Monthly Release Notes - March 2024
Alert Logic
Alert Logic MDR and Fortra XDR
March 27, 2024
Alert Logic Managed Detection and Response customers now have access to 19 reports in the Alert Logic console for helping demonstrate compliance with specific requirements of PCI DSS 4.0. For more information, refer to our software update.
March 20, 2024
Alert Logic has made improvements in the Alert Logic console to provide more accurate log volume counts and updated collection methods in the Log Collection and Top 10 Log Collector reports. For more information, refer to our software update.
March 19, 2024
Alert Logic has introduced a new banner and wizard in the Alert Logic console to make the PCI ASV scanning migration process straightforward and effortless for customers. For more information, refer to our software update.
March 4, 2024
Alert Logic has updated the role for Microsoft Azure deployments to discover new asset types and/or properties. To take full advantage of the functionality for supporting version 2.0.0 of the CIS Microsoft Azure Foundations Benchmark, you must use the updated RBAC role document. For more information on replacing the previous JSON file, updating the RBAC role document, and granting specific permissions in the Azure portal, refer to our software update and Update Your Azure Deployment for CIS Foundation Benchmarks.
Managed Web Application Firewall (WAF)
Version 5.1.3.0
March 25, 2024
New Features
-
Added ACME certificate management support, including automatic SSL certificate renewal
-
Introduced HTTP request throttling based on classifications of the source IP (for example, GeoIP)
Enhancements
-
Show blocked country code in deny log of requests blocked by GeoIP
-
Improve resilience of an internal service related to features such as detecting anomalous sessions
-
Add minor Fortra branding changes to the UI
Fixes
-
Delete OpenAPI definitions when a proxy is deleted
-
Fix a config sync issue by properly comparing all data structure variants
-
Add support for signature class exceptions for custom signatures in the advanced signature engine
-
Fix multiple issues with CAPTCHA logic
-
Prevent DDoS detection from starting until it has been turned on
-
Fix race conditions and improve resilience of an internal service related to detecting anomalous sessions
Version 5.1.2.0
March 15, 2024
Enhancements
- Show ACL type in the web application overview list
Fixes
-
Allow the management UI to work with custom PKCS12 certificates/keys
-
Allow dashes in Open API paths' parameter names
-
Make ACL matching case insensitive when case insensitivity is selected
-
Delete OpenAPI definitions when a proxy is deleted
Automate
Version 24.1.0
March 13, 2024
New Features
-
Custom Action Enhancements
IMPORTANT:For Custom Actions developed for Automate 23.1.0, you must do the following after upgrading to Automate 24.1.0:
- Copy Custom Actions located in \Automate 2023\CustomActions and \Automate 2023 Agent\CustomActions to \Automate 2024\CustomActions and \Automate 2024 Agent\CustomActions.
- Rebuild each of your Custom Actions in Visual Studio.
-
Automate only.
-
Added support for masking the textbox and multiline textbox controls in the GUI and encrypting the corresponding Automation Markup Language (AML) in the Task Builder.
-
Added support for session-based custom activities.
-
In addition to its inclusion in the SDK, the Automate.Plugins.Custom.Contract.dll file is now installed in the \Automate 2024\CustomActions and \Automate 2024 Agent\CustomActions folders. This update removes the requirement to include the Automate.Plugins.Custom.Contract.dll file in each Custom Action folder while providing backward compatibility with older Custom Actions.
NOTE: For more information on how to use these enhancements, download Custom Action SDK 1.1 and see its Release Notes.
-
ROI Tasks
-
Automate only.
-
Added new ROI tasks to the Repository section (Tasks > ROI). Once configured in the Task Builder, these tasks will pull information from the Automate datastore and populate Excel templates, allowing you to chart the information to see trends in ROI, execution time and outcomes, and object creation.
-
Enhancements
-
Removed support for Windows Server 2008 R2 SP1.
-
The FTP action now supports SBB v20 KEX and Public Key algorithms.
-
The Session debug panel now supports the Function column, which displays all sessions for an entire task with their declared Function name.
-
Session-based activities can now access all relevant sessions across all task functions.
-
The Update Available message now references the Fortra Support Portal when a new version of Automate or Automate Desktop is available.
-
Rebranded the Automate RESTful API online documentation and company logos from HelpSystems to Fortra.
Fixes
-
The Active Directory action now correctly stores logon credentials.
-
The Active Directory action now correctly authenticates when the Authentication type is set to Default.
-
The Compression action has been updated to address the Zip Slip vulnerability.
-
The Compression (Decompress) activity now correctly extracts files when using the "Exclude mask" parameter.
-
The Display action no longer fails and displays the “Error Code 59999” error message.
-
The Email action now correctly saves digitally signed email attachments.
-
The Excel (Open/Create workbook) activity no longer creates a Book1.xlsx file when creating another workbook.
-
The Exchange (Get object) activity now correctly filters emails by domain name.
-
The File System (CSV to dataset) activity will now load and ignore any hidden NUL (0'\0') characters found in CSV files.
-
The File System (CSV to dataset) activity now correctly loads data that ends with quotation marks into a dataset.
-
The Text (Replace) activity now correctly uses regex positive lookbehind and positive lookahead assertions.
-
The Task (Stop) activity now correctly passes Reason values to the OnTaskEnd event.
-
The Text (Trim) activity no longer hangs while attempting to trim empty characters and will now leave the text unchanged.
-
The Web Browser action now correctly identifies all elements specified in the "Locate by name" parameter.
-
The Web Browser (Get value) activity now correctly returns an absolute path for HTML href attributes.
