| 1,13 → 1,14 |
|---|
| # $Id$ |
| ************ ALCASAR CHANGELOG *********** |
| |
| -----------------------3.1.1---------------- |
| NEWS |
| - Linux Kