1,13 → 1,14 |
# $Id$ |
************ ALCASAR CHANGELOG *********** |
|
-----------------------3.1.1---------------- |
NEWS |
- Linux Kernel (4.4.59) |
BUGS |
- Fix vulnerabilities in the public part (1 SQL injection & 2 XSS). |
- The users can change their password |
|
-----------------------3.1------------------- |
NEWS |
|
- The status window is now in a tab (no more popup). |
- Linux Kernel update (4.4.55) - coova-chilli updated (1.3.2) with IPSEC VPN resolve code (see #255 on coova github) |
- network protocols filtering by user |
22,8 → 23,7 |
- admin connexion logs (when clicking on access counter) |
BUGS |
- manual user disconnexion in ACC (french page only) |
- import BlackList file : doesn't work with domain name longer than 3 letters (ie : .info) |
|
- import BlackList file : doesn't work with domain name longer than 3 letters (ie : .info) |
|
-----------------------3.0.1---------------- |
BUGS |
30,6 → 30,7 |
- Fix : filter_id when importing an old users database |
- Fix : dupplicate/remove users attributes |
- Fix : passing trusted websites |
|
-----------------------3.0----------- |
NEWS |
- Mageia 5.0 migration |
39,7 → 40,6 |
- A first BL category (malware) can be update on the fly via rsync |
- Wildcard certificate can be used |
- a blacklist custom file is added (TOR nodes) |
|
ACC |
- freeradius-web framework has been removed |
- all SQL PHP functions have been rewritten (thanks Clément Siccardi & Raphaël PION for this huge work) |
48,7 → 48,6 |
- group attributes are displayed in the user edit page |
- The menu of ACC is displayed according to the profile rights |
- reoganisation of OSSI custom files (BL & WL) |
|
BUGS |
- The Whitelist now works fine |
- The passwords can be longer than 15 digits |
64,6 → 63,7 |
- MAC auth equipments in DHCP mode are logout after lease time. They can't be automatically reconnected |
ACC |
- PHP : migration of the deprecated functions --> should be continued for the V3 |
|
------------------------2.9-1 ------------------------ |
|
BUGS |
76,6 → 76,7 |
- It's now possible to update via ssh |
ACC |
- show user info (name & surname) in the "activity" screen (if set) |
|
------------------------2.9 ------------------------ |
|
BUGS |
96,10 → 97,12 |
- simplify the user registration menu |
- import a file containing a list of blacklist ip addresses or DNS names (ie : CERT) |
- reboot or halt the system is now possible |
|
------------------------2.8.1 ----------------------- |
BUG - a security hole has been patch (EDB-ID: 34595 - OSVDB-ID: 111026) |
- In the intercept page, fix the behaviour (loop) when the user writes "logout" as url |
- correction in "session time" radius counter (thanks to Olivier HOUSSENBAY) |
|
----------------------- 2.8 ----------------------- |
BUGS - The file "alcasar-services" is now sorted |
- New graphic option in grub conf file in order to fix issues with mini-itx-ATOM moterboard |
111,6 → 114,7 |
- The porttracker nfsen module allows to view network statistics by protocols |
- The imputability files are now included in a single archive file (one per week) |
- The Alcasar name includes the domain name ('localdomain' by default). We prepare the future when we will include the domain name of company. |
|
---------------------- 2.7.2 --------------------- |
BUGS |
- Modify the unit 'radiusd.service in order to wait for mysql |
119,6 → 123,7 |
NEWS |
- Add fail2ban on the following attacks : ssh, https (ACC admin page), Unix accounts |
- Creation of a security page in the ACC : fail2ban alerts, virus stopped by havp+clamav, MAC addresses bloqued by the watchdog process (usurped) |
|
---------------------- 2.7.1 ----------------- |
BUGs |
- Fix multi-users voucher |
127,6 → 132,7 |
- Add 2 examples of "uamalowed and uamdomain" files with several microsoft update domains |
- Show the blacklist category in "Acces denied" page |
- Watchdog : don't disconnect MAC auth equipments even if they can't be reached (arping) |
|
---------------------- 2.7 ----------------- |
BUGs |
- some corrections in the connection popup |
152,10 → 158,12 |
- main page : doesn't show the date of installation in the version field (can be confused) |
Install |
- show the GPL |
|
---------------------- 2.6.0.1 ----------------- |
Bugs |
- the deleted library fpdf has been restored |
- the mysqld and radiusd services are restarted when ALCASAR is launched |
|
---------------------- 2.6 -------------------- |
Bugs |
- "username" in "userinfo" table is varchar(64) like in others tables of ALCASAR database. |
186,6 → 194,7 |
- voucher ticket with logo of organism |
- intercept page with exception links |
- the needed RPM for ALCASAR can be downloaded with the new script "alcasar-rpm-dowmload.sh" |
|
---------------------- 2.5 -------------------- |
Bugs |
- watchdog of Daemons for service's test |
282,7 → 291,7 |
- distinction des fichiers de log (traçabilité - ssh - accès exterieur) |
- amélioration du processus de mise à jour (prise en compte du numéro de version) |
|
---- 2.0.1 ---- |
---------------------- 2.0.1 --------------------- |
- simplification du processus de mise à jour (prise en compte mdv 2010.2) |
- déplacement du répertoire 'digest' vers /usr/local/etc/ |
- correction horodatage des logs awstat |
291,7 → 300,7 |
- inclusion d'un fichier 'alcasar-dns-name' permettant de définir des associations @IP <--> DNS par Dnsmasq |
- qq bugs mineurs (ntpd, adresse coova 1.0.0.0, etc.) |
|
---- 2.0 ---- |
----------------------- 2.0 --------------------- |
- mise à jour de la documentation technique |
- ajout des switchs en '--' pour remplacer les '-' des scripts |
- accès authentifié à la la page de garde du centre de gestion |