Join us in making Cacti better, submit issues, fork and submit pull requests! The Cacti Group Release of Cacti 0.8.8f We the Cacti Group are proud to release the following: Cacti 0.8.8f Spine 0.8.8f Cacti 0.8.8f Change Log bug:0002599: 0.8.8e Poller Script Parser is Broken bug:0002600: cli/upgrade_is missing releases bug:0002603: Graph managment save button does not work bug:0002599: Poller Script Parser is Broken Reporting Bugs Cacti Spine f=21&t=54874 — Release of Cacti 0.8.8e We the Cacti Group are proud to release the following and respectfully ask forgiveness for the disaster release 0.8.8d was...
Cacti 1.0.0 Change Log feature: Support for remote data collectors feature: Support Internationalization (i18n) for the main Cacti site, and supported plugins feature: Data Source Profiles replace RRA settings allowing a single system to have multiple polling intervals feature: Redesigned Tree page including Drag & Drop functionality feature: New Graph Permissions system designed to make permissions simple to manage feature: Add Themes ' Classic', ' Modern', ' Dark', and ' Paw' feature: Debug Data Sources by comparing them to the Data Template feature: New special Data Source type to detect the poller interval feature: Bulk inserts in PHP poller to address latency issues feature: Optimize data collection through in memory caching giving a 50% reduction in polling times when dealing with large sites feature: Support RRDtool VDEFs feature: Support new Graph Items: AREA: STACK, GPRINT: AVERAGE, GPRINT: LAST, GPRINT: MAX, GPRINT: MIN, LINE: STACK, TEXTALIGN, TICK feature: Support RRDtool features: Right Axis Support, Dynamic Labels, Tab Width, Legend Position, Legend Direction feature; Resizeable table columns feature: Deprecated Single Pane Tree View feature: Role Based Access Control (RBAC) feature: Support User Group Permissions feature: Show number of in use Graphs, Data Sources, and Devices for a given Template feature: Support bulk re-sync of graphs to assigned Graph Template feature: Bulk Device Settings changes feature: CDEFs, Colors, GPrint Presets consolidated to Presets menu feature: Authentication cookies for 'remember me' functionality feature: Automatic logout after session inactivity feature: Replace Boost server in favor of RRDtool Proxy feature: Graph Details include CSV output, zoom, debug, and download links feature: Graph Export moved to a plugin feature: User change password functionality feature: Automation added to core functionality through the merge of the Discovery and Auto M8 plugins feature: Change interface graphs from 32 bit to 64 bit with ease feature: Plugins now have hooks in device templates and automation feature: Allow users to preview template imports to determine if there will be issues from importing feature: Automatic removal of orphaned graph items when importing newer versions of graph templates feature: Support for My SQL 5.7 feature: Support for PHP 7.0 feature: Merge Aggregate Plugin - Aggregate graph creation feature: Merge Auto M8 Plugin - Automation of graph creation feature: Merge Boost Plugin - Faster polling, result caching, on-demand RRDtool file updates feature: Merge CLog Plugin - View Cacti logs feature: Merge Discovery Plugin - Device discovery feature: Merge Domains Plugin - Support for domain (ADS/LDAP) specific user templates feature: Merge DSStats Plugin - Cache Data Source values for easy retrieval feature: Merge Logrotate Plugin - Rotate Cacti logs feature: Merge Realtime Plugin - Realtime graph viewing feature: Merge Reporting (Nectar) Plugin - Reporting feature: Merge RRDclean Plugin - RRD file cleanup and management feature: Merge Secpass Plugin - User password policy enforcement feature: Merge Settings Plugin - Shared settings for plugins feature: Merge SNMP Agent Plugin - SNMP Agent for Cacti providing system statistics feature: Merge Spike Kill Plugin - Remove unwanted spikes from graphs feature: Merge SSL Plugin - Force https feature: Merge Super Links Plugin - Add external links within Cacti feature: Merge UGroup Plugin - User groups with permissions feature: Merge Watermark Plugin - Watermark your Cacti graphs bug: Fixed issue where old graph templates (0.8.6-), could import bogus data causing issues with Data Input Methods bug#0000168: Duplicate data sources should be avoided when creating new graphs bug#0000851: Review an imported template bug#0001155: When viewing graph tree do not show empty nodes bug#0001337: Form to filter for graphs in host view mode bug#0001552: Date ranges not shown on graphs in the view with Daily, Weekly, Monthly & Yearly graphs bug#0001573: RRA templates/grouping bug#0001577: Override session handling