Release Notes for Open-AudIT v6.0.1
Released - 2025-12-15
This is a bug fix release for the large 6.0.0 release.
The important bits are:
Processing an audit result and/or completing a discovery will not trigger a vulnerabilities scan. Once an hour we scan all devices for vulnerabilities from your chosen vendor list. Then once per day we scan all devices for all vulnerabilities. This is scheduled for sometime in the early AM (morning). Check the tasks schedule to determine exactly when (we randomise it).
Agents now delay for X minutes (settable) before executing and submitting their audit. X minutes mean a delay of between 0 and X. By default this is 120 minutes. This reduces load on the server when a large number of agents check-in at the same time.
Version | Type | Collection | Description |
|---|---|---|---|
| bug | audit | Fix audit_linux.sh to not create 1 and $hostname-temp files. |
| bug | audit | Better test and set os_family on Debian (was triggered by SNMP but no SSH discovery on a Debian box). |
| improve | audit | set_icon to raspbian, for raspbian OS. |
| bug | tasks | Fix viewing the vulnerabilities all task. |
| bug | vulnerabilities | When VulnerabilitiesModel::includedRead is run, update the device.cve. |
| improve | logs | Create the log file if it doesn't exist when tasks::execite called, before enterprise binary is called. |
| bug | news | Register install with correct URL. |
| improve | discoveries | Improve the CPE creation for HP Laserjets. |
| improve | discoveries | For laserjet devices, decode from Hex-String the firmware version. |
| improve | discoveries | Retrieve the firmware version for HP Laserjets. |
| improve | discoveries | Assign the H or O CPE to the corresponding devices.os_cpe or devices.hw_cpe attribute. |
| bug | baselines policies | On the read template, use the correct id for 'notes' to enable editing. |
| improve | logs | Add an extra line for logs when ctirical so we can see which file and line the issue occurred. |
| improve | audit | When auditing Windows from the logon screen, add debugging to the arguments. Correctly space the ARP line in the audit script. Output the URL with the other variables in the audit script. |
| improve | audit | Fix logon page to initially populate the audit script type, based upon the User Agent. Add debugging command option to help text for scripts. |
| improve | devices | Remove old and outdated Centos 5 and 6 example devices. |
| vulnerabilities | improve | Remove vulnerabilitiesModel->executeAll from the end of a discovery and when processing an individual device. |
| improve | discoveries | Improve SSH discovery logon when using sudo. |
| bug | widgets | Fix widget link for Unknown Devices. |
| improve | audit | Retrieve MacOS monitor details. |
| improve | agents | Introduce action_delay into the DB schema for agents. Number of minutes to wait before executing an audit. |
| improve | audit | Fix powershell audit to format MAC and IPs for ARP, and output correct syntax for File to be picked up by discovery. |
| improve | vulnerabilities | Execute all vulnerabilities once per day. |
| improve | vulnerabilities | Execute Vendor vulnerabilities hourly. |
| improve | audit | Retrieve snap version (Ubuntu) of a package if snap is on the system and the version contains snap (Firefox does this). |