Skip to end of banner
Go to start of banner

Release Notes for Open-AudIT v5.2.0

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

Released 2024-04-22

md5sum: bfd339fb7d057a5edcf76a5cc9372eb6

sha256sum: 6b3e765188234e5398945346d60fc3aa4fdeb0aa61336c9d9f2b50b5d71aff63

Windows: Unreleased as yet.


VersionTypeCollectionDescription
EnterpriseBugIntegrationsSeveral bugs in the integrations code were found and addressed.
EnterpriseBugCollectorsWhen sending a device from the Collector to the Server, not all component tables were included and some failed to import. This was the result of not removing the device_id field from these tables before sending. This has now been addressed.
CommunityIssueDiscoveriesWhen loading the snmp OID helper file (which is ~54k lines long) resource contention could occur. This mostly appeared in customers running Redhat. The result was when discovery runs, more processes than specified in the configuration (queue_limit, default 20) were being spawned and overwhelming the MySQL connection limit. We now no longer load this file - at all. If your SNMP devices do not have a manufacturer, please create a rule based on their snmp_oid.
EnterpriseNew FeatureAgentsEnterprise users can now deploy Agents to their Windows devices struggling with discovery. NOTE - Agents when audited will not retrieve installed server (IIS, SQL, et al) details. This is coming ASAP.
CommunityNew FeatureDiscoveriesAdd config item for discovery_wmi_timeout (default set to 900 seconds).
CommunityBugDiscoveriesFix bug in the Ubiquiti SNMP specific file.
EnterpriseNew FeatureExecutablesEnterprise users can now check their Redhat or Debian based machines for any executable files found that the package manager does not know about.
CommunityNew FeatureAuditsA new powershell script for Windows added. This is not used in production just yet - only for Agents.
CommunityImprovementDiscoveriesNew Nmap command for initial ping scan. When executing a discovery, most of the time the first thing to do is ping the subnet and store those IPs responding. For a small subnet (/24) this change will not make a huge difference, but for larger subngets (say a /16) the difference is massive. Testing shows a time decrease from about 30 minutes to under 4 minutes. This is not the time to complete the discovery, only the initial ping scan. Once that has completed, individual device scans commence in parallel as per the queue_limit config item.
EnterpriseImprovementConfigurationWhen we upgrade our database, do not cause an error updating the EULA and hence do not show the "Something went wrong" banner on the following page.
CommunityImprovementAllComposer library updates to latest.
CommunityImprovementAuditsEnable Audit My PC on the login page.
EnterpriseImprovementTasksEnable Tasks Import CSV.
CommunityImprovementGroupsShow Execute button on groupsRead template.
CommunityBugCredentialsFix credentialsRead to display correct selection in dropdown for authentication_protocol, privacy_protocol and security_level.
CommunityImprovementDevicesExpand the partition.mount_point and bios.serial column sizes to stop false positive changes occurring.
CommunityImprovementDiscoveriesDisable ip change tracking and storage (config items create_change_log_ip and delete_noncurrent_ip) because discoveries create minimal and temporary (assuming more data is retrieved) entries, which in turn create a lot of false positives.
  • No labels