6.3.5 EA Release

Netsweeper is pleased to announce the Netsweeper 6.3.5 EA release. This is the fifth EA release in the 6.3 release cycle.

Some of the major features in 6.3.5 EA include:

WAgent

  • Ability to disable WebAdmin Logs for WAgent
  • New options:
  • ‘Create group with default setting if it doesn’t exist’ assigns SysOp Accounts to groups created by WAgent
  • ‘Add Name Based Client’ creates a name-based Client when a Client is added for WAgent
  • ‘Expire Client on Logout’ expires the Client session instead of deleting it

Reporter

  • Support for amCharts 2D Pie Charts in Reporter presentations
  • ‘Description’ field added to Reports and Report Templates

List Management

  • Action buttons are disabled until the action is completed in List Entry edit popup
  • New SysOp ‘List Search’ permission that gives a SysOp access to List Search

Group Management

  • Longer moved IP expire times added to ‘Moved IP Address Expire Time’ field on the Group Authentication Redirect page
  • Group Manager columns modified and improved

NSProxy

  • NSProxy will now create 4 connections per ICAP channel per thread by default if no configuration is specified
  • New X-Context-IP icap header added to set listen line allowing NSProxy per port context awareness to be done without creating multiple policy service channels with ICAP. By doing this you can open many more connections to the policy service per channel and solve most of the Internet and World problems
  • Policy Service can now read the request context IP address from the ICAP header X-Context-IP. This allows the NSProxy to communicate the request context via the ICAP channel rather than creating new ICAP channels for each request context

Performance Improvement

  • WebDB now only reloads dbclientname, dbip, or dbsubnet clients when that type of client is modified
  • Configuration loading from the database to the policy servers was improved
  • The performance for larger selects and larger database queries for WebDB has been improved
  • An Apache WebAdmin request timeout has been added to avoid hanging connections for Clients
  • Dashboard loaded all Lists into memory causing performance problems
  • Unless a ‘Table Search Delay’ greater than zero is set in WebAdmin Settings, tables will no longer automatically search after keypress

Additional Features

  • ICAP Connection counters have been added for connects, disconnects, connect timeouts and read timeouts
  • WebDB now recognizes test build versions and ’rounds’ them to the next release
  • Two Admin Permissions added: Global Language Change and SAML2.0 Authentication Settings

If you have any questions or concerns about planning an upgrade to this release, please contact Netsweeper Technical Support support@netsweeper.com.

See also:

Download

To download the latest release, please use the following links:

