Naughty node - database error

Yesterday some client reported problems using the Shadowtrackr webinterface. After some initial patchwork the root cause was found: a faulty database node.

The transaction logs one this specific node had grown too big, and were somehow not rotated. This resulted in a full disk, and errors for all queries sent to this database node. If you ended up on this node yesterday, you might have experienced problems logging in or viewing data.

Overnight I’ve rebuild the database node an have taken measures to make sure this doesn’t happen again. I apologize for all the trouble.

Too many alerts

Recent changes in in the certificate module have resulted in ShadowTrackr tracking more information and certificates, on more ip addresses. While this is a positive thing, it has unfortunately also resulted in too many alerts for some clients, and we apologize for that. The alerts are all technically correct, but there were just too many of them to be useful. That is not how we want things, and default alert settings have changed. From now on, we’ll only send you an alert if a certificate or TLS server is downgraded. If a bad certificate has renewed, you will see it in reports and the GUI, but you will not receive an alert. Do note that alerts can be configured now, so if you still want to receive all alerts (or want to switch off the downgrade alert), that is possible too.

Certificate alerts

As announced last week, Traps will be migrated to Alerts. This week, the first step in the migration has gone live: certificate alerts. Instead of having your mailbox spammed with all certificate related alerts, you can now set your own preferences. We’ve preconfigured the important ones for you to make things easy. But you can add extra alerts for the events that are important to you.

The possible alerts are:

• New certificate found
• New certificate found, with warnings
• New certificate found, with problems
• Certificate renewed
• Certificate renewed, with warnings
• Certificate renewed, with problems
• Detected changes on TLS server
• Detected changes on TLS server, with warnings
• Detected changes on TLS server, with problems
• Certificate expired
• Certificate expires next week
• Certificate expires in two weeks
• Certificate expires in three weeks
• Certificate issuer changed
• Certificate CAA settings changed

You can also specify tags for each alert. So, if you only want to receive alerts for specific urls, add tags to those urls first and then create an alert with the same tags.