In our main 'regular' server environment we have a web server that holds the newest XymonPS client for successful self-upgrading on slow scan. However, in our restrictive PCI environment, the Windows servers are not permitted to access the outside web folder or even other servers in the environment excepting WSUS, antivirus, etc on specific ports. They do send and receive files on port 1984 to Xymon server.
2019-02-05 14:11:23 Main and optional tests finished. 2019-02-05 14:11:23 Sending to server 2019-02-05 14:11:23 Using UTF8 encoding 2019-02-05 14:11:23 Connecting to host 192.168.47.233 2019-02-05 14:11:23 Sent 69413 bytes to server 2019-02-05 14:11:23 Received 107 bytes from server
I have tried to use the bb: pseudo-URL to access the download folder on the Xymon (3.28) Linux server. World Read permissions have been verified. From the client logs, it appears to find the file and initiates a download, but the new file has zero bytes. The upgrade process continues to restart the service, but obviously hangs as there is now no script file. I have tried both ASCII and UTF8 encoding.
2019-02-05 14:11:23 Found a command: clientversion:2.35:bb://usr/local/xymon/server/download .. 2019-02-05 14:11:23 Executing XymonCheckUpdate 2019-02-05 14:11:24 Running version 2.28; config version 2.35; attempting upgrade 2019-02-05 14:11:24 XymonDownloadFromServer - Downloading usr/local/xymon/server/download/xymonclient_2.35.ps1 to C:\Utils\xymonclient_2.35.ps1 2019-02-05 14:11:24 Using UTF8 encoding 2019-02-05 14:11:24 Connecting to host 192.168.47.233 2019-02-05 14:11:24 Sent 62 bytes to server 2019-02-05 14:11:24 Wrote 0 bytes from server to C:\Utils\xymonclient_2.35.ps1 2019-02-05 14:11:24 Launching update 2019-02-05 14:11:24 Upgrading C:\Utils\xymonclient.ps1 to C:\Utils\xymonclient_2.35.ps1 2019-02-05 14:11:24 Restarting service...
The error message on the XymonD process indicates that the file was not found.
Latest error messages: Download file usr/local/xymon/server/xymonclient_2.35.ps1 not found
Anybody have ideas about where the fault lies? Using file share or https is beyond where InfoSec wants to go. We currently manually copy in new clients to each PCI server, I'd like to have self-upgrading working.
Tim Williams Virginia Commonwealth University Computer Center