-
The Web Browser (Select list item(s)) activity now allows a previously selected list box item to be chosen again.
-
Column names in the Task Administrator and Server Management Console no longer stop displaying if the column order was changed while in the Details view before restarting either application.
-
Upgrading to the latest Automate or Automate Desktop version no longer removes stored SQL connection information on the Data Link Properties dialog.
-
Turning Global Triggering on or off is now correctly logged in detail in the Output Panel and the Audit Event Logs.
-
Permanent Automate Desktop license keys no longer display an expiration date.
-
Returning the value of row 0 of a dataset no longer causes an error.
-
Using a structured variable path as the index to a dataset or array now executes correctly.
-
Text variable comparisons no longer fail and display the "Type mismatch" error message.
-
Non-managed tasks containing a constant will now run correctly.
-
The Automate RESTful API online documentation has been updated to correctly describe filtering and how to use multiple filters with logical AND/OR operators.
-
Scheduled-based triggers now correctly populate AMTrigger variables.
-
Miscellaneous settings "Show its properties" and "Launch its editor" now correctly interact with objects found in the Server Management Console's Search and Filter box.
Custom Action Software Development Kit (SDK)
Version 1.1
March 14, 2024
For Custom Actions developed for Automate 23.1.0, you must do the following after upgrading to Automate 24.1.0:
- Copy Custom Actions located in \Automate 2023\CustomActions and \Automate 2023 Agent\CustomActions to \Automate 2024\CustomActions and \Automate 2024 Agent\CustomActions.
- Rebuild each of your Custom Actions in Visual Studio.
Enhancements
-
Added support for masking the textbox and multiline textbox controls in the GUI and encrypting the corresponding Automation Markup Language (AML) in the Task Builder.
-
Added support for session-based custom activities.
-
Updated the Custom Action SDK Guide with the following content:
-
Develop your Custom Activity
-
Added the “Using Automate Sessions” section which describes how to include session-based activities with your Custom Action.
-
-
GUI Development Information
-
Added the new “Mode” property.
-
Added the new “session dropdown” control.
-
-
Beyond Security
beSTORM
Version 13.2.0
March 15, 2024
New Features
-
Added the beSTORM BLE Monitor for monitoring a device under test (DUT) while fuzzing Bluetooth Low Energy (BLE) protocols.
-
Added support for CAN DBC files with defined multiplexed signals for CANBUS modules.
-
Added the IS-IS module to support the Intermediate System to Intermediate System (IS-IS) protocol described in standard ISO/IEC 10589:2002.
-
Added the MPLS LDP module to support the Multiprotocol Label Switching - Label Distribution (MPLS LDP) protocol described in standard RFC 5036.
-
Added the OSPFv2 module to support the Open Shortest Path First (OSPF) Version 2 protocol described in standard RFC 2328.
-
Added the OSPFv3 module to support the Open Shortest Path First (OSPF) Version 3 protocol described in standard RFC 5340.
Enhancements
-
Rebranded the beSTORM user interfaces and company logos from Beyond Security to Fortra.
-
Added the Serial/Base2 Scale Type, which combines the Serial and Base2 types, providing an intermediate option that generates more combinations than Base2 but less than Serial.
-
Updated the PROFINET RT DCP module to provide the option to test without resetting the IP address of the device under test.
-
Updated the beSTORM Monitor installer to automatically install the Visual C++ Redistributable during installation.
Fixes
-
Fixed an issue where the "Vulnerability management and testing news" feed on the Welcome to beSTORM window was missing or incomplete.
-
Fixed an issue where generating an HTML report could cause beSTORM to stop responding.
-
Fixed an issue where an error would occur while running the DOC or HWP File modules.
-
Fixed an issue where opening Simple Web Server.exe would cause an error.
-
Fixed an issue where importing Postman 2.x files into the Web Application Module would not process correctly when the host was not detected, authorization tokens were not used, or the SSL/TLS connection failed.
-
Fixed an issue where beSTORM 13.1.0 would stop responding while creating a project using the Network Configuration v1.0, Network Configuration v1.1, or SFTP Client modules.
-
Fixed an issue where beSTORM would stop responding if it ran a project using the FTP module.
-
Updated an error message when Npcap is improperly installed.
-
Reduced the number of combinations for the GIF file module to ensure tests do not run endlessly.
Boldon James
MasterKeyPlus
Version 9.1
March 31, 2024
Enhancements
-
Now supported on Microsoft Windows 11
-
Now supported on Microsoft Office 2016 and 2019 64 bit
-
Rebranded to Fortra
-
Display LDAP error messages include more LDAP-related error that you can optionally display to the user. The default for the Display LDAP error messages in the bjmk.cps file and the Advanced LADP Options dialog is now set to Off.
SAFEmail
Version 3.9.1
March 31, 2024
Enhancements
-
Additional functionality supported for Greenshield Expansion Pack
-
Added a registry key to ensure users to have just one icon for all P772 messages regardless of status. See the Boldon James SAFEmail Form Configuration Guide for more information.
-
Now supported on .NET Framework 4.0
-
Now supported on Microsoft Office 2019 64 bit
-
No longer supported on Microsoft Office 2013 and Microsoft Exchange 2013
Fixes
-
MIME encoding on Greenshield messages is not correct for non-ASCII characters in attached file names on message reply
-
When a Greenshield secured message is opened from the SAFEmail Alarms window and then read again from the message list, a duplicate read notification is generated
-
Certificate expired in SAFEmail 3.9.0. The SAFEmail installer now signs using a new SHA256 certificate.
