Netsweeper 8.1.3 EA is now available for early adopters that have already migrated to the EL8 based Netsweeper installation. Netsweeper 8 will only be available on EL8 and customers are expected to migrate to the EL8 base in the 7.2 release before planning the upgrade to Netsweeper 8 or above. All customers who want the features and improvements in the 8.1.3 should upgrade their test environments and start providing feedback as we move forward with the amazing Netsweeper 8.1 release!
If you have any questions or concerns about planning an upgrade to this release, please contact Netsweeper Technical Support(support@netsweeper.com).
New Features
New WebAdmin Functionality
-
Services window now one window displaying status of local and remote servers
-
WebAdmin Log File Viewer/Reporter has the same popups for screenshots as Reporter
-
WAgent has new -k argument allowing it to connect to a remote host with an insecure certificate
-
WebAdmin can use the X-Forwarded-For header rather than the REMOTE_ADDR for use when sitting behind a load balancer. This option must be enabled in the WebAdmin Configuration
-
WebAdmin Lockout can be locked per browser instead of source IP, new 'Maximum Login Cookies per IP' has been added
-
The Accounts window has Status and WebAdmin Lockout information. This allows administrator to view and manaage the WebAdmin Locksouts that may have occurred on their system.
Security
-
More audit fields have been added to the WebAdmin allows users to see the Date Created, Modified and who did the last change for most WebAdmin functionality. This allows for quick in product auditing without looking at the WebAdmin Log
-
WebAdmin Lockout can be set per cookie instead of per source IP
-
WebAdmin Lockout 'Captcha' support added that will force the user to do a captcha challenege rather then completely blocking their ability to Login.
-
Account Lockout SysOp permission added which grants system access to the Lockout functionality in the Accounts page
NSProxy
-
Support added for ECC based certificates for improvement in performance as opposed to RSA certs
-
The NSProxy SSL locks for libressl have been fixed when used on MacOS
APIs
-
A new API: account_lockout_reset has been added that resets a locked out Account.
See also:
Downloads
To download the latest release, please use the following link:
https://repo.netsweeper.com/netsweeper-el8-x86_64-8.1.3-1.iso(md5)(sha256)
Change Log 8.1.3
Issue Type |
Ticket |
Summary |
---|---|---|
Improvement |
NS-109 |
The Services window is now one window displaying a list of local and remote servers and the status for each service. The Service ‘Name’ displays a list of Services for that Host and status of the available Services. |
Improvement |
NS-121 |
Groups, Clients, Policies, Reports, Agents, Client Filters, and all tables of data now include general audit fields: Date Created, Date Modified, Created By, and Modified By. |
Improvement |
NS-151 |
A new API: account_lockout_reset has been added that resets a locked out Account. A new Reset Account Lockout SysOp permission has been added. |
Improvement |
NS-162 |
The WebAdmin Log File Viewer/Reporter now has the same CSS popups for Screenshots as the Reporter. |
New Feature |
NS-184 |
The WebAdmin can now use a HTTP header rather than the REMOTE_ADDR for use when sitting behind a load balancer. |
New Feature |
NS-185 |
WebAdmin Lockout can now be set per cookie instead of per source IP. A new WebAdmin Setting: 'Maximum Login Cookies per IP' has been added. The Account window now has Status and Lockout information. |
New Feature |
NS-186 |
WebAdmin Lockout 'Captcha' support has been added. Instead of a Lockout based on a Cookie or the Clients IP Address, the 'Enable CAPTCHA when Login Lockout' WebAdmin Setting has been added which forces the user to perform a CAPTCHA. |
Improvement |
NS-209 |
NSProxy did not load cached forged certificates from 7.2.6 to 8.1.2. |
Improvement |
NS-210 |
Advanced Filtering on some table columns did not work in the 8.1.2 build. |
Improvement |
NS-211 |
Security: When editing, moving, copying and deleting List entries, the user is now notified if they have permission when performing the action instead of being informed in the interface. |
Improvement |
NS-216 |
Support has been added for ECC based certificates to the NSProxy for possible improvement in performance as opposed to RSA certs. |
Improvement |
NS-220 |
When the nsef-linux inprogress_mark is enabled and a DROP is triggered, the mirror mode deployments or all deployments now generate a policy event so new RST packets are generated. |
Bug |
NS-221 |
List Permissions for 'All SysOps' does not work properly when the SysOp has the 'View Managed SysOp Lists' or the 'View Organizational Lists' permissions. |
Bug |
NS-223 |
The 'Back' button for the Reporter WebAdmin Authentication permission errors would redirect to the Reporter and not the WebAdmin. |
Bug |
NS-224 |
The Client Filter Brand owner was not set when creating a new Brand. |
Bug |
NS-228 |
The Requests Log window did not display the First Name, Last Name, Email, or screenshot in 8.1.2. The log files have the information. |
Bug |
NS-229 |
The Authenticated Redirect > Move to Group tab did not save if not saved in 'Redirect From Group' tab first. |
Improvement |
NS-232 |
WAgent has a new -k argument allowing it to connect to a remote host with an insecure certificate when https:// is used for the WebAdmin URL or the 'What is my filtered IP' or other connections the WAgent makes. |
Improvement |
NS-238 |
The NSProxy SSL locks for libressl have been fixed. |
Bug |
NS-239 |
The Reporter now checks if 'Allow Reporter to email Report data' is enabled when sending emails. |
Improvement |
NS-249 |
Security issues when checking the return value of the file system function calls have been fixed. |
Improvement |
NS-250 |
WebAdmin 'SQL injection' security issues have been fixed. |
Bug |
NS-253 |
The client_move_ip and move_ip APIs caused an SQL error. |