<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
h3
{mso-style-priority:9;
mso-style-link:"Heading 3 Char";
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:13.5pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
pre
{mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0cm;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";}
span.Heading3Char
{mso-style-name:"Heading 3 Char";
mso-style-priority:9;
mso-style-link:"Heading 3";
font-family:"Calibri",sans-serif;
mso-fareast-language:EN-ZA;
font-weight:bold;}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-priority:99;
mso-style-link:"HTML Preformatted";
font-family:"Courier New";
mso-fareast-language:EN-ZA;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle21
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle22
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle23
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle24
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle26
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-ZA" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Hi Paul<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Sorry for that oversight, I will double check in future.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Commenting the lines you suggested did the trick.
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Does this action compromise security?
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US">Kind regards<o:p></o:p></span></p>
<p class="MsoNormal"><span style="mso-fareast-language:EN-US"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span lang="EN-US">From:</span></b><span lang="EN-US"> Root, Paul T <Paul.Root@CenturyLink.com>
<br>
<b>Sent:</b> Friday, 19 July 2019 16:33<br>
<b>To:</b> Chris Pretorius <chrisp@lightstoneauto.co.za><br>
<b>Cc:</b> xymon@xymon.com<br>
<b>Subject:</b> RE: status of disabled alert shows Disabled by: unknown @<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span lang="EN-US">Do not EVER take a question off of the mailing list. The list is there to help. I am not, I’m just another user, sometimes I have some insight.
<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Your issue is basic authentication in HTTP and not xymon.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">So you have a user in /etc/xymon/xymonpasswd and that user is in the admin group in /etc/xymon/xymongroups?<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Look in the http log files for the accounting when you click on the ‘Apply’ button. I should look something like this:<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">10.0.63.193 - - [19/Jul/2019:09:27:47 -0500] "GET /xymon-cgi/showgraph.sh?host=apaxymdev&service=xymond&graph_width=576&graph_height=120&disp=apaxymdev&nostale&color=yellow&graph_start=1563373667&graph_end=1563546467&graph=hourly&action=view
HTTP/1.1" 200 20108<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">10.0.63.193 - - [19/Jul/2019:09:27:54 -0500] "GET /xymon-seccgi/enadis.sh HTTP/1.1" 401 381<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">10.0.63.193 - ptroot [19/Jul/2019:09:28:01 -0500] "GET /xymon-seccgi/enadis.sh HTTP/1.1" 200 69277<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">10.0.63.193 - - [19/Jul/2019:09:28:10 -0500] "GET /xymon-cgi/svcstatus.sh?HOST=apaxymdev&SERVICE=info HTTP/1.1" 200 37307<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">10.0.63.193 - ptroot [19/Jul/2019:09:28:28 -0500] "POST /xymon-seccgi/enadis.sh HTTP/1.1" 302 271<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">10.0.63.193 - - [19/Jul/2019:09:28:28 -0500] "GET /xymon-cgi/svcstatus.sh?HOST=apaxymdev&SERVICE=info HTTP/1.1" 200 38189<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">You can try commenting out the following:<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # AllowOverride None<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # Options ExecCGI Includes<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # <IfModule mod_authz_core.c><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # # Apache 2.4+<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # Require all granted<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # </IfModule><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # <IfModule !mod_authz_core.c><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # Order deny,allow<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # Allow from all<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"> # </IfModule><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span lang="EN-US">From:</span></b><span lang="EN-US"> Chris Pretorius <<a href="mailto:chrisp@lightstoneauto.co.za">chrisp@lightstoneauto.co.za</a>>
<br>
<b>Sent:</b> Friday, July 19, 2019 2:46 AM<br>
<b>To:</b> Root, Paul T <<a href="mailto:Paul.Root@CenturyLink.com">Paul.Root@CenturyLink.com</a>><br>
<b>Subject:</b> RE: status of disabled alert shows Disabled by: unknown @<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal">Hi Paul<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Thank you for your response.<o:p></o:p></p>
