Monthly Release Notes - May 2021

Beyond Security

beSECURE

Version 21.51

May 1, 2021

Enhancements

• Added Mass Update to Organization.

• Events now use use HASH MinMax sorting.

• Moved more code to client side rendering.

• Added HelpSystems Intermapper Device Collector.

Fixes

• Fixed issues with the Risk Assessment report.

• Fixed issues with the DOM/Crawler selection.

Back to Top

Globalscape

EFT Arcus

Version 8.0.3.22

May 22, 2021

Updates

• Updated the jQuery library to the current version.

Fixes

• Fixed a deadlock that caused the administration console to became inaccessible.

• Fixed an issue where EFT was returning a 401 when RAM agents were checking in.

• Fixed deadlock in EFT occurring when processing an invalid HTTP login.

• Fixed an issue where false positives were reported in the PCI compliance report due to RAM agent settings.

• Fixed intermittent hangs of the administration console due to deadlocks in the folder monitor subsystem.

• Fixed a problem where EFT administrators were getting an error when specifying SSH keys for event rules.

• Fixed an issue where terms of service and forced password reset caused WTC access to be denied.

Back to Top

GoAnywhere

Version 6.8.2

Enhancements

• Updated the SFTP server to overwrite files when uploading a zero byte file to the same path.

• Enhanced the efficiency of the process that applies file/folder permissions to avoid unnecessary lookups.

• Enhanced LDAP Managed Login Methods sync queries when filtering group/user relationships to run multiple queries instead of a large query based upon an arbitrary threshold.

• Improved threading usage within Agent transfers.

• Enhanced SFTP server event processing to not block other clients when event processing occurs.

• Enhanced the Execute SSH Task to support the alternate proxy host.

Updates

• Upgraded the Apache Batik libraries version from 1.10 to 1.14.

• Upgraded the Jasper Reports libraries version from 6.7.0 to 6.16.0.

• Upgraded the XML Graphics library version from 2.2 to 2.6.

Fixes

• Fixed an issue with the PeSIT Tasks where the error "Connection was closed unexpectedly" was reported incorrectly.

• Fixed an issue with the PeSIT Client where threads would not close after performing a transfer.

• Fixed an issue when sending very large messages to Agents. This was introduced in 6.8.0.

• Fixed an issue with the isNumber function that would prevent '08' and '09' from returning true as a number.

• Fixed an issue where failing a Multi-Factor Authentication check would leave a session associated with the user.

• Fixed issue with the FTPS Resource/Task when configured to use TLS Resumption along with using a Proxy. This was introduced in 6.8.1.

• Fixed an issue where admin users wouldn't be able to view trigger log details for 'Before' events.

• Fixed an issue that would prevent Rest API access when Content Type contained more than the media type directive.

• Fixed an issue with the SOAP builder that was preventing the SOAP wizard from generating WSDLs.

• Fixed an issue that would prevent secure form submission when the form contained an empty dropdown.

• Fixed an issue where some some non-English characters were obscured in report headers due to a spacing issue.

GoAnywhere Agents

Version 1.6.2

Enhancements

• Enhanced the Execute SSH Task to support the alternate proxy host.

Fixes

• Fixed an issue when sending very large messages to GoAnywhere. This was introduced in 1.6.0.

• Fixed an issue with the isNumber function that would prevent '08' and '09' from returning true as a number.

Back to Top

Halcyon

Advanced Reporting Suite

Version 11.2

May 5, 2021

• Resolved a data collection issue whereby the last date and time value was incorrectly using a different collection's values. This will mainly affect data collections from devices in various time zones.

Code Uploader

Version 11.2

May 5,2021

Enhancements

• License codes can now be uploaded to multiple environments on the IBM i when using the Code Uploader utility.

Network Server Suite

Version 11.2

May 5, 2021

Enhancements

• Enterprise Console: The System Monitor within Enterprise Server Options has been enhanced to make it multi-threaded.

• Enterprise Console: The Ping Monitor within Enterprise Server Options has been enhanced to make it multi-threaded.

• CCM: An option has been added to allow the setting of Enterprise Server and CCM Server for all defined agents with a single click.

• AIX/Linux Agents: Long running actions can now run asynchronously by adding a new command line option (-X) to the /usr/bin/halsum.sh file.

• Linux Agent: A Linux Agent for Ubuntu has been made available.

Fixes

• NSS: The copyright information has been updated for all applications.

• Enterprise Console: Fixed an issue with alerts being closed on the IBM i but remaining open on the Enterprise Console.