and store session in Database bug#0001790: Allow for XML delimiter in fields of a script query bug#0001820: Unable to use a Data Input Method Output Field in more than one Data Source Item bug#0001827: Changing the graph template messes up the graph item fields bug#0001836: Add mysql error message to log bug#0001877: Cookies path is not properly set bug#0001966: Expand Devices in tree view not honored bug#0001970: Data query index order cache should be populated on re-index bug#0001981: Cacti is not full UTF-8 bug#0001986: CLI allow add_to have multiples --snmp-field and --snmp-value options bug#0001996: Allow using data input field in graph title bug#0002096: Enumerated SNMP values not parsed correctly bug#0002112: CLI add configurable parameters for device_bug#0002133: Restrict User to only manage specific device(s) bug#0002135: Regular expression support for filter bug#0002137: Data query oid_suffix parameter does not function bug#0002159: Database creation file not fully compliant with strict SQL mode bug#0002162: Unable to authenticate user with password containing UTF-8 bug#0002196: Incorrect script server instance number in log bug#0002225: Make -Cc SNMP option configurable bug#0002255: Script query_unix_should only query local mounts bug#0002336: Implement php-snmp class library bug#0002340: Data query script execution should be escaped bug#0002350: SNMP Data Query index_order ignored bug#0002351: Ping does not work with non-English locale bug#0002361: Spine does not log unknowns the same way bug#0002362: Poller makes wrong hex-string to decimal conversion bug#0002370: Cacti prints wrong date formats, does not honor a systems locale bug#0002403: Typo in DELETE statement leading to poor graphing performance bug#0002412: Graph Template duplication causes to be converted to TAB char bug#0002418: Data Source Items named 'ds' break UI ability to add more items bug#0002419: SNMP enum results not parsed correctly by poller bug#0002452: CVE-2014-4000 PHP Object Injection Vulnerabilities bug#0002454: OS Command Injection bug#0002468: Changing graph format to anything but PNG causes no output bug#0002476: Add support for SNMP v3 Engine ID bug#0002483: Cisco ASA using Re-index method of verify all causes recache event every time bug#0002484: Incorrect SQL request in cli script repair_bug#0002521: Unable to create two devices via CLI with the same IP-Address bug#0002522: Zero padded hex strings are parsed incorrectly bug#0002535: Graph Template Changes not updating RRDTool command bug#0002636: Creating Data Template with "U" for min and max saves field data_input_field_id as 0 for first item bug#0002697: CVE-2016-2313 allows remote authenticated users who use web authentication to bypass intended access bug#0002698: When the host is down the wrong data type are used for some columns in the host table bug#0002723: Renaming a disabled device still attempts to connect and get SNMP host information bug#0002724: Multipage graphs the menu can disappear bug#0002725: Changing graph template does not mark correct interfaces disabled on data query generated listbug:0002656: Authentication using web authentication as a user not in the cacti database allows complete access (regression) bug:0002667: Cacti SQL Injection Vulnerability bug:0002666: When click the [Clear] button after clicking the [Refresh] button in Preview Mode , fails to CSRFcheck bug:0002673: CVE-2016-3659 - Cacti graph_SQL Injection Vulnerability bug:0002676: Outdated MIBs for non-unicast packets bug:0002677: Index is a My SQL 5.6 reserved word bug:0002681: generate_graph_def_name() generates reserved word "cf" We the Cacti Group are proud to release the following: Cacti 0.8.8g Spine 0.8.8g Git Hub! Cacti 0.8.8e Spine 0.8.8e Important Security Fixes Multiple XSS and SQL injection vulnerabilities CVE-2015-4634 - SQL injection in Cacti 0.8.8e Change Log bug: Fixed issue with graph zooming failing to work bug: Fixed various SQL Injection vectors bug#0002569: Impossible to have a URL pointing directly to a graph bug#0002574: SQL Injection Vulnerabilities in graph items and graph template items bug#0002577: CVE-2015-4634 - SQL injection in bug#0002579: SQL Injection Vulnerabilities in data sources bug#0002580: SQL Injection in bug#0002582: SQL Injection in data_bug#0002583: SQL Injection in graph_bug#0002584: SQL Injection in host_bug#0002586: Cannot delete data sources from the GUI bug#0002592: graph_- viewing host in new tab - Undefined index: nodeid bug#0002594: status_fail_date and status_rec_date are set incorrectly after host is marked down bug#0002597: Incorrect value in Hosts column on Host Templates page bug#0002598: Incorrect row number in