<p class="MsoNormal">Please find my answers to your question below.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span lang="EN-US">How are you disabling the alert?<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">I click on info, scroll down to Disable alerts, select the test, add a cause and apply.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Are you asked to login when you click on the disable or acknowledge pages?<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">No, I do have to log on when I open our xymon page.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">How is your xymon-seccgi secured in your xymon config in apache? Should be /etc/httpd/conf.d/xymon.conf<o:p></o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">httpd-2.4.6-80.el7.centos.1.x86_64<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">xymon-seccgi section from apache xymon.conf (xymon-4.3.28-1.el7.x86_64 – Terabithia repo)<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">ScriptAlias /xymon-seccgi/ "/usr/share/xymon/cgi-secure/"<o:p></o:p></p>
<p class="MsoNormal"><Directory "/usr/share/xymon/cgi-secure"><o:p></o:p></p>
<p class="MsoNormal"> AllowOverride None<o:p></o:p></p>
<p class="MsoNormal"> Options ExecCGI Includes<o:p></o:p></p>
<p class="MsoNormal"> <IfModule mod_authz_core.c><o:p></o:p></p>
<p class="MsoNormal"> # Apache 2.4+<o:p></o:p></p>
<p class="MsoNormal"> Require all granted<o:p></o:p></p>
<p class="MsoNormal"> </IfModule><o:p></o:p></p>
<p class="MsoNormal"> <IfModule !mod_authz_core.c><o:p></o:p></p>
<p class="MsoNormal"> Order deny,allow<o:p></o:p></p>
<p class="MsoNormal"> Allow from all<o:p></o:p></p>
<p class="MsoNormal"> </IfModule><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"> AuthUserFile /etc/xymon/xymonpasswd<o:p></o:p></p>
<p class="MsoNormal"> AuthGroupFile /etc/xymon/xymongroups<o:p></o:p></p>
<p class="MsoNormal"> AuthType Basic<o:p></o:p></p>
<p class="MsoNormal"> AuthName "Xymon Administration"<o:p></o:p></p>
<p class="MsoNormal"> Require valid-user<o:p></o:p></p>
<p class="MsoNormal"> Require group admins<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"></Directory><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Kind regards<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span lang="EN-US">From:</span></b><span lang="EN-US"> Root, Paul T <<a href="mailto:Paul.Root@CenturyLink.com">Paul.Root@CenturyLink.com</a>>
<br>
<b>Sent:</b> Thursday, 18 July 2019 15:36<br>
<b>To:</b> Chris Pretorius <<a href="mailto:chrisp@lightstoneauto.co.za">chrisp@lightstoneauto.co.za</a>>;
<a href="mailto:xymon@xymon.com">xymon@xymon.com</a><br>
<b>Subject:</b> RE: status of disabled alert shows Disabled by: unknown @<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span lang="EN-US">How are you disabling the alert?<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Are you asked to login when you click on the disable or acknowledge pages?<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">I know when I disable via the command line, I get unknown, but using the webpage, it always ask requires
<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">How is your xymon-seccgi secured in your xymon config in apache? Should be /etc/httpd/conf.d/xymon.conf<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span lang="EN-US">From:</span></b><span lang="EN-US"> Xymon <<a href="mailto:xymon-bounces@xymon.com">xymon-bounces@xymon.com</a>>
<b>On Behalf Of </b>Chris Pretorius<br>
<b>Sent:</b> Thursday, July 18, 2019 4:59 AM<br>
<b>To:</b> <a href="mailto:xymon@xymon.com">xymon@xymon.com</a><br>
<b>Subject:</b> [Xymon] status of disabled alert shows Disabled by: unknown @<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Good day<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">I am using the Terabithia repo for my Xymon instance.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">All is working great an so far no major issues.
<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Only problem I am struggling with is when I disable a alert the status show –<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<div align="center">
<table class="MsoNormalTable" border="0" cellspacing="5" cellpadding="0" summary="Detail Status" style="background:black">
<tbody>
<tr>
<td style="padding:.75pt .75pt .75pt .75pt">
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><b><span style="font-size:13.5pt;font-family:"Times New Roman",serif;color:white">Disabled until OK<o:p></o:p></span></b></p>
</td>
</tr>
<tr>
<td style="padding:.75pt .75pt .75pt .75pt">
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Courier New";color:white">Disabled by: unknown @ 172.33.255.1<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Courier New";color:white">Reason: investigating<o:p></o:p></span></p>
</td>
</tr>
</tbody>
</table>
</div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Where do I need to change to display the name of the authenticated user @ source ip.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Authentication is handled by apache basic authentication.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US">Kind regards<o:p></o:p></span></p>
<p class="MsoNormal" align="center" style="text-align:center"><span lang="EN-US">This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may
be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.<o:p></o:p></span></p>
<p class="MsoNormal" align="center" style="text-align:center"><span lang="EN-US">This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may
be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.<o:p></o:p></span></p>
</div>
</body>
</html>