• Enterprise Console: Closing a forwarded alert will now close the alert on the Enterprise Console device which originally sent the alert.

• Enterprise Console: Users can now purge alerts from UNKNOWN devices that are no longer defined in Device Manager.

• Enterprise Console: Users can now delete alerts from UNKNOWN devices that are no longer defined in Device Manager.

• Enterprise Console: Fixed an issue in Enterprise Console where the alert status was not updating.

• Enterprise Console: A fix has been applied to the System Monitor to send the correct command syntax to Windows and Unix agents.

• Enterprise Console: Enterprise Console Clients that are disconnected from the server without logging off, no longer receive an access violation when logging back on.

• CCM: The actions and criteria sequencing for rules didn't load correctly, causing unforeseeable results. This has been fixed in this release.

• CCM: When defining criteria for a TCP/UDP Generic rule, you were unable to use the 'Execute Command' option due to a form validation issue. This has been fixed.

• Instant Alert: Instant Alert message processing has been improved to avoid 'Out of Memory' errors.

• Log Viewer: Users are now able to close multiple log files.

• Windows Agent: The reading of large event logs no longer fails with an error code of 87.

• Windows Agent: A new setting has been made available against Windows agents to reset the held and release statuses against a rule on start-up. This is only applicable to rules that were held or released by means of a "Hold Rule" and/or "Release Rule" action.

Back to Top

JAMS

Version: 7.3.338

May 17, 2021

Enhancements

• API
  • Added endpoints for the Banner, Oracle, SAP, and SQL integrations.
  • Added endpoints to check user access to Jobs and Folders as well as the access control level, such as Change, Delete, Inquire, etc.
  • Added endpoints for Agents and Connection Stores to get the Type and Platform Types.
• Banner Integration
  • Added the Banner Procedure Sequence Task in the Desktop Client, and the Banner Procedure Job in the Web Client.
  • Added support for the Special Print, MIME Type, Font Size, PDF font, and Environment Type properties.
  • Improved validation for the Banner Procedure Job and Task.
  • Updated the Banner Procedure Job and Sequence Task to indicate which Banner Parameters are required.
  • Updated to verify at least one parameter is set for Banner Procedure Jobs if the "Set manually from Parameters tab" option is selected.
  • Enhanced the Banner Job drop-down list on the Banner Procedure Execution Method to add type-ahead functionality.
  • Enhanced the Banner Procedure Job to include support for parsing multiple .log and .log files into the JAMS Entry Log (Desktop Client). Also, added a message to the JAMS Log when a Banner Procedure Job or Sequence Task is canceled in JAMS.
  • Added support for Oracle errors in Banner Procedure Entry logs.
  • Updated the Banner Integration Process to use a new command to load the integration.
• Desktop Client
  • Added the Oracle Query and Oracle Stored Procedure Sequence Tasks.
  • Enhanced the SQL Stored Procedure Execution Method Job Source to provide loading indicators.
  • Updated to allow Sequence Task values to be referenced in other Task properties and parameters by using Sequence storage cache.
  • Added a PowerShell Core V7 Execution Method.
  • Added a new History Summary sample report and a Custom History sample dashboard.
  • Enhanced existing Sample Jobs and added new Sample Jobs in the Samples folder. Also added a JAMS database clean up Job in the JAMS folder.
  • Added a Job Count column to JAMS Agent Interactive to show the live count of Jobs running per connection.
  • Added a read-only Properties panel to the Workflow tab in the Monitor Detail view to display the selected Properties.
• Installer
  • Updated to require .NET Framework 4.7.2 or higher.
  • Updated the JAMS installer to ship with SQL Express 2019.
• SAP Integration
  • Added new Sequence Tasks for SAP to delete a Job, run an SAP Process Chain or SAP background Job, raise SAP events, create SAP Intercept entries, and log intercepted Jobs. The SAP Process Chain Sequence Task allows skipping or retrying a failed process.
  • Added two new SAP Connections to the Connection Store, which can be used in SAP Execution Methods, Sequences Tasks, and the SAP Jobs view. The Connection includes the XMIAudit Level parameter as well as the SAP XBP version property to connect to older versions of SAP.
  • Updated the SAP Connection to require user accounts to have Submit access. Submit access is also now required on Connections/Agents when saving a Definition.
  • Added the SAP Router String to SAP Connections.
  • Added the SAP Jobs view to the Web Client to enable managing and converting an SAP Job into a JAMS Job. Only one SAP Job can be converted at a time in the Web Client.
  • Updated the SAP Jobs view to allow copying, deleting, and releasing an SAP Job in an intercepted state.
  • Updated the SAP Jobs view to display the total number of rows and selected rows.
  • Added the Scheduled Job option as a filter for SAP Jobs.
  • Added support to the SAP Process Chain Execution Method to allow skipping or retrying a failed process.
  • Added new options for SAPV2Jobs to specify the priority, to support load balancing, to allow them to execute immediately, and to wait for child Jobs to complete.
  • Improved validation for SAP Job Steps.
  • Updated Job Steps to add the Title and Department print parameters as well as the SAP user name on ABAP and Program steps to enable different users to run the SAP Job. Also resolved issues with the Output Device, Format Type, Copies, StartPage, and EndPage options.
  • Added columns in the SAP Job Steps screen to display the Variant, Parameters, User Name, and Target Server.
  • Added auto-complete suggestions for the SAP Output Devices and ABAP Job Steps and Variants.
• Scheduler
  • Added a Force to Abort property to the Runaway Schedule Item to cancel an entry with force.
  • Resolved a sporadic Access Violation error that could occur with Workflow or Sequence Jobs.
• Web Client
  • Added support for encrypting Variables and Parameters.
  • Enhanced the layout of the Schedule tab in a Job Definition.
  • Updated the Connection Store to save an entry before adding details for the selected Connection Type.
  • Disabled the ability to create or update Sequence Jobs. This functionality is currently only supported in the Desktop Client.