SAFEmail Greenshield Expansion Pack
Version 3.9.1
March 31, 2024
Enhancements
-
Certificate Search X.400 addresses conversion of brackets and spaces in Common Name to minus sign. See the Fortra's Boldon James SAFEmail Greenshield Expansion Pack Configuration Guide.
-
Microsoft Office 2013 and Microsoft Exchange 2013 are no longer supported
-
Now supported on Microsoft Office 2016 and 2019 64 bit
-
Support for Nukom1a environment
-
A new registry key controls whether SAFEmail looks for recipient encryption certificates or leaves them to Greenshield
-
Additional support for Infodas label handling
-
Support for secure P772 messages over P7 using Greenshield 1.3.2.445
-
Support for secure commercial messages over Exchange using Greenshield 1.3.2.445
NOTE: The API and any dependencies must be copied from Cryptovision. See Fortra's Boldon James SAFEmail Greenshield Expansion Pack Configuration Guide.
Fixes
-
SAFEmail can now read long file names sent from cv act s/mail for attachment filenames
-
No signing or encryption is applied to Greenshield messages when replying/forwarding
-
When Reply to or Forward a Greenshield secured message, the message body becomes visible on the message
-
When a Greenshield secured message is opened from the SAFEmail Alarms windows, the message body property is left visible on the message
-
SAFEmail paperclip issue - inconsistent when shown on Greenshield messages
SAFEmail P7 Transport
Version 3.9.1
March 31, 2024
Enhancements
-
All CSDs fixed up to 3.7 SR6 Update 9 and 3.8 SR2 Update 6 are included in this release
-
Microsoft Office 2013 and Microsoft Exchange 2013 are no longer supported
SAFEmail Security
Version 3.9.1
March 31, 2024
Enhancements
-
All customer issues up to versions 3.7 SR6 Update 9 and 3.8 SR2 Update 6 are included in this release
-
Now supported on Microsoft Office 2016 and 2019 64 bit
-
No longer supported on Microsoft Office 2013 and Microsoft Exchange 2013
Fixes
-
Incorrect Smime-type Set in First Tow Layers on Triple Wrapped Message Encoding
Digital Guardian
Agent for Linux
Version: 7.6.0
MAR 25, 2024
New Features
-
Certification for Additional Kernels
This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to the Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v7.4.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v7.4.x_and_later_Ubuntu_Certified_Environments on the Fortra Support Portal for the complete lists of supported RHEL and Ubuntu kernels.
Distribution |
Version |
Architecture |
Kernel |
---|---|---|---|
RHEL | 9.2 |
64-Bit |
kernel-5.14.0-284.52.1.el9_2 |
RHEL | 9.0 |
64-Bit |
kernel-5.14.0-70.85.1.el9_0 |
RHEL | 8.9 |
64-Bit |
kernel-4.18.0-513.18.1.el8_9 |
RHEL | 8.9 |
64-Bit |
kernel-4.18.0-513.11.1.el8_9 |
RHEL | 8.8 |
64-Bit |
kernel-4.18.0-477.43.1.el8_8 |
RHEL | 8.6 |
64-Bit |
kernel-4.18.0-372.93.1.el8_6 |
RHEL | 8.6 |
64-Bit |
kernel-4.18.0-372.91.1.el8_6 |
RHEL | 7.9 |
64-Bit |
kernel-3.10.0-1160.108.1.el7 |
Ubuntu |
22.04 LTS |
64-Bit |
linux-image-5.15.0-97-generic |
Ubuntu |
22.04 LTS |
64-Bit |
linux-image-5.15.0-94-generic |
Ubuntu |
22.04 LTS |
64-Bit |
linux-image-5.15.0-92-generic |
Ubuntu |
20.04 LTS |
64-Bit |
linux-image-5.15.0-97-generic |
Ubuntu |
20.04 LTS |
64-Bit |
linux-image-5.15.0-94-generic |
Ubuntu |
20.04 LTS |
64-Bit | linux-image-5.15.0-92-generic |
Ubuntu |
20.04 LTS |
64-Bit | linux-image-5.4.0-172-generic |
Ubuntu |
20.04 LTS |
64-Bit | linux-image-5.4.0-171-generic |
Ubuntu |
20.04 LTS |
64-Bit | linux-image-5.4.0-170-generic |
Enhancements
-
Ending Support for Ubuntu Kernels More Than One Year Old
Effective with this 7.6 release, Fortra no longer supports installing and running the Agent on computers running these Linux Ubuntu kernels. In future Agent releases, Fortra will no longer support installing and running the Agent on computers running Linux Ubuntu kernels that are more than one year old.
Ubuntu OS Version | Kernels |
---|---|
22.04 | linux-image-5.15.0-27* through 5.15.0-37* |
20.04 | linux-image-5.4.0-40* through 5.4.0-121* |
18.04 | linux-image-5.4.0-52* through 5.4.0-120* |
18.04 | linux-image-5.3.0-40* through 5.4.0-76* |
18.04 | linux-image-4.15.0-46* thorough 4.15.0-184* |
Analytics & Reporting Cloud
Analytics & Reporting Cloud
Version: 4.8
Mar 28, 2024
New Features
-
DG Rule Component List Editing
You can now add values to or delete values from component lists that you created in the DGMC directly from the Administration & Configuration pane in Fortra. To access component lists in Fortra, click Event Detection > Watchlists on the Administration & Configuration pane. For more information, refer to “Updating Component Lists” in the online help.
