Release Notes for Open-AudIT v5.3.0
Released 2024-08-08
md5sum: 2f0eb2e1563ab46932f42788c3faa4a8
sha256sum: 551301379ce500b5c99c93c4493314a7b89b914709c7d1d3f598e8108568b8d6
Version 5.3.0 brings with it a great new feature - Benchmarks. Benchmarks allow you to compare your (at the moment Linux) server against standard published benchmarks such as CIS, NIST, HIPPA, DISA STIG and more.
We have also improved the installer for Redhat based systems to not require an external repository for newer PHP versions.
Don't forget you can always see the gory development details being committed on Githuhub here - https://github.com/Opmantek/open-audit/commits
For those supported customers running Redhat 9 with FIPS enabled, we now have a build available that will work with this combination. Please log a support ticket and request access to this.
Version | Type | Collection | Description |
|---|---|---|---|
Professional | Improvement | licenses | A device should only consume a license if it has an IP (and is not unknown or unidentified). |
Community | Improvement | discoveries | Use try/catch when establishing an SSH connection so we don't fail. |
Community | Improvement | queries | When running an Advanced query, do not sanitise the result for the web. |
Community | Improvement | discoveries | Show an error if running on Windows, but not Windows server. |
Community | Bug | discoveries | Fix bad parsing in snmp_9_helper (for Cisco devices), when SNMP responds with false, null, et al. |
Community | Bug | discoveries | Fix not saving scan options. |
Enterprise | Bug | integrations | Fix non-populating external attributes on IntegrationsCreateForm. |
Community | Improvement | all | Improved Help pages and fix the help pages for devices and components. |
Community | Improvement | discoveries | Use sodium_compat v^1 so we don't need PHP 8.1 or libsodium on Redhat 8/9. |
Community | Improvement | all | Disable execute button and show toast, after click. |
Enterprise | Improvement | audits | Fix audit_windows.ps1 for multiple monitors, disk improvements, all groups retrieved. Add monitor.interface. Remove monitor.edid_version. |
Community | Bug | devices | Fix order of partition used / free on devicesRead. |
Community | Improvement | audits | Minor docker fix and added icons for docker, lxc, proxmox. |
Community | Improvement | all | Allow 1024MB per request as the PHP memory limit. |
Community | Improvement | devices | Add a Device Reset button on devicesRead to remove all non-current components and change log entries. |
Community | Improvement | all | Add /tmp noexec check in support output. |
Community | Improvement | all | Add SELinux status to support. |
Enterprise | Improvement | audits | Add Windows Features to software in powershell audit and ensure no duplicate entries from Optional Features. |
Enterprise | Improvement | audits | Make an audit run after the initial Agent install. |
Community | Bug | all | Fix bug in response_helper so that LIKE in the URL now works as intended. |
Enterprise | Improvement | audits | Add certificate retrieval on Windows in the powershell audit script. |
Professional | Improvement | installer | Add option to allow httpd_t permissive SELinux in the installer. |
Professional | Improvement | installer | Add option to allow port 80 through the Redhat default firewall in the installer. |
Professional | Improvement | installer | Check if /tmp is mounted noexec and ask use if we should continue in the installer. |
Community | Bug | scripts | Ensure ScriptsRead works with audit_windows.ps1 (even though there are no configurable options). |
Community | Bug | discoveries | AutoPopulate default discovery if subnet is empty. |
Community | Improvement | all | On all CreateForms, autofocus on the 'name' attribute when form loads. |
Professional | Bug | scripts | Ensure ScriptsRead works with audit_windows.ps1 (even though there are no configurable options). |
Enterprise | Bug | clouds | Fix JS to display correct password placeholder on CloudsRead template. |
Community | Bug | configuration | Fix ConfigurationRead for any fields named *password* to correct set the placeholder. |
Community | Improvement | discoveries | Add port descriptions to DiscoveriesRead. |
Community | Improvement | discoveries | When discovering a network device (ie, not a computer), if we have an OS Name and Version, add these into the software table. |