Fixes

• API
  • Updated GET Entry to return the Tags values in the JSON response object.
  • Updated the return value of the DELETE Entry endpoint.
  • Added validation on POST endpoint for creating a Job.
  • Updated the SQL Get Connection to HTTP POST action.
• Banner Integration
  • Resolved an issue on the Banner Procedure Job where properties on the Properties tab were inconsistent with properties on the Source tab.
  • Resolved an issue where a Banner Procedure Job may save with an incorrect Parameter Set.
  • Resolved an issue where the Submit Time field was not working when submitting Banner Procedure Jobs.
  • Removed the Banner Job and Parameter Set properties from the Banner Procedure Job and Task.
• Desktop Client
  • Resolved an issue where an edited JAMS Object did not show the changes.
  • Updated to ensure InheritedValue is correctly displayed on a Documentation Entry.
  • Resolved an issue where an error occurred when submitting a File Transfer task against an SFTP Connection Store.
  • Resolved an issue where an error occurred when attempting to change the selected reference on a FileWatch Job.
  • Resolved an issue where fields containing spaces may cause a "Could not find token view model" message to be displayed.
  • Updated to automatically refresh the list of objects after importing new objects from XML.
  • Resolved an issue where the SQL database stored procedures were not properly returned based on the user privileges.
  • Resolved an issue where an error may occur when editing a SQL Connection that uses SQL 2019.
  • Resolved an issue where an error message may be displayed after resetting the Execute By property on a root folder.
  • Resolved errors that occurred when modifying the source of a Job from the Submit dialog.
  • Resolved an issue where Sequence Stored Procedure Tasks were executing a stored procedure twice.
  • Resolved an issue with binding SQL Agents in the SQL Stored Procedure Task.

  • Improved the process for using TLS with JAMS Agents.

•  Informatica Integration
  • Resolved an issue when running many Informatica Cloud Jobs.
  • Added a polling interval property to the Informatica Cloud integration for improved control when running many long Jobs.
• PowerShell
  • Resolved an issue with the Connect-JAgent cmdlet due to missing properties that were needed to connect to S3.
•  SAP Integration
  • Enabled the "Group By This Column" option in the right-click menu for SAP Process Chains.
  • Resolved an issue where fields were not populated in the SAP Jobs view.
  • Resolved an issue in the SAP Jobs view where data was not cleared after selecting an invalid connection.
  • Resolved an issue where converting an SAP Job into a nested folder may cause an error.
  • Updated to correctly convert the Copies and Output Device properties on an SAP Job.
• Scheduler
  • Resolved an issue with the SqlPlusQuery activity in a Workflow Job.
  • Resolved an issue where notification emails contained the incorrect Event name.
  • Resolved an issue where an SFTP Job did not use the Credential set on the Job if the Connection Store did not have a Credential.
  • Updated the subject for an EntryStarted event email notification to include the Event Type Normal.

  • Resolved an issue with bound ports on the passive server for failover environments.

