How can we help?

Netsweeper 7.2.2 EA

Follow

Netsweeper 7.2.2 EA is now available for early adopters. We have been very active working on our Active-Active WebAdmin project, changing the architecture of our system to allow multiple active WebAdmin systems to work together to provide greater performance, scaling, and improved redundancy. The 7.2.2 release is the first release customers will be able to setup an Active-Active WebAdmin and start using in a production environment as some key elements were missing from the 7.2.1 EA build.

This release is available on both EL6 and EL8. The 7.2 release will continue to port the product to EL8. Over the course of the 7.2 release cycle, we will be finalizing the EL8 release. Moving forward to Netsweeper 8.x releases, we will no longer be releasing new features for the EL6 builds. Netsweeper will continue to provide security fixes to the EL6 builds but will not provide new features to the EL6 based release. Customers are expected to plan a migration to EL8 between now and 2023 if they desire the new features we are introducing.

Netsweeper 7.2.2 New Features

Security

Improved security of the Netsweeper installed product for the EL8 installation has been added. We have locked down and added improved security features for the EL8 based Netsweeper installation.

Certificate Management

Remote server CA certificate management and remoteadmin server certificate verification on SSL connections has been added for SSL/TLS Support

Security Labels

Security Labels have been updated to work with Active-Active WebAdmin 'Security Labels' interface has been added to associate a host server with the database.


Can associate multiple servers with a single WebAdmin database. Previously the WebAdmin could only be active on a single host or system at a time. Support for active-active WebAdmin hosts serving content from the same database.

Up2Date Service

Up2Date Files page removed as the new Up2Date service no longer copies specific files or directories but generates files for all WebAdmin servers Logs the module that we are running, possibly the time taken to run the module for logging purposes. Logs modules that are running to show progress.

Translations now publish with Up2Date

TLS/SSL

Reporters and DirSync now supports TLS/SSL connectivity to the database

APIs

list_entry_add_bulk and list_entry_delete_bulk APIs added that allow you to add and delete multiple URLs and Keywords

 

