New Relic Agent vulnerability | Brightbox Ruby Blog

New Relic Agent vulnerability 7 Dec 12

New Relic have notified us of a security problem affecting the New Relic agent (gem) prior to version 3.5.3.

The New Relic security advisory warns that the New Relic gem was transmitting database login details to New Relic, where they were not stored, but potentially could have been intercepted.

The risk to Brightbox customers who use New Relic is low, as Brightbox shared and dedicated MySQL clusters are not exposed to access from the Internet. Nevertheless, customers who are using New Relic should still upgrade to the latest version of the New Relic gem as soon as convenient.

George Hills

Recent Posts

New Relic Agent vulnerability 7 Dec 12

Recent blog posts

Join our email list

Flickr (more...)

RSS feeds