Hi all! I'm getting hit by my secuity team for a vulnerability for the
Jenkins CLI via ssh allowing the following weak ciphers:
hmac-md5
hmac-md5-96
hmac-sha1-96
Is there a way to configure ciphers accepted for the Jenkins CLI?
Thanks,
Eric
--
You received this message because you are
ava.security (the path will vary based on your Java
> version)
>
> El lunes, 24 de agosto de 2020 a las 16:48:22 UTC+2, eric@gmail.com
> escribió:
>
>> Hi all! I'm getting hit by my secuity team for a vulnerability for the
>> Jenkins CLI via ssh allowing th
I think I found the solution to this:
https://www.thegeekdiary.com/how-to-disable-md5-based-hmac-algorithms-for-ssh/
On Tuesday, August 25, 2020 at 1:59:49 PM UTC-6 eric@gmail.com wrote:
> I'm confused. It doesn't look like the ciphers the vulnerability is
> citing ar
Hi All,
Just got gigged by our security team for a vulnerability in Jenkins with
the version of JQuery installed. How do I go about updating the version of
JQuery Jenkins runs? Here's the specifics of the vulnerability:
Plugin Output:
URL : http://myMachine:8081/js/jquery-1.1
s://github.com/jenkinsci/jenkins/blob/master/cli/pom.xml#L77 So I
> guess both should bump the dependency to remove support for weak algorithms
>
>
> El miércoles, 26 de agosto de 2020 a las 16:06:22 UTC+2,
> eric@gmail.com escribió:
>
>> I think I found the solution to t
Hi! Last week we took 2.277.1 when patching. I didn't see any issues
until this morning when I tried to log on and got 403 No valid crumb was
included in the request. I restarted the server a few times trying to fix
it but never could get logged in. I did some research and found a thread
te
OK, so this is kind of complex so hang with me. We're moving from StarTeam
to Github and I'm trying to reproduce what I'm doing in StarTeam with
Github. StarTeam was easy because I owned the repository machine as well
as administrated the tool. With Github, we're hosted. So I'm admin on the
hing in one job instead of doing some copy-magic
> (which would horribly break once you start to use more nodes).
>
> Björn
> eric@gmail.com schrieb am Samstag, 27. März 2021 um 04:05:44 UTC+1:
>
>> Thanks Mark, I'll check it out. Has to beat the hokey workaround I
&
Thanks Mark! I believe I'm one step closer but it's still not working.
I'm now getting:
Caused by: hudson.plugins.git.GitException: Command "git fetch --tags
--progress git@myURLRepo:myUser/myProject.git
+refs/heads/*:refs/remotes/origin/*" returned status code 128: stdout:
stderr: ssh: conn
The only thing I can guess is that ssh is getting a question when he
attempts to connect wanting to be added to the known_hosts file. Wondering
if maybe there's a way to establish this if this is indeed the issue?
On Monday, March 29, 2021 at 12:07:01 PM UTC-6 eric@gmail.com
So I had a node up to run as a user other than Jenkins. It stopped working
and I have no idea why. My trouble-shooting ability has just reached its
limit. Anyone have any ideas for me to try? Here are my steps to set it
up (the RSA Key seems to be what is failing):
1. Go to Credentials
UTC-6 eric@gmail.com wrote:
> So I had a node up to run as a user other than Jenkins. It stopped
> working and I have no idea why. My trouble-shooting ability has just
> reached its limit. Anyone have any ideas for me to try? Here are my steps
> to set it up (the RSA Key se
OK, further proof that I'm fried this week. I needed to put the key in for
the jenkins user, not the user. The jenkins user public key is
in the authorized_hosts file for so that he can authenticate as
that user. This is fixed...
On Monday, April 12, 2021 at 10:36:46 AM UTC-6
OK, I think I've tried everything in this OLD conversation, but none of
them work. I have no issues checking out from a branch using branch
specifier. I've tried adding on to the specifier: ${my_branch}
tags/${my_tag}. Have also added another branch and used this sort of thing
(as well as e
rix here.
>> https://github.com/jenkinsci/jep/blob/master/jep/227/compatibility.adoc
>> For me, I think I need to try to upgrade the plugins manually...
>>
>> måndag 22 mars 2021 kl. 16:15:15 UTC+1 skrev eric@gmail.com:
>>
>>> Hi! Last week we took 2.277.1
Hi! In a nutshell, I'm cloning for builds, not doing any polling or such.
I clear my workspace then check out my repository. I'd like to do the same
but just grab a specific folder. I'm guessing this would be done in my
branch specifier. As it stands now, for this particular checkout
opera
Hi all. Getting popped by our security team for an old version of log4j.
