percona is glad to announce the release of Percona Monitoring Plugins 1.1.3.
* Introduced more secure location of PHP script configs to harden a Cacti setup
* Addressed CVE-2014-2569
We have introduced a more secure location /etc/cacti/ for PHP script configs. Earlier, the only way was to keep .php.cnf configs inside of scripts/ folder which falls under the web directory of Cacti setup, thus provides a potential security vulnerability. We strongly recommend to move all .php.cnf files from /usr/share/cacti/scripts/ to /etc/cacti/ and also harden your Cacti setup.
A new tarball is available[Read more...]