Devices -We the Cacti Group are proud to release the following: Cacti 0.8.8d Spine 0.8.8d Important Security Fixes Multiple XSS and SQL injection vulerabilities Cacti 0.8.8d Change Log bug: Fixed SQL injection VN: JVN#78187936 / TN: JPCERT#98968540 bug#0002261: PHP 5.4.0 added new error_reporting variable, causing cacti to show errors bug#0002391: Odd Behaviour on Re Index of Data Query Data bug#0002393: Broken thumbnail images for graph templates bug#0002402: Subtree must not have the same header as the parent header bug#0002474: CLI add_dows not set availability_method correctly bug#0002449: The Save button does not work: Invalid html on page Console - Cacti Settings: empty form tag bug#0002428: Fail to delete all data input items when removing more than 1000 data sources bug#0002439: Password with special character don't work with LDAP authentication bug#0002461: invalid bn with ldap and anonymous bind bug#0002465: Graph Export return empty CSV file bug#0002484: Incorrect SQL request in cli script repair_bug#0002485: Broken pagenation on graph viewing bug#0002489: SNMP - Get Mounted Partitions using Re-index method of Index Count Changed causes recache event every time bug#0002490: Can not select page for multiple datasources per device bug#0002494: CSV export always shows last day bug#0002504: Data template search not functional bug#0002542: [FG-VD-15-017] Cacti Cross-Site Scripting Vulnerability Notification bug#0002543: Unable to switch pages within graphs_due to invalid URL generation bug#0002544: Duplicate entry in $nav_url during list view bug#0002571: SQL Injection and Location header injection from cdef id CVE-2015-4342 bug#0002572: SQL injection in graph templates Reporting Bugs Cacti Spine f=4&t=53725 — On Friday December 16th 2011 we were informed by a very nice person that they where able to retrieve the users table for the Cacti forums. f=21&t=45953 — Note with this release we are no longer making people patch Cacti to use the Plugin Architecture.
1 nginx nginx 141640 Oct 13 localhost_load_1min_5-rw-r--r--. 1 root root 24 Oct 12 include -[[email protected] ~]$ sudo cat /var/log/audit/| grep denied type=AVC msg=audit(1381785901.2729): avc: denied for pid=22067 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381786201.3742): avc: denied for pid=22087 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381786501.3749): avc: denied for pid=22114 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381786801.4762): avc: denied for pid=22134 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381787101.4769): avc: denied for pid=22151 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381787401.4782): avc: denied for pid=22171 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381787701.5789): avc: denied for pid=22188 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file type=AVC msg=audit(1381788001.5800): avc: denied for pid=22208 comm="postdrop" path="/var/spool/postfix/public/pickup" dev=dm-0 ino=2224026 scontext=system_u:system_r:postfix_postdrop_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:postfix_public_t:s0 tclass=sock_file My update explains part of the issue.
I successfully graphed CPU/Interface traffic, but got blank graphs like when it comes to Memory/Temperature monitoring.
Observium is an auto-discovering network monitoring platform supporting a wide range of hardware platforms and operating systems including Cisco, Windows, Linux, HP, Juniper, Dell, Free BSD, F5, Brocade, Citrix Netscaler, Net App and many more.
Observium seeks to provide a powerful yet simple and intuitive interface to the health and status of your network.



By default (in Centos 7) the file/directory is also created with the apache group being the group owner so a 777 chmod would be the only chance to allow another users ( cacti polling user ) to write to this file/directory.
Spine has to be implemented seperately, it does not come with cacti by default.
Now, clear (or rename it to get a fresh start)Then, change Settings, Poller Logging Level to DEBUG for _one_ polling cycle.
and somehow I've gotten one datapoint on the graph, but I've not been able to even manually update the graphs anymore. 1 nginx nginx 47992 Oct 13 localhost_mem_swap_4-rw-r--r--. But I don't see any graphs...perhaps there is something else where permissions are wrong.
There doesn't seem to be anything helpful in the (which is only updated when running manually). I hadn't looked at the permissions of the actual rra folder, only it's symlink. Permissions of relevant rra files: /var/lib/cacti/rra $ lll /usr/share/nginx/html/cacti/rra/ total 340 drwxr-xr-x. 1 nginx nginx 47992 Oct 13 localhost_proc_7-rw-r--r--.