I've checked and we don't have any of the plugins installed identified by
the following issue:
https://issues.jenkins.io/browse/JENKINS-67353
Here's the info from the scan:
Plugin Output:
Path :
/opt/je
11:15:25 AM UTC-7 eric@gmail.com
wrote:
> Hi all. Getting popped by our security team for an old version of log4j.
> I've checked and we don't have any of the plugins installed identified by
> the following issue:
>
> https://issues.jenkins.io/browse/JENKINS-67353
the controller itself...
>>
>> Some of your job(s) build(s) a software of yours that depends on a
>> vulnerable version of log4j.
>>
>>
>>
>>
>> Le jeu. 16 déc. 2021 à 19:15, eric@gmail.com a
>> écrit :
>>
>>> Hi all. Get
b (the
> modern way to do this kinda automatically is to use things like containers
> that will by definition start fresh [if some shared maven repository isn't
> mounted, don't do this]).
>
> Cheers
>
> Le jeu. 16 déc. 2021 à 23:01, eric@gmail.com a
> é
> that will by definition start fresh [if some shared maven repository isn't
> mounted, don't do this]).
>
> Cheers
>
> Le jeu. 16 déc. 2021 à 23:01, eric@gmail.com a
> écrit :
>
>> Thanks a ton, great cud to chew on! Now I think I know the culprit an
Hi! I have a node that is unable to launch. On the log it shows:
[03/18/22 09:39:01] [SSH] Copying latest remoting.jar...
java.io.IOException: Could not copy remoting.jar into
'/home/myuser/checkout' on agent at
hudson.plugins.sshslaves.SSHLauncher.copyAgentJar(SSHLauncher.java:715) at
hudso
Hmmm, I deleted the remoting.jar file and was able to restart Jenkins and
the node came up. Wonder if this is going to happen every we patch and
boot this machine?
On Friday, March 18, 2022 at 8:43:55 AM UTC-6 eric@gmail.com wrote:
> Hi! I have a node that is unable to launch. On
jenkinsci/trilead-ssh2/blob/master/src/com/trilead/ssh2/SFTPv3Client.java#L1231
>
> https://github.com/jenkinsci/ssh-slaves-plugin/blob/main/src/main/java/hudson/plugins/sshslaves/SSHLauncher.java#L706
> El viernes, 18 de marzo de 2022 a las 16:10:56 UTC+1, eric@gmail.com
> e
Hi all! I'm trying to display a few simple things from the console for our
security team. I'm getting the correct answers for all except whether the
plugin is enabled or not. They are all returning enabled for me. Can
someone tell me what I'm doing wrong in my groovy code?
Jenkins.instance.
to do the
same.
On Friday, April 15, 2022 at 10:19:10 AM UTC-6 eric@gmail.com wrote:
> Hi all! I'm trying to display a few simple things from the console for
> our security team. I'm getting the correct answers for all except whether
> the plugin is enabled or not. T
If you're in Unix, Go to $JENKINS_HOME/plugins:
ls -ltr *.hpi *.jpi
The most recently installed will be at the bottom and you'll see the date.
On Friday, April 15, 2022 at 10:59:10 AM UTC-6 jf.la...@gmail.com wrote:
> Hello,
>
> The Jenkins Plugin Manager gives us a long list of about 100 inst
e issue happen only in that agent?
> Which SSH server do you use and what version? Do you have any kind of
> transfer limit on that agent? my theory is that the sftp read operation
> fail because something cut it.
>
> El miércoles, 30 de marzo de 2022 a las 21:50:52 UTC+2, eric...
OK, I've been having some major issues with Git source code management in
Jenkins. So I have several repositories I pull from to do builds. I use
my same credentials to pull from each. If the pull succeeds, I push a tag
at it. I was noticing certain tags were failing saying it already existe
It handles checkout from multiple repositories and pushes tags to each.
The only issue is that it seems to see tags in other repositories when it
should only see the tags in the repository in question. If the tag exists
in ANY of the repositories I build for, this will be the error:
using cre
Also note that I AM using the "with credentials" from the plugin.
On Thursday, May 19, 2022 at 8:56:30 AM UTC-6 Mark Waite wrote:
> On Thursday, May 19, 2022 at 8:42:29 AM UTC-6 Eric Fetzer wrote:
>
>> OK, I've been having some major issues with Git source code management in
>> Jenkins. So I ha
Here's what I did:
yum update jenkins
Here's what's happening trying to get version info after upgrade. Also
won't start with systemctl start jenkins.
