maintenance:releases:8.0.0_20220719
Differences
This shows you the differences between two versions of the page.
| maintenance:releases:8.0.0_20220719 [2022/07/20 08:20] – created yspeerte | maintenance:releases:8.0.0_20220719 [2024/07/03 12:31] (current) – external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | {{indexmenu_n> | ||
| + | |||
| + | ====== NetYCE 8.0.0 Build_20220719 ====== | ||
| + | ====== Release notes ====== | ||
| + | Date: 2022-07-20 | ||
| + | |||
| + | |||
| + | \\ | ||
| + | <WRAP widths 60% box safety> | ||
| + | ===== Enhancement ===== | ||
| + | </ | ||
| + | |||
| + | ==== Rename stored jobs ==== | ||
| + | <WRAP indent> | ||
| + | Command jobs can save jobs definitions for future re-use as ' | ||
| + | To change the name of an existing ' | ||
| + | |||
| + | To simplify this operation, a ' | ||
| + | </ | ||
| + | |||
| + | ==== Clicking on their menu or navbar item now refreshes the cgi tool ==== | ||
| + | <WRAP indent> | ||
| + | When you click on the menu item or navbar item for an operating tool, this tool now gets refreshed, resetting the tool | ||
| + | </ | ||
| + | |||
| + | ==== Maximum file upload size ==== | ||
| + | <WRAP indent> | ||
| + | The maximum file upload size has been changed from 1Gig to 4Gig | ||
| + | </ | ||
| + | |||
| + | ==== Site State Field Widened | ||
| + | <WRAP indent> | ||
| + | The Site state field was a bit too short for some of the states and provinces that the world supports. This has been enlarged now to 40 characters. | ||
| + | The site address field has also been enlarged to support a maximum of 100 characters | ||
| + | </ | ||
| + | |||
| + | |||
| + | \\ | ||
| + | <WRAP widths 60% box safety> | ||
| + | ===== Fix ===== | ||
| + | </ | ||
| + | |||
| + | ==== Removed SQL Injection Vulnerability ==== | ||
| + | <WRAP indent> | ||
| + | There was a vulnerability where some backend urls were susceptible to sql injection attacks. This is fixed now. | ||
| + | </ | ||
| + | |||
| + | ==== Login ldap failure message is now the same as a regular login failure message ==== | ||
| + | <WRAP indent> | ||
| + | The message for a failed login for ldap and regular user accounts used to be different. This could be used by a malicious third party to harvest a list of usernames. This is now fixed and all login failed messages are the same now. | ||
| + | </ | ||
| + | |||
| + | ==== XSS fix ==== | ||
| + | <WRAP indent> | ||
| + | Cross-site scripting allows a malicious party to insert html text which will then get printed. A number of cgi tools were vulnerable to this exploit. This has been rectified. | ||
| + | </ | ||
| + | |||
| + | ==== Evpn form fix ==== | ||
| + | <WRAP indent> | ||
| + | There was a bug in javascript causing the Evpn form to fail when trying to submit. This has been fixed now | ||
| + | </ | ||
| + | |||
| + | ==== Compliance regex error fix ==== | ||
| + | <WRAP indent> | ||
| + | When you had a compliance condition with faulty regular expressions (for example, containing a misplaced ' | ||
| + | the error you got was not handled properly by the daemon. Now it is, and you get a notification in the nccmd logs. | ||
| + | </ | ||
| + | |||
| + | ==== F5 Multiconfig Compliance ever-changing timestamp ==== | ||
| + | <WRAP indent> | ||
| + | A line in F5 configs was found that changes with every config that was not properly filtered out, leading to | ||
| + | a mismatch in multiconfig compliance. This has now been fixed. The line in question was: | ||
| + | |||
| + | last-modified-time 2022-06-14: | ||
| + | </ | ||
| + | |||
| + | ==== Sidebar menu loading bug fix ==== | ||
| + | <WRAP indent> | ||
| + | Once in a while, the sidebar menu would not load. This sometimes happened when visiting the site for the first time, or from a sleeping browser. | ||
| + | This has been fixed. | ||
| + | |||
| + | </ | ||
| + | |||