• Web Client
  • Resolved an issue where the License Allocated value for an Agent or Connection Store was not saved.
  • Resolved an issue where "undefined" was displayed after deleting Resource and Time Objects.
  • Updated to display HTML markup, script tags, and inline styles as plain text.
  • Resolved an issue where tabs were incorrectly displayed after switching from the Monitor view.
  • Updated the History view to allow for separate queries to be used between the History Grid and History Classic Tabs. Also, updated to save the selected filters for query results when switching between the History Classic and History Grid tabs.
  • Removed the Source tab from the Monitor Entry.
  • Updated to ensure the Execution Method properties were displayed correctly after changing the Execution Method type.
  • Resolved an issue where a Parameter on a Job Definition could not be edited after another Parameter was viewed.
  • Resolved an issue with entering text on the Documentation tab in a Job Definition.
  • Updated validation of dates in Schedule Triggers and improved character validation.
  • Updated the UI in the following areas: Connections, Agents, Explore JAMS menu, and Query dialog for Projected Schedules.
  • Updated the format for the Data Type field when adding or editing a Parameter.
  • Resolved an issue where the default time was incorrectly displayed after adding a Schedule Item.
  • Updated the sort order number in the database for Execution Method Properties categories.
  • Updated to ensure the Execution Method properties are displayed correctly after changing the Execution Method type.
  • Resolved an issue where changes could not be made to the root folder.
  • Changed the numeric up/down menu to a drop-down menu on the Submit dialog for parameters with "Select" as the Validation Type.

Back to Top

Powertech

BoKS Control Center

Version 8.0.0.2

May 3, 2021

• Updated Jetty dependency fixing the following reported vulnerabilities: CVE-2021-28165, CVE-2020-27218, CVE-2020-27223, CVE-2020-27216.

• Strict-Transport-Security header included in root redirect page (enforce strict transport security).

• Added enhanced protections to prevent the ability to download certificates from BCC without an active session (enhanced access control).

• Added replacement of session ID every time a user logs in and deletion of old session IDs to provide enhanced security (session fixation).

• Added response header "X-Content-Type-Options: nosniff" for enhanced security (content sniffing not disabled).

• Updated the default session ID name to "id" to provide enhanced security (session ID fingerprinted).

• Removed cache for downloadable resources (host and ca certificates) to provide enhanced security (cacheable HTTPS response).

Version 7.2.0.1

May 3, 2021

• Fixed problem where some GUI operations (for example managing "User SSH Public Keys") not working when running the server with Java 1.8.0 update 282 or later.

• Updated Jetty dependency fixing the following reported vulnerabilities: CVE-2021-28165, CVE-2020-27218, CVE-2020-27223, CVE-2020-27216.

• Strict-Transport-Security header included in root redirect page (enforce strict transport security).

• Added enhanced protections to prevent the ability to download certificates from BCC without an active session (enhanced access control).

• Added replacement of session ID every time a user logs in and deletion of old session IDs to provide enhanced security (session fixation).

• Added response header "X-Content-Type-Options: nosniff" for enhanced security (content sniffing not disabled).

• Updated the default session ID name to "id" to provide enhanced security (session ID fingerprinted).

• Removed cache for downloadable resources (host and ca certificates) to provide enhanced security (cacheable HTTPS response).

Powertech Antivirus for IBM i

Version 8.04

May 18, 2021

Enhancements

• Powertech Antivirus now uses the McAfee 6200 Anti-Malware Engine, which includes the following new features:
  (from McAfee)
  • Enhanced threat landscape with added support for MSIL and AutoIT based malware.
  • Extended coverage for PDF and ISO file types.
  • Added provision to author better content with decoding support for ADC and LZFSE.
  • Introduced better handling capability for Linux threats.
  • Multiple features for better driver handling which improves the detection effectiveness.
  • Several bug fixes and performance improvements.

Fixes

• DAT file version numbers over four digits are now supported.
• An issue that caused AVRUNTSK to fail with error "Lost connection with AVSVR (socket closed)" has been resolved.
• An issue that caused the job log to report "No job log information" when initiating AVSVR has been resolved.

Version 8.03b

May 18, 2021

• An issue that caused a virus definition update to remove the IFS Encryption exit program and replace it with the Powertech Antivirus exit program has been resolved.
• An issue that could cause the scan task to end with error "Qp0lProcessSubtree API failed with error code -1 (socket closed.)" has been resolved.

Version 8.03a

May 18, 2021

• Object ownership issues upon installation have been resolved.

Back to Top