Enhancements
-
Policy Option Renamed Event Detection
To more closely align with the content of the option, Fortra renamed the Policy entry on the Administration & Configuration pane to Event Detection. The contents of the option remain the same—Detection Rules, Event Filters, and Watchlists.
-
Enhanced Administration & Configuration Pane
To prepare for upcoming efforts to streamline workflows, Fortra made minor enhancements to the Administration & Configuration pane. The enhancements include changes to align our portfolio of products to a unified user experience, removing feature icons from the menu options, and listing the options in alphabetical order.
Fixes
-
Resolved a problem where the Sample Match icon was not being displayed for send mail events in tables. In addition, it was not being displayed for email attachments.
-
Resolved an issue where it was not possible to view the details for an incident.
-
Resolved a problem with the DG Insights report where the format of the report was not correct. It did not match earlier versions and was not possible to read.
Document Management (RJS)
Webdocs Forms Management
Version: 11.0.13
March 7, 2024
Fixes
-
A business rule for displaying an uploaded image in a message control fails for workflows.
-
A form/workflow that is deleted in a deployed state continues to count against the deployed forms on the server.
-
After download/upload of the workflow.zip file, one mapped PDF is replaced by another.
-
After upgrade v10.1.x to v11.0.11, the error ‘liquibase.exception.DatabaseException: ORA-01452: cannot CREATE UNIQUE INDEX; duplicate keys found’ is encountered when there is missing data in the database.
-
After upgrading to v11.0.x, a form with a control template fails to load.
-
Apache Tomcat version upgraded to v9.0.82 to address security vulnerability.
-
Clicking + (add row) on a table sometimes copies prior row's data.
-
Control invalid status set by business rules not working as expected on form load event.
-
Cross-project API FormType copy fails.
-
Dashboards: Data Table filter does not return expected data when the filter value has spaces and at least one data table column is from a table control.
-
Dashboards: Export of Data Table fails when sort field is a metadata field
-
Dashboards: Printing a dashboard with a Data Table fails
-
Data API: Submission query fails when the owner has a lot of projects.
-
Database Connector: Manually-Set Document URIs fail to insert data on POST operation when the schema generated the root element with the elementFormQualified="true" attribute.
-
Deployed workflows intermittently become undeployed after editing.
-
Editing a copy of a flow erroneously updates the original flow.
-
Latest Chrome update causes PDF Generation to fail with a WebSocket connection error.
-
Login button appears misaligned after clicking the email task notification link.
-
Migration fails on sqlserver when there are thousands of forms in each project.
-
Multilanguage Support: The translation file is not copied when a form/workflow is duplicated.
-
Nested Repeats do not display all rows on later steps of workflow.
-
PDF Snapshot does not pick up Tight Layout from form style.
-
PDF Snapshot is misaligned (missing right vertical border) when "Tight" layout is used.
-
PDF Snapshot: Table prints row overlapping header on second page.
-
Portals display tabs and menu items with custom Access Control to all users after the page reloads.
-
Portals: Dashboards added to Portal tabs do not display.
-
Refresh Searchable Fields (indexing) fails when an application's content is corrupt.
-
Roles (Groups) with Spaces/Ampersand don't work for task assignment.
-
Setting a form or workflow's deployed state in Settings does not persist after saving.
-
Shared Items edit access disappears after testing workflow in some scenarios.
-
Spaces are ignored in the typeahead feature on fields that look up frevvo Roles (e.g. Role Assignment), resulting in the inability to search for roles with spaces.
-
Submissions CSV: Searchable Fields and Export Fields for a table printed on different sets of rows
-
Tasks performed from the Saved/Recent Items view do not allow data entry or digital signatures.
-
The CSS class f-page-break applied to a control inside a section adds an extra page inside the section.
-
The f-page-break CSS class applied inside a section control adds a blank page in between each break.
-
The View All Rules page is missing the Created and Edited timestamps.
-
Upload Control: Uploading .bmp file produces "File Mime Type Not Allowed" error message.
-
Values in dropdown or radio comment box are not cleared via business rule.
-
Upgraded Webdocs Archive Utility to .NET 6.0.
-
Fixed PDF Snapshot Issue after Chrome/Chromium Update.
-
Fixed XML/XSD export issue with output schema and extra namespace sections.
Fortra
Fortra VM
Version 7.0.1.0
March 30, 2024
New Features
-
This version of Fortra VM introduces new vulnerability severity and CVSS risk matrix items to the Threat Summary dashboard.
-
The left side navigation bar has been updated for improved visibility. This includes moving the Threat Summary and Remediation dashboards into the navigation bar under VM Dashboards and splitting Scan Settings and Account into separate dropdown menus.
-
Added CPE information to the vulnerability dictionary and allows for searching and filtering by CPE within the vulnerability dictionary.
