Netsweeper 7.2.2 EA is now available for early adopters. We have been very active working on our Active-Active WebAdmin project, changing the architecture of our system to allow multiple active WebAdmin systems to work together to provide greater performance, scaling, and improved redundancy. The 7.2.2 release is the first release customers will be able to setup an Active-Active WebAdmin and start using in a production environment as some key elements were missing from the 7.2.1 EA build.
This release is available on both EL6 and EL8. The 7.2 release will continue to port the product to EL8. Over the course of the 7.2 release cycle, we will be finalizing the EL8 release. Moving forward to Netsweeper 8.x releases, we will no longer be releasing new features for the EL6 builds. Netsweeper will continue to provide security fixes to the EL6 builds but will not provide new features to the EL6 based release. Customers are expected to plan a migration to EL8 between now and 2023 if they desire the new features we are introducing.
Netsweeper 7.2.2 New Features
Security
Improved security of the Netsweeper installed product for the EL8 installation has been added. We have locked down and added improved security features for the EL8 based Netsweeper installation.
Certificate Management
Remote server CA certificate management and remoteadmin server certificate verification on SSL connections has been added for SSL/TLS Support
Security Labels
Security Labels have been updated to work with Active-Active WebAdmin 'Security Labels' interface has been added to associate a host server with the database.
Can associate multiple servers with a single WebAdmin database. Previously the WebAdmin could only be active on a single host or system at a time. Support for active-active WebAdmin hosts serving content from the same database.
Up2Date Service
Up2Date Files page removed as the new Up2Date service no longer copies specific files or directories but generates files for all WebAdmin servers Logs the module that we are running, possibly the time taken to run the module for logging purposes. Logs modules that are running to show progress.
Translations now publish with Up2Date
TLS/SSL
Reporters and DirSync now supports TLS/SSL connectivity to the database
APIs
list_entry_add_bulk and list_entry_delete_bulk APIs added that allow you to add and delete multiple URLs and Keywords
24252 | SECURITY | Improved security of the Netsweeper installed product for the EL8 installation has been added. We have locked down and added improved security features for the EL8 based Netsweeper installation. |
24775 | FEATURE | Reporters now supports TLS/SSL connectivity to the database. |
24789 | FEATURE | A new 'list_entry_add_bulk' API has been added that allows you to add multiple URLs to an existing List. |
24828 | FEATURE | DirSync now supports TLS/SSL connectivity to the database. |
24834 | FEATURE | There is a new list_entry_delete_bulk API that deletes multiple URL and Keyword IDs from all Lists. |
24842 | FEATURE | nsup2d now logs the module that we are running, possibly the time taken to run the module for logging purposes. |
24844 | FEATURE | Remote server CA certificate management and remoteadmin server certificate verification on SSL connections has been added for SSL/TLS Support in the WebAdmin. |
24847 | FEATURE | Security Labels have been updated to work with ActiveActive WebAdmin. A new 'Security Labels' interface has been added to the Administration menu in the WebAdmin. Security Labels are used to associate a host server with the database. In Netsweeper 7.2.2 and above you can now associate multiple servers with a single WebAdmin database. In prior releases the WebAdmin could only be active on a single host or system at a time. In 7.2.2 and above Netsweeper now supports active-active WebAdmin hosts serving content from the same database. |
24851 | BUG | WebAdmin API Test was not updating the configuration to run host or login. |
24867 | UPDATE | The Up2Date Files page has been removed from the WebAdmin as the new Up2Date Service no longer copies specific files or directories but generates files for all WebAdmin servers. |
24869 | BUG | Reset Deny Pages did not work due to a PHP error. |
24872 | FEATURE | Up2Date now logs modules that are running to show progress. |
24873 | SECURITY | The gssproxy service is now disabled on install. |
24874 | BUG | NSUp2Date memory leaks have been fixed. |
24875 | BUG | An 'Email Sent' message did not display when the 'Send Email' button was clicked for a Report. |