24252 SECURITY Improved security of the Netsweeper installed product for the EL8 installation has been added. We have locked down and added improved security features for the EL8 based Netsweeper installation.
24775 FEATURE Reporters now supports TLS/SSL connectivity to the database.
24789 FEATURE A new 'list_entry_add_bulk' API has been added that allows you to add multiple URLs to an existing List.
24828 FEATURE DirSync now supports TLS/SSL connectivity to the database.
24834 FEATURE There is a new list_entry_delete_bulk API that deletes multiple URL and Keyword IDs from all Lists.
24842 FEATURE nsup2d now logs the module that we are running, possibly the time taken to run the module for logging purposes.
24844 FEATURE Remote server CA certificate management and remoteadmin server certificate verification on SSL connections has been added for SSL/TLS Support in the WebAdmin.
24847 FEATURE Security Labels have been updated to work with ActiveActive WebAdmin. A new 'Security Labels' interface has been added to the Administration menu in the WebAdmin. Security Labels are used to associate a host server with the database. In Netsweeper 7.2.2 and above you can now associate multiple servers with a single WebAdmin database. In prior releases the WebAdmin could only be active on a single host or system at a time. In 7.2.2 and above Netsweeper now supports active-active WebAdmin hosts serving content from the same database.
24851 BUG WebAdmin API Test was not updating the configuration to run host or login.
24867 UPDATE The Up2Date Files page has been removed from the WebAdmin as the new Up2Date Service no longer copies specific files or directories but generates files for all WebAdmin servers.
24869 BUG Reset Deny Pages did not work due to a PHP error.
24872 FEATURE Up2Date now logs modules that are running to show progress.
24873 SECURITY The gssproxy service is now disabled on install.
24874 BUG NSUp2Date memory leaks have been fixed.
24875 BUG An 'Email Sent' message did not display when the 'Send Email' button was clicked for a Report.
24876 BUG The Group, Policy, and List Deny Pages did not load the default Deny Page.
24878 BUG The 'list_entry_add' API did not display an error message when an invalid list name was specified.
24883 BUG EL8 Upgrade from the 7.1.8 release to the 7.2.0 release based on EL8 did not include all packages required for upgrades. Upgrading from 7.1.8 to 7.2.1 or above includes all package requirements.
24885 BUG System upgrade from 7.1.8 through WebAdmin did not work because the newer nsupgrade expected a different list of arguments.
24886 BUG The Web Upgrade process should display errors for services that are not configured to run during the stopping filtering services process. We do not display errors for servers that should not run.
24889 FEATURE Translations now publish with Up2Date.
24894 SECURITY Reflected Cross-Site scripting issues have been fixed on the Account Signup page.
24895 SECURITY The Password Recovery email could use the wrong host. A new setting, 'WebAdmin Host Name for Email Links' has been added to the 'Signup/Password Recovery'' section of WebAdmin Settings. It is used for recovery email links.
24896 SECURITY Time-Bases SQL injections issues have been fixed.
24897 SECURITY Unsecured remote Reporter scripts have been removed.
24900 BUG The Directory Sync service on EL8 did not properly upgrade from 7.1.8 to 7.2.1 or any release. This issue has been fixed in the 7.2.2 release and EL8 Directory Service upgrades now work properly.
24903 BUG When creating a Profile in the Profile Manager, an error message did not display on submit when the 'Profile Name' was left blank.
24907 SECURITY Outdated versions of jquery and jquery-ui libraries have been removed.
24908 SECURITY Vulnerable versions of the 'TinyMCE' libraries have been removed and replaced with the latest version.
24913 BUG Cloning a Group, in some cases, could cause a database error when the Group had multiple Manager Accounts.
24914 BUG Cloning a Group, in some cases, could cause a database error when the Group had an additional Policy with no time Policy Event.
24915 BUG A database error could occur when trying to save DirSync Setting when nothing was changed.
24917 BUG There was an issue with the DirSync Search Base where Groups and Clients were not synced into the WebAdmin successfully due to a NullPointerException.
24933 SECURITY All column names used for table sorting and simple filtering in SQL queries, to prevent SQL injection, are now escaped properly.
24935 SECURITY The check for the valid permission name to prevent SQL injection has been added.
24938 SECURITY The insecurerenegotiation has been disabled by default. The request_ssl_no_renegotiation option has been added.
24941 FEATURE Basic AIDE configuration for Netsweeper on install has been added for the Netsweeper 7.2.2 and future releases.
24947 BUG There was an error when logging into the WebAdmin using SAML Authentication.
24948 FEATURE There is now the ability to leave userPrincipalName or "mail" or "username" as is without stripping the @domain. Customers who wish to Strip the domain from the username can now add an append string of only '@' which will remove the domain from the username.
24962 BUG There was an error when importing Catalogue content in the Translations window.
24963 BUG Upgrade would fail because of empty settings in the nsup2d_settings file.
24968 BUG The nsup2d service is now enabled if the WebAdmin and mySQL are enabled on the host during upgrade.
24972 BUG Columns in the 'Request Logs' page were not being saved.
24977 BUG The nMonitor now always logs the 'User' even if the user has no username.
24981 BUG The ns_configure_mysql-server package was not automatically installed when upgrading from 7.1.8 to 7.2.1. This package will now be installed when upgrading to 7.2.2.
24983 BUG The WEBADMIN_SERVER_IP did not save to the database properly on upgrade.
24988 BUG When adding Filter Bypass List entries, auth posts, and other Deny Pages, it was possible to add only the scheme when corrupt URL entries where configured. Filter Bypass List entry validation has been improved.
24990 BUG When editing and re-generating a Report, the status message now shows 'Waiting to be Processed'.
24996 BUG The Policy Service failed to start due to the loading of the HTTPS Deny Page.

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request