Enhancements
-
Dashboard Improvements:
-
Added vulnerability severity and CVSS risk matrices
-
Matrix items are now clickable
-
-
Navigation:
-
Threat Summary and Remediation Overview dashboards are now more visible
-
System has been split into Scan Settings and Account
-
Account switching and account context are now more visible
-
-
PCI Self Service:
-
Added “scanned by mistake” as reason option for out-of-scope target
-
Removed hard coded text under auto-generate reports
-
Added 'Out of Scope' option for WAS scope
-
Removed out of scope items from view in WAS PCI Tab
-
-
PCI:
-
Path and Embedded Link added in Section 1.1 of the 3B Documentation Requirements report
-
Components scanned by Ad Hoc Hostname use hostname instead of IP address in ASV Scan Report Summary
-
-
Changed the default agent deactivate to 365 days
-
Improved load balancing on external RNAs to reduce scan queue time
-
Added filter for provider/source to the vulnerability dictionary
-
Changed links under Support in left navigation bar
Fixes
-
PCI Self Service:
-
Improvements for File Attachment
-
When using Scan Immediately, an asset from Ad Hoc Hostname is rescanned using Ad Hoc IPs & Ports instead
-
-
PCI:
-
Out of scope host still fails report with 3b item
-
Color coding on manually added vulnerabilities using PCI as default rating scheme
-
NIST import is causing incorrect data for PCI rating
-
NIST import fails to import CVSS 3.0 data
-
ASV Vulnerability Details Report: Compliance should be by asset not by reference/vuln
-
Compliance reports not correctly displaying report creator in section A5 (ASV Attestation)
-
Web apps set to out of scope still appear in ASV Scan Vulnerability Details report
-
-
Scan Groups:
-
Scan group scheduling not updating
-
Disable on click or debounce the Create New Scan Group Template template's Save button
-
Duplicate web apps/web app groups created when Auto Generate WAS Scans was enabled
-
-
Web Application Scanning:
-
Unable to set custom time zone on new scan template
-
-
Navigation:
-
Navigating from Scheduled Scans to Scan Activity displays yellow status bars until page fully loads
-
Issue navigating to Asset Details
-
Electing to edit an account from Client Ops>Accounts redirects to user's default landing page
-
Unable to open scan definition from scan summary
-
-
Reports:
-
Report Template links not populating new report page correctly on multi-region lineups
-
Report template type not populating in Create a Report for some super accounts
-
Illegal characters allowed in Build Report name field
-
-
Missing results in global vulnerability search
-
Account Switcher sometimes lists accounts twice
-
Error renaming scanner profiles
-
Upcoming Weekly Scans email not going out to clients
-
Support adding hostname-based rules for ad-hoc targets when rescanning assets dynamically
-
Request URL for integration edition definitions is malformed
-
Updated branding on Maintenance Page to Fortra VM
-
Updated branding on Release Notes section of At a Glance Dashboard
-
Page footer needs URL to Privacy Policy updated and copyright link is broken
-
Error response from initial account selector using IdP authentication
-
Fixed miscellaneous links
-
Issue update theming on MSP theme
-
Change password is broken
-
VM scans erroring out with "Scan is loading" - lower number of processes
GoAnywhere
GoAnywhere MFT
Version 7.5.0
March 26, 2024
PeSIT Store and Forward
-
Added PeSIT Send Acknowledgement Action to Projects.
-
Added support for Receive Acknowledgement to PeSIT File Templates.
-
Added Trigger events for PeSIT Receive Acknowledgement Successful and Failed.
-
Added Bank ID (PI-62) and Customer ID (PI-61) as event variables to PeSIT Receive Successful and PeSIT Receive Failed triggers.
-
Added Bank ID and Customer ID to the PeSIT Send File Action to support PeSIT's Store and Forward specifications.
PCI DSS v4
-
Updated the Security Settings Audit Report to the PCI DSS v4.0 standard and included new Security Checks.
Other New Features
-
Added accessibility link for skipping selection to the main content on the web client.
Enhancements
-
Enhanced the Audit Log process for HTTPS/AS2/AS4/SFTP/FTP/FTPS/GoFast/PeSIT/Antivirus to persist logs in batches. This greatly reduces the impact on the database connection pool and more efficiently persists the audit log records by reducing the over-the-network calls to the database server. This also removes the burden of processing from the service thread.
-
Enhanced Active Session processing to be more efficient and reduce impact on memory.
-
Enhanced Local Resource Testing to localize messages based upon users' locale.
-
Enhanced the Security Settings Audit Report with new Security Checks.
-
Enhanced Secure Form Validation to ensure each variable name (case insensitive) was unique across component and project variables.
-
Enhanced the IBM MQ, ActiveMQ, and SonicMQ JMS drivers to allow dynamic parameters.
-
Enhanced the SSL Cipher configuration by adding filtering capabilities.
-
Enhanced the underlying PeSIT server.
-
Enhanced PeSIT Task to reuse connection for Send and Receive actions.
-
Enhanced PeSIT Task to provide additional auditing in Job log.
-
Enhanced Cluster Validation of file access when a participant joins to retry up to 5 times per file.
-
Improved performance for PeSIT Send and Receive Actions.
-
Improved the memory usage within GACMD Executions.
-
Improved performance of Antivirus audit logging.
-
Localized Trigger attribute descriptions and cleaned up unused Trigger attribute and expression database tables.
-
Upgraded to a new and more efficient database connection pool.
-
Replaced spaces with underscores in AS2 message ids to be compliant with AS2 standards.
Updates
-
Updated the AWS SDK from 1.12.405 to 1.12.664.
-
Updated Derby version from 10.14.2.0 to 10.15.2.1.
-
Updated Docker and RPM paths to use Fortra.
Fixes
-
Fixed an issue where Fortra rebranding instructions were searchable in the online help guide.
-
Fixed an issue where the missing resource type description for the SNMP resource type caused an exception to be thrown.
-
Fixed an issue which prevented the saving of LDAP Web User Groups.
-
Fixed an issue with a race condition that could occur under load when the Gateway Client connected to the Gateway Server.
-
Fixed an issue with the Manage Services page so the service status is localized.
-
Fixed an issue persisting web user preferences under heavy load due to dead locks when in a cluster.
-
Fixed an issue in the web client related to language menus that caused a 500 error under heavy load.