http://repo.netsweeper.com/netsweeper-el6-x86_64-6.3.5-1.iso

md5

sha256

Change Log for 6.3.5

Ticket Description
21438 FEATURE: There is a new option: ‘Create group with default setting if it doesn’t exist’ that assigns SysOp Accounts to groups created by the WAgent.
21507 PERFORMANCE: WebDB now only reloads dbclientname, dbip, or dbsubnet clients when that type of client is modified.
21592 FEATURE: There is a new WAgent configuration option: Add Name Based Client. It will create a name-based Client when a Client is added for WAgent.  Note: This will only work if ‘Client Name Type’ is not set to ‘No duplicated Client Names allowed’ in WebAdmin Settings.
21643 FEATURE: There is now support for amCharts 2D Pie Charts in Reporter presentations.
21829 FEATURE: The EDNS parsing has been updated and is now more configurable.
22020 FEATURE: A ‘Description’ field has been added to Reports and Report Templates.
22043 PERFORMANCE: Configuration loading from the database to the policy servers was improved.
22057 FIXED: The ‘Category Group’ options did not always update when changing the ‘Group by’ field.
22149 FIXED: The exported column selectize has been updated to delete tags rather than start editing the tag on backspace.
22174 FEATURE: When an action is performed in the List Entry edit popup, the action buttons are disabled until the action is completed.
22175 FIXED: The screenshot display in the List Review Tool has been improved.
22176 FIXED: The slideshow preview for the Review List popup has been fixed for Chrome browsers.
22179 FIXED: Write locks have been removed from tables when they are not required.
22180 FEATURE: There is now the ability to disable WebAdmin Logs for the Workstation Agent (WAgent).
22181 UPDATE: There is a performance update added where we do not have metadata for a List.
22183 FIXED: In List Review, the Save, Cancel, Delete, and Skip buttons are disabled when the List entry form is submitted to prevent multiple submits.
22184 FEATURE: There is a SysOp List Search permission that gives a SysOp access to List Search.
22187 FEATURE: The menu in the ‘Moved IP Address Expire Time’ field on the Group Authentication Redirect page can now be set for Minutes, Hours, Days, and Weeks to offer longer moved IP expire times.
22190 FIXED: The ‘Allow Remote Access’ service did not ‘Flush all Privileges’ after the GRANT.
22195 PERFORMANCE: The performance for larger selects and larger database queries for WebDB has been improved.
22196 UPDATE: Client and Policy columns have been removed from the Group Manager List.  New columns: Description, Deny Page (Yes/No), Logging Mode, Logfile Tag, Timezone, Language, Override, Enforced Categories, and Auth Redirect have been added.
22204 UPDATE: Two Admin Permissions: Global Language Change and SAML2.0 Authentication Settings have been added to WebAdmin permissions.
22208 PERFORMANCE: An Apache WebAdmin request timeout has been added to avoid hanging connections for Clients.
22209 FEATURE: There is a new WAgent configuration option: ‘Expire Client on Logout’ that will expire the Client session instead of deleting it.
22213 FIXED: When the WebAdmin is disabled, it will redirect, as fast as possible, to avoid many redirects from http://server to http://server/webadmin, which will then redirect to the final location.
22217 FIXED: Database upgrades would log an error when cleaning up a table that no longer existed.
22218 FIXED: The Policy Service could crash when loading configuration information from the WebAdmin.
22219 PERFORMANCE: The Dashboard loaded all Lists into memory causing performance problems.
22220 FIXED: The Client Export would not work with large databases.
22221 FIXED: The NSProxy could crash on some config settings.
22224 FIXED: NSProxy can fail open/close when processing a very large HTTP request header. NSProxy will now truncate the HTTP request header to avoid a fail open/fail close state. We now truncate the path/host and remove optional http headers.
22227 FEATURE: NSProxy will now create 4 connections per ICAP channel per thread by default if no configuration is specified. Previously only 1 connection per channel per thread was created.
22230 FIXED: Segmentation faults would occur when running actionlist unit tests.
22231 FIXED: Connection problems to the policy service from NSProxy could cause connections to become hung. This hung state can cause NSProxy to either fail open or fail close. Connections now have a 5 second timeout, hung connections are timed out and restarted.
22233 FIXED: In Shared Lists, Assigned Policies are no longer displayed in the ‘Assign to Policy’ dropdown.
22234 FIXED: The count for the ‘Assign to Policy’ table has been fixed for SysOps.
22236 FEATURE: ICAP Connection counters have been added for connects, disconnects, connect timeouts and read timeouts.
22239 FEATURE: The webDB now recognizes test build versions and ’rounds’ them to the next release.
22244 FEATURE: A new X-Context-IP icap header has been added. This can be set using the nsproxy.conf listen line by adding a ‘context=127.0.0.2’ to the listen line. This allows NSProxy per port context awareness to be done without creating multiple policy service channels with ICAP. By doing this you can open many more connections to the policy service per channel and solve most of the Internet and World problems.
22251 FIXED: List Search did not work for SysOp Shared Lists.
22252 UPDATE: The Client and Group Extended Stats are no longer queried unless enabled globally.
22254 FEATURE: The Policy Service can now read the request context IP address from the ICAP header X-Context-IP. This allows the NSProxy to communicate the request context via the ICAP channel rather than creating new ICAP channels for each request context.
22256 FEATURE: The NSProxy can now keep the nfmark or the ip tos field from client to remote server.
22287 FIXED: Assigning Templates to Accounts could cause minor database errors.
22288 PERFORMANCE: Unless a ‘Table Search Delay’ greater than zero is set in WebAdmin Settings, tables will no longer automatically search after keypress.
22295 FIXED: API Test Suites have been audited and fixed.
22296 FIXED: In ‘Log Archives’ pressing <ENTER> in the Table Search bar would cause the page to submit.
22298 FIXED: The report_definition_options_set does not work in 6.3.2 to 6.3.4.
22299 FIXED: The Category API calls have been fixed.
22300 FIXED: The System Status API returned incorrect output.
22302 FIXED: The Report Edit APIs were not checking for updates properly.
22304 FIXED: The next run time for Scheduled Reports per month has been fixed.
22305 SECURITY: The Owner for Quick Search Reports was not being set correctly.
22307 FIXED: The start session for the logout API call now starts correctly.
22309 FIXED: Stopping the MySQL database or running a KILL on a WebDB SELECT download thread caused database loading corruption.
22317 FIXED: The list_entry_add_local API did not work correctly.
22320 FIXED: In the ‘List Manager’, the ‘Add Entry’ function could be used without designating a List.
22323 SECURITY: A SysOp was able to add an entry to any List they have assigned to a Policy they manage.
22324 FIXED: The Report List API for SysOp Accounts without View All Accounts permissions now displays the current user if no owner is specified.
22328 FIXED: The Quick Report ‘Owner’ permission check did not work for SysOps without ‘View All Accounts’.