Skip to end of banner
Go to start of banner

Release Notes for Open-AudIT v4.3.0

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

Released 2011-11-02

This release of Open-AudIT was bought forward because of the disclosure of two vulnerabilities.

This release fixes these issues.

The details of each can be found at:


VersionTypeCollectionDescription
ProfessionalBugIntegrationsWhen multiple integrations are configured, multiple identical attributes would appear in the integrations details on the device details page.
ProfessionalNew FeatureDiscoveriesRetrieve and display installed certificates on Linux. Both system wide and Apache specific.
ProfessionalNew FeatureDiscoveriesRetrieve and display USB connected devices (exclude bluetooth on Windows).
ProfessionalImprovementQueriesAdd Query Details button to Query Execute template.
CommunityImprovementDiscoveries

There was an issue with PHP's SNMPv3 implementation. This is resolved for Linux where we now use net-snmp for initial credential testing. For Windows we cannot do this so the caveat is that where SNMPv3 is used, you must not have multiple credential sets (for SNMPv3) with identical security names.

ProfessionalImprovementLicensesAdd a license expiry date to /licenses entries.
ProfessionalImprovementDiscoveriesProvide a list of discovery issues with hints to how to resolve them.
ProfessionalBugDiscoveriesFix Active Directory discovery type option. AD discoveries now work again.
ProfessionalBugIntegrationsFix integrations fields for bool_one_zero and bool_y_n always staying 'false'.
ProfessionalImprovementDevicesProvide an indication on the Devices List screen to indicate level of audit performed.
CommunityBugUtilFilter out all characters except those in the allowed list for determining number of IPs in range or subnet for util::subnet_size. See Errata - 4.2.0, 3.5.0 and onwards util function vulnerability
CommunityBugAllFix link creation to exclude user input. See Errata - 4.2.0 and earlier Javascript vulnerability
CommunityImprovementAllFor spawning processes, no longer use the execute script with a URL, now call PHP directly. No longer a requirement for http to be available from localhost.
CommunityImprovementUtilAllow downloading test_windows_client.vbs using the web interface at util/test_windows_client.



Improvements to test_windows_client.vbs:

  • checks for RPC and NetLogon services
  • OS architecture
CommunityImprovementDiscoveriesFix audit_linux.sh to allow running on BusyBox.
EnterpriseImprovementCloudsDelete the associated discovery when we delete the cloud.
CommunityImprovementDiscoveriesUpdate the MAC -> Manufacturer helper with more manufacturers.
CommunityImprovementDiscoveries

Add Fortinet Fortigate models to SNMP Model Helper.

CommunityImprovementDiscoveriesDetect Quest InTrust Agent in audit_linux.sh.




  • No labels