-
Fixed an issue viewing audit log details for an Antivirus audit log when the audit log event does not exist.
-
Fixed an issue with rendering Nested Component Groups in Secure Form.
-
Fixed an issue with Web User Login related to International Oracle implementations.
-
Fixed an issue with accessibility by having the 'for' attribute reference a non-empty unique 'id' in form control.
-
Fixed an issue with an invalid `aria-describedby` reference in dynamic rendered dialogs.
-
Fixed an issue with accessibility by adding headings for Web Client pages.
-
Fixed an issue with accessibility by correcting form control labels.
-
Fixed an issue with accessibility by combining similar groups of form controls (radio buttons and checkboxes).
-
Fixed an issue with accessibility by removing redundant title attributes from form elements.
-
Fixed an issue with accessibility by including headers in tables.
-
Fixed an issue with accessibility by giving differing forms on a single page the appropriate ARIA labels.
-
Fixed an issue with accessibility by wrapping headings and landmarks of Web Client page regions.
-
Fixed an issue where using FileSet within projects that were configured to sort and the file values used in the sort were volatile, caused a failure.
-
Fixed an issue with the FTP/FTPS/SFTP Rename Action in Workflows where logging the total number of files and folders that were renamed inaccurately.
-
Fixed an issue with the HTTPS Audit Log Remarks/Event Type improperly indicating a file when it was a folder when renaming from the GoAnywhere HTTPS Rename Task.
-
Fixed an issue that affected sending unsigned AS2 MDNs manually.
-
Fixed an issue with a 500 error occurring when editing a Secure Form that was tied to a project that had a variable defined without a name.
-
Fixed an issue with accessibility landmarks, headings and form control labels.
-
Fixed an issue with RSA-4096 Triple-DES Keys in SFTP resources.
-
Fixed an issue with Resources 'Where Used' feature for path-based resources which included other resources that started with the same name.
-
Fixed an issue with Resources 'Where Used' feature where monitors using WebDAV resources were not found.
-
Fixed an issue with localization within the Resources 'Where Used' feature.
-
Fixed an issue with Secure Forms where access would be denied if Secure Form Response Task was setup to redirect to another Non Public Secure Form and the user only had access to the new Secure Form via the web group only.
-
Fixed an issue when viewing LDAP Login Methods where the group membership attribute was under user and vice versus.
-
Fixed an issue where the Secure Form Response Task was not resolving variables for the Secure Form field within the Redirect panel.
-
Fixed an issue that occurred when validating file access in projects when using a workspace and a Domain was setup to restrict file access failed due to an incorrectly resolved workspace path.
-
Fixed an issue with a spelling error in Audit Log Message for SFTP Service when SFTP Protocol was not permitted.
-
Fixed an issue where S3 Task improperly validated the variable syntax for Output Session ID and now outputs the variable under Output Variables.
-
Fixed an issue that prevented the recipient of a shared Secure Folder that is defined with Disk Quota limit from uploading.
-
Fixed an issue where the event id link on triggers logs would not resolve the audit log record for GoFast Service when clicked.
-
Fixed an issue when rebuilding the global search index would not reset GoFast audit logs.
-
Fixed an issue where validating access to the Software Library that was configured to use the Network Share would fail for new nodes joining a cluster.
GoAnywhere Agents
Version 2.2.0
March 26, 2024
Enhancements
-
Enhanced Agents to use stronger data encryption.
Updates
-
Updated the AWS SDK from 1.12.405 to 1.12.664.
-
Updated Derby version from 10.14.2.0 to 10.15.2.1.
Halcyon
Network Server Suite
Version 11.4
March 6, 2024
New Features
-
IA: Additional logging has been introduced to troubleshoot email issues within Instant Alert Server Options.
Enhancements
-
DM: A new option has been added to Device Manager to allow data encryption between the Enterprise Console server and the IBM i.
-
DM: The Device Manager interface now has a Ribbon style toolbar.
-
EC: A new encryption feature to protect data transmitted between the Enterprise Console and the IBM i software has been added.
-
EC: The Enterprise Server's Purge Monitor has been updated to move closed alerts to the history schema tables.
-
EC: A new Alert Key (&AK) substitution variable can be used when constructing an alert message.
-
EC: The IBM i Ping Monitor has been enhanced to be multi-threaded. It now sends an additional value to the IBM i to indicate if data needs to be encrypted to and from the Enterprise Console.
-
EC: Device Manager will send an updated list of devices to the Enterprise Console Server whenever devices are added, updated or deleted. This removes the need to 'Reload Devices' from the Enterprise Console Client because the server will push the list of devices to all connected clients.
-
EC: A new option has been added to the Enterprise Console client application to disable skin support should there be drawing issues such as black backgrounds.
-
EC: Enterprise Console Client's login form has been rebranded.
-
EC: The devices report has been modified to draw the background of the status column correctly. The alert report no longer draws the background for the alert type and comment columns in black.
-
NSS: Network Server Suite fully supports Windows Server 2022.
-
NSS: Installers and applications have been updated to use new copyright information, branding colors and EULA.
-
NSS: The ‘About’ form for all Windows User Interfaces has been rebranded.
-
NSS: The UIs have been updated to be in line with the new Fortra branding colors.
Fixes
-
NSS: A mixture of characters can now be used for SQL usernames and passwords required during an installation or repair.
-
EC: Fixed a memory leak in the Enterprise Console Client when drawing alert trees.
-
EC: The filtering of the list of available devices to select from for Enterprise Console System Monitoring now works as expected.