24876 | BUG | The Group, Policy, and List Deny Pages did not load the default Deny Page. |
24878 | BUG | The 'list_entry_add' API did not display an error message when an invalid list name was specified. |
24883 | BUG | EL8 Upgrade from the 7.1.8 release to the 7.2.0 release based on EL8 did not include all packages required for upgrades. Upgrading from 7.1.8 to 7.2.1 or above includes all package requirements. |
24885 | BUG | System upgrade from 7.1.8 through WebAdmin did not work because the newer nsupgrade expected a different list of arguments. |
24886 | BUG | The Web Upgrade process should display errors for services that are not configured to run during the stopping filtering services process. We do not display errors for servers that should not run. |
24889 | FEATURE | Translations now publish with Up2Date. |
24894 | SECURITY | Reflected Cross-Site scripting issues have been fixed on the Account Signup page. |
24895 | SECURITY | The Password Recovery email could use the wrong host. A new setting, 'WebAdmin Host Name for Email Links' has been added to the 'Signup/Password Recovery'' section of WebAdmin Settings. It is used for recovery email links. |
24896 | SECURITY | Time-Bases SQL injections issues have been fixed. |
24897 | SECURITY | Unsecured remote Reporter scripts have been removed. |
24900 | BUG | The Directory Sync service on EL8 did not properly upgrade from 7.1.8 to 7.2.1 or any release. This issue has been fixed in the 7.2.2 release and EL8 Directory Service upgrades now work properly. |
24903 | BUG | When creating a Profile in the Profile Manager, an error message did not display on submit when the 'Profile Name' was left blank. |
24907 | SECURITY | Outdated versions of jquery and jquery-ui libraries have been removed. |
24908 | SECURITY | Vulnerable versions of the 'TinyMCE' libraries have been removed and replaced with the latest version. |
24913 | BUG | Cloning a Group, in some cases, could cause a database error when the Group had multiple Manager Accounts. |
24914 | BUG | Cloning a Group, in some cases, could cause a database error when the Group had an additional Policy with no time Policy Event. |
24915 | BUG | A database error could occur when trying to save DirSync Setting when nothing was changed. |
24917 | BUG | There was an issue with the DirSync Search Base where Groups and Clients were not synced into the WebAdmin successfully due to a NullPointerException. |
24933 | SECURITY | All column names used for table sorting and simple filtering in SQL queries, to prevent SQL injection, are now escaped properly. |
24935 | SECURITY | The check for the valid permission name to prevent SQL injection has been added. |
24938 | SECURITY | The insecurerenegotiation has been disabled by default. The request_ssl_no_renegotiation option has been added. |
24941 | FEATURE | Basic AIDE configuration for Netsweeper on install has been added for the Netsweeper 7.2.2 and future releases. |
24947 | BUG | There was an error when logging into the WebAdmin using SAML Authentication. |
24948 | FEATURE | There is now the ability to leave userPrincipalName or "mail" or "username" as is without stripping the @domain. Customers who wish to Strip the domain from the username can now add an append string of only '@' which will remove the domain from the username. |
24962 | BUG | There was an error when importing Catalogue content in the Translations window. |
24963 | BUG | Upgrade would fail because of empty settings in the nsup2d_settings file. |
24968 | BUG | The nsup2d service is now enabled if the WebAdmin and mySQL are enabled on the host during upgrade. |
24972 | BUG | Columns in the 'Request Logs' page were not being saved. |
24977 | BUG | The nMonitor now always logs the 'User' even if the user has no username. |
24981 | BUG | The ns_configure_mysql-server package was not automatically installed when upgrading from 7.1.8 to 7.2.1. This package will now be installed when upgrading to 7.2.2. |
24983 | BUG | The WEBADMIN_SERVER_IP did not save to the database properly on upgrade. |
24988 | BUG | When adding Filter Bypass List entries, auth posts, and other Deny Pages, it was possible to add only the scheme when corrupt URL entries where configured. Filter Bypass List entry validation has been improved. |
24990 | BUG | When editing and re-generating a Report, the status message now shows 'Waiting to be Processed'. |
24996 | BUG | The Policy Service failed to start due to the loading of the HTTPS Deny Page. |