[root@nd645bd001 ~]# /bin/jenkins -version
Sep 14, 2022 10:56:24 AM executable.Main verifyJavaVersion
SEVERE: Running with Java class version 5
Hi All,
I'm running into an issue running Jenkins as a service in RHEL 8 with
SELINUX running (I don't have a choice). It seems since /var/lib/jenkins
is a symbolic link to /opt/jenkins, SELINUX doesn't want to allow running
the service from there. Would it be acceptable to just change the va
Changing the JENKINS_HOME directory in that config file didn't work. I got
the same error some it's using that link somewhere else...
Thanks,
Eric
On Monday, December 5, 2022 at 8:09:31 AM UTC-7 eric@gmail.com wrote:
> Hi All,
>
> I'm running into an issue running
t; env variables and such
> https://www.jenkins.io/doc/book/system-administration/systemd-services/
>
> On Mon, Dec 5, 2022 at 8:40 AM eric@gmail.com
> wrote:
>
>> Changing the JENKINS_HOME directory in that config file didn't work. I
>> got the sam
Requesting this conversation to be deleted because I accidentally let a
machine name in without scrubbing it. Thanks!
On Monday, December 5, 2022 at 8:54:21 AM UTC-7 eric@gmail.com wrote:
> Not sure changing the home directory is the answer. I think the true
> answer resides in
Hi! Not sure what's going on but I have a groovy script that has been
setting the variable build_status for ages but it stopped working.
Doesn't set the variable any longer. Any ideas? Here's the script:
import hudson.model.*
import jenkins.model.*
def resolver = Thread.currentThread(
>
> you mean upstreamResult/build_result?
>
> What does the println for upstreamResult say?
> Which Jenkins version are you on?
>
> BR :)
>
>
> On 9 December 2022 22:56:29 CET, "eric@gmail.com"
> wrote:
>>
>> Hi! Not sure what's g
e same groovy script would
behave differently in the 2 places.
On Monday, December 12, 2022 at 8:46:27 AM UTC-7 eric@gmail.com wrote:
> That's interesting. The println looks like it should be correct:
>
> upstream result: success
>
> Later when I try to use the variable in an
Can someone please give me some println's I can put in there to figure out
why it's not setting the build_result variable? It doesn't make any sense
to me that it works on one server but not another. Thanks!
On Monday, December 12, 2022 at 8:46:27 AM UTC-7 eric@gmail.com w
you pass the properties to ant?
>
>
> On 12 December 2022 22:16:36 CET, "eric@gmail.com"
> wrote:
>>
>> Can someone please give me some println's I can put in there to figure
>> out why it's not setting the build_result variable? It doe
Hi All! I have a project that I am unable to make changes to. I can't
even make a comment in a field then save it down. I can't even save it
down without a comment. It throws up a screen saying "Oops! A problem
occurred while processing a request." Not sure where the physical log is,
it's
Note that the project works fine to perform builds...
On Monday, December 4, 2023 at 1:40:26 PM UTC-7 eric@gmail.com wrote:
> Hi All! I have a project that I am unable to make changes to. I can't
> even make a comment in a field then save it down. I can't even save it
I've started going through the plugins that have issues and pretty quickly
ran into the "conditional buildstep" plugin. I can't disable this plugin
because I use it. Do you have any suggestions?
Thanks,
Eric
On Monday, December 4, 2023 at 1:50:41 PM UTC-7 Mark Waite wrote:
> On Monday, Decem
OK, well I have 1.4.2. That said, I have 82 updates so I'll do as you say
and update everything. Hopefully this covers it. Thanks Mark!!!
On Monday, December 4, 2023 at 2:44:29 PM UTC-7 Mark Waite wrote:
> On Monday, December 4, 2023 at 2:29:11 PM UTC-7 Eric wrote:
>
> I've started going thro
Thanks so much Mark, that fixed it!!!
On Monday, December 4, 2023 at 2:59:27 PM UTC-7 eric@gmail.com wrote:
> OK, well I have 1.4.2. That said, I have 82 updates so I'll do as you say
> and update everything. Hopefully this covers it. Thanks Mark!!!
>
> On Monday, Dece
Hi All,
Deploying a war file via Jenkins pipeline is pretty easy. That said, I'm
not finding any information about deploying an html website using Jenkins.
I have a tarball containing a website in it that needs to go to a server,
context /myWebSite. Any advise or pointers to "how to's" on th
UTC-6 eric@gmail.com wrote:
> Hi All,
>
> Deploying a war file via Jenkins pipeline is pretty easy. That said, I'm
> not finding any information about deploying an html website using Jenkins.
> I have a tarball containing a website in it that needs to go to a server,
&
48 matches
Mail list logo