-
EC: The Enterprise Console Client issue relating to "Unknown Function" errors for both HelpdeskDefaults and IAMessageDefaults has been fixed.
-
IA: Renaming an Address Book entry now correctly updates and saves all references in broadcast groups and schedules.
-
NSS: The Network Manager service has been updated to be more robust.
-
NSS: The issue arising when 'Security level is set to 2 but no encryption password was provided' when SNMP v3 traps were received, has been fixed.
Task Supervisor
Version 4.3.2024.022
March 6, 2024
Enhancements
-
Improvements have been made to the Task Supervisor upgrade process when upgrading from v4.3.22304 onwards.
-
Task Supervisor fully supports Windows Server 2022.
Fixes
-
Performance improvements have been made when selecting Scheduled Tasks from the database. Additionally, the scroll bars now function as intended.
IBM Partnership
Backup, Recovery, and Media Services
Product 5770-BR1 Version: PTF 7.5 SI86228, 7.4 SI86227
March 15, 2024
Enhancements
In version 7.4 and later:
-
SETUSRBRM has been enhanced to add message MSGBRM4009 to the BRM log.
-
The BRMS exit program process for delayed apply of BRMS PTFs has been enhanced to remove SQL operations.
Fixes
In version 7.4 and later:
-
Issue where BRMS maintenance may fail with message MSGMCH6903 is fixed.
-
Delayed apply of BRMS PTF may report message MSGBRM4040 for user QSYS now fixed.
-
Fixed problem occurring when deleting a BRMS control group with client omits after it has been migrated to a control group using a green screen object list omits, fails to remove the client omits.
-
Issue with changing the green screen object list generated after migrating a BRMS control group with *ALLPROD or *ALLTEST entries having client omits fails with MSGBRM1357 is fixed.
After installing the latest BRMS PTF, run STRMNTBRM.
Product 5770-BR2 Version: PTF 7.5 SI85695, 7.4 SI85686
March 15, 2024
Enhancements
In version 7.4 and later:
SETUSRBRM has been enhanced to add message MSGBRM4009 to the BRM log.
The BRMS exit program process for delayed apply of BRMS PTFs has been enhanced to remove SQL operations.
Fixes
In version 7.4 and later:
Issue where BRMS maintenance may fail with message MSGMCH6903 is fixed.
Delayed apply of BRMS PTF may report message MSGBRM4040 for user QSYS now fixed.
Fixed problem occurring when deleting a BRMS control group with client omits after it has been migrated to a control group using a green screen object list omits, fails to remove the client omits.
Issue with changing the green screen object list generated after migrating a BRMS control group with *ALLPROD or *ALLTEST entries having client omits fails with MSGBRM1357 is fixed.
After installing the latest BRMS PTF, run STRMNTBRM.
IBM PowerHA SystemMirror for IBM i
Version 7.5 HA 5.5.2 PTF SI86106 (plus language PTFs)
March 26, 2024
New Features
Integration with FlashSystem and Spectrum Virtualize Asynchronous Policy-Based replication for Spectrum Virtualize 8.6.2.0 and later. PowerHA automatically detects if an SVC session is consistency-group-based or policy-based.
Administrative domain integration with support for synchronizing the SNMP V3 attributes for printer device descriptions, including SNMP User (SNMPUSR), and SNMP Context (SNMPCNTX) across the environment.
Enhancements
PowerHA FlashCopy automation is enhanced to show the node name and job name for jobs including quiesce and vary on jobs.
Fixes
Resolved an issue where printer device descriptions may have the Host print transform (TRANSFORM) attribute inconsistent due to the handling of the Manufacturer type and model (MFRTYPMDL) parameter on the printer device description.
PTF updates require one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter for SI86106.
Version 7.4 HA 4.11.2 PTF SI86105 (plus Language PTFs)
March 26, 2024
New Features
Integration with FlashSystem and Spectrum Virtualize Asynchronous Policy-Based replication for Spectrum Virtualize 8.6.2.0 and later. PowerHA automatically detects if an SVC session is consistency-group-based or policy-based.
Administrative domain integration with support for synchronizing the SNMP V3 attributesfor printer device descriptions, including SNMP User (SNMPUSR), and SNMP Context (SNMPCNTX) across the environment.
Enhancements
PowerHA FlashCopy automation is enhanced to show the node name and job name for jobs including quiesce and vary on jobs.
Fixes
Resolved an issue where printer device descriptions may have the Host print transform (TRANSFORM) attribute inconsistent due to the handling of the Manufacturer type and model (MFRTYPMDL) parameter on the printer device description.
PTF updates require one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter for SI86105.
Outflank Security Tooling (OST)
Outflank
Version: 20 March 2024
EDR Evasion
- This release is the result of several man-months of research on stealthiness and evasion.
- Due to tweaked remote process injection techniques, smarter unhooking and a new sleep mask, OST tools PE Payload Generator, Stage 1 C2 and Lateral Pack's Shovel NG are now even better equipped to bypass major EDRs.
7 March 2024
EDR evasion
- Extended EDR info and presets for now a total of 6 major EDRs.
- Added the cheat sheet of the 'OPSEC tricks for attacking Azure AD with ROADtools' recording.
Updates
- Under the hood improvements and bug fixes.
Powertech
BoKS Manager
Client c-8.1.0.12
March 13, 2024
New Features
- New option '-f filename' has been added in showmaster to specify a bcastaddr file.
- Added Sudo v1.8 or higher as dependency to native packages.
- The new '-f' option added to showmaster to specify the bcastaddr file to use instead of the default one.
