X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=dsa-nagios-checks%2Fdebian%2Fchangelog;h=7c5c0de4f3899aa5d96c25cd9b8af1ef35449492;hb=9a62ca8615e7294014941c6f34357bafd1210b78;hp=396c32028dfcaff922ab44c306ea92ca485aee98;hpb=a5b0d166d4f945fffdacf6b135da1c35249eb23b;p=mirror%2Fdsa-nagios.git

diff --git a/dsa-nagios-checks/debian/changelog b/dsa-nagios-checks/debian/changelog
index 396c320..7c5c0de 100644
--- a/dsa-nagios-checks/debian/changelog
+++ b/dsa-nagios-checks/debian/changelog
@@ -1,3 +1,131 @@
+dsa-nagios-checks (105) UNRELEASED; urgency=medium
+
+  * dsa-check-dnssec-delegation: Ignore revoked DNSKEYs in zone.
+
+ -- Peter Palfrader <weasel@debian.org>  Fri, 02 Jan 2015 10:53:43 +0100
+
+dsa-nagios-checks (104) unstable; urgency=medium
+
+  * Fix iptables-save cronjob.
+
+ -- Peter Palfrader <weasel@debian.org>  Sun, 07 Dec 2014 14:29:31 +0100
+
+dsa-nagios-checks (103) unstable; urgency=medium
+
+  * dsa-update-apt-status: run apt-get update in a flock wrapper.
+
+ -- Peter Palfrader <weasel@debian.org>  Sun, 07 Dec 2014 12:29:20 +0100
+
+dsa-nagios-checks (102) unstable; urgency=medium
+
+  * dsa-check-entropy: unbreak script by removing non-ASCII characters.
+
+ -- Peter Palfrader <weasel@debian.org>  Sun, 07 Dec 2014 12:04:38 +0100
+
+dsa-nagios-checks (101) unstable; urgency=low
+
+  [ Peter Palfrader ]
+  * dsa-check-zone-rrsig-expiration-many: add --debug option to pass through.
+  * dsa-check-zone-rrsig-expiration: Do not ask for RRSIG directly, instead
+    ask for SOA with dnssec data.  Apparently some nameservers do give you the
+    RRSIG on the DS record instead of a referral (rcode0's for instance).
+  * dsa-check-hpasm: Support supplying a list of things for which failures are
+    ignored.
+  * dsa-check-soas: do some queries without RD set.
+  * dsa-check-running-kernel: in cat_vmlinux(), only consider the first 5 hits
+    for the magic start sequence.  This makes running times bearable on our
+    new octeons.
+  * dsa-check-config: check if existing ed25519 host keys are in ldap.
+
+  [ Hendrik KÃ¶hler ]
+  * Extend dsa-check-entropy output so Icinga2 can process performance
+    data (e.g. used by Graphite).
+
+ -- Peter Palfrader <weasel@debian.org>  Sun, 07 Dec 2014 10:58:47 +0100
+
+dsa-nagios-checks (100) unstable; urgency=low
+
+  [ Peter Palfrader ]
+  * dsa-check-running-kernel: Check from all compression tokens.
+  * dsa-check-zone-rrsig-expiration-many: Initialize exit properly, in case
+    it does not get set later.
+  * dsa-check-running-kernel: fix kernel metapackage version regex
+
+  [ Evgeni Golov ]
+  * dsa-check-packages: go critical if there are security updates.
+
+  [ Helmut Grohne ]
+  * dsa-check-cert-expire: Make timers configurable.
+
+  [ George Kargiotakis ]
+  * dsa-check-hpacucli: Add Parity check for logical drives.
+
+  [ Stephen Gran ]
+  * dsa-check-mq-connection: Catch case when host has never connected
+
+ -- Peter Palfrader <weasel@debian.org>  Mon, 19 May 2014 12:33:55 +0200
+
+dsa-nagios-checks (99) unstable; urgency=low
+
+  * dsa-check-hpacucli: SATA drives have different transfer speed.
+  * dsa-check-edac: add.
+
+ -- Peter Palfrader <weasel@debian.org>  Mon, 31 Mar 2014 10:45:57 +0200
+
+dsa-nagios-checks (98) unstable; urgency=low
+
+  * Add dsa-check-dchroots-current.
+
+ -- Peter Palfrader <weasel@debian.org>  Fri, 28 Feb 2014 19:40:16 +0100
+
+dsa-nagios-checks (97) unstable; urgency=low
+
+  [ Stephen Gran ]
+  * Update dsa-check-mq-connection to actually work
+
+  [ Peter Palfrader ]
+  * dsa-check-backuppg: allow BASE backup filenames without the WAL ID.
+  * dsa-check-config: Update for new TLS_CACERT config.
+
+ -- Peter Palfrader <weasel@debian.org>  Mon, 27 Jan 2014 22:29:15 +0100
+
+dsa-nagios-checks (96) unstable; urgency=low
+
+  [ Peter Palfrader ]
+  * dsa-check-zone-rrsig-expiration, dsa-check-zone-rrsig-expiration-many:
+    Allow supplying the nameservers to start recursion at (per zone).
+    This is useful for reverse zones of RFC1918 space.
+  * dsa-check-bacula: exit status fix.
+  * dsa-check-hpacucli:
+    - support filtering controllers.
+    - add an option to accept no-controllers as an OK state.
+  * remove weak keys check
+  * dsa-check-dnssec-delegation
+    - handle zones with no keys that have the SEP bit.
+    - warn on all domains where parent has a non-empty DS bit that does
+      not match ours, even if we did not expect it to have one at all.
+  * dsa-check-zone-rrsig-expiration-many:
+    - expect dnssec by default now.
+  * dsa-check-zone-rrsig-expiration:
+    - in the OK message, clarify we only check sigs at the zone apex.
+  * dsa-check-dnssec-delegation:
+    - accept any ds/dnskey combination whose intersection is not empty.
+      (previously we required them to match exactly.)
+
+  [ Stephen Gran ]
+  * dsa-check-mq-connection:
+    Check that all messages have been consumed and that there is an active
+    consumer.
+  * kill some lintian warnings
+
+ -- Peter Palfrader <weasel@debian.org>  Tue, 23 Apr 2013 20:12:09 +0200
+
+dsa-nagios-checks (95) unstable; urgency=low
+
+  * dsa-check-running-kernel: Try to fix zcat kernel case.
+
+ -- Peter Palfrader <weasel@debian.org>  Tue, 16 Apr 2013 17:40:49 +0200
+
 dsa-nagios-checks (94) unstable; urgency=low
 
   [ Stephen Gran ]