Enhancements
-
RHEL 9 x390x Systemd config boksm.service updated
-
The following dependencies were upgraded for security:
- OS command injection might occur if a user name or host name has shell metacharacters.
- Destination constraints only apply to the first key in PKCS#11-hosted private keys.
- SSH Terrapin-attack.
Fixes
- Old sudo version gave error for normal users unless sudo'/allow-pass-env-vars was set to true.
- Sudo symlinks execution.
- Import of legacy ENV variable REPORT_BOKS_SSH_VERSION failed.
- On AIX, after upgrading native package from 8.0, BoKS would not start at boot.
- Look for the command to execute in the target user's environment with "sudo -i".
- boks_sshd does not handle optional kerberos with ticket_only modifier correctly.
Client c-8.0.0.15
March 25, 2024
Fixes
- Auto-registration fails when using CLIENT_CHOOSE_HOSTGROUPS connecting to Replicas the list is longer than 128 characters.
-
The following dependencies were upgraded for security:
- OS command injection might occur if a user name or host name has shell metacharacters.
- SSH Terrapin-attack.
Security Scan for IBM i
Version 3.4.7
March 14, 2024
Fixes
-
A certificate has been added to the process for sending reports to Fortra.
Robot
Robot Schedule
Version 13.16
March 18, 2024
Enhancements
-
History purge program RBT655 now addresses entries representing Schedule jobs that are no longer defined to the software.
-
Added support to improve uptime of the product's monitor jobs that run within RBTSLEEPER subsystem.
Fixes
-
Resolved inconsistency issue within the Job Schedule List ‘Options’ window and the appearance of an arrow (>).
-
OPAL objects are now correctly reflected in a GUI forecast/simulation.
Robot Schedule Enterprise
Version 3.04
March 20, 2024
Enhancements
-
Enhanced protocol swapping by adding scripts to perform operations to set up a specific TLS protocol as the ‘override default’.
Fixes
-
Fixed an issue where viewing Diagnostics for some agents results in an error.
-
Cleaned up ‘false errors’ in the Schedule Enterprise logs for both the IBM i server and the remote agents. The errors were potentially expected by not properly monitored.
-
Fixed issue with viewing the IBM i Schedule Enterprise service log in the Diagnostic Information page.
-
Resolved CVE-2024-0259 where Robot Schedule Enterprise Agent for Windows was susceptible to privilege escalation.
TeamQuest
Administration Console
Version 11.4.8
March 31, 2024
Enhancements
-
Updated OpenSSL to version 3.2.1 (Linux only)
-
Added support for Postgres 13.14 (Windows only)
Automated Analytics
Version 11.3.37
March 31, 2024
Enhancements
-
Added a new property, regex-compare, to the Instance Filter Function. This property specifies whether the value should be compared with regex (true) or with a string equals (false).
-
Updated Apache Tomcat to version 9.0.87
TeamQuest Manager
Version 11.4.14
March 31, 2024
Enhancements
- Updated OpenSSL to version 3.2.1
- Updated library dependencies for Red Hat 8 and 9 and CentOS 8
Vityl Monitor
Version 11.4.9
March 31, 2024
Enhancements
-
Upgraded Apache Tomcat to version 9.0.87
Titus
Illuminate
Version 2023.1 HF1
March 5, 2024
Fixes
-
Illuminate Scans page does not work if the time zone is ahead of UTC
Titus Classification Suite for Mac
Version 2023.0 SP1
March 29, 2024
New Features
-
The TCS for Mac New Outlook manifest file is not included in the 2023.0 SP1 release package due to potential interoperability issues between Mac and Windows environments. For more information, see the Titus Classification Suite for Mac Installation Guide. If you want to test TCS for Mac in New Outlook, contact Support for the manifest file.
-
Added support for an existing Message.Attachment.IsOfficeDoc property.
Enhancements
-
Confirmed support for Sonoma (macOS 14).
-
Confirmed support for Sequoia (macOS 15).
Fixes
- Fixed issue with the TCS for Mac add-in failing to load in recent builds of Microsoft Word, Excel, and PowerPoint.
- For customers deploying TCS for Mac with a third-party solution, the provided certificates have been updated.
- Fixed issue with TCS for Mac preventing meeting invitations from being sent.
Titus Classification Suite for OWA
Version 2024.0
March 21, 2024
New Features
-
Provided an option to enable and disable Smart Alerts in the manifest file. Smart Alerts is disabled by default, so no action is required if you do not want to use this new feature. For more information, see the Titus Classification Suite for OWA Configuration Authoring Guide.
Fixes
-
Portion Marking button no longer appears for customers without a military license.
Vera
Version 3.23.2
March 2024
New Features
-
(Mac Client) Digital Guardian Secure Collaboration (Vera) announces support for macOS Sonoma.
Updates
-
The SharePoint URL has been updated in steps 14 and 19 of the "Creating a Vera Share for OneDrive" section. For more information, refer to OneDrive Integration Guide for Vera-Hosted Connector.
Enhancements
-
(Mac Client) Digital Guardian Secure Collaboration (Vera) announces the end of support for macOS Big Sur with the 3.24.0 release.
Fixes
-
Important Update to the Digital Guardian Secure Collaboration (Vera) Server
-
Fixed an issue where some users could not verify their credentials using SAML authentication.
-
-
(Windows Client) Fixed an issue where Microsoft Office files failed to open and close properly.
-
(Windows Client) Fixed an issue where the user could save an unsecured copy of Microsoft Office files even when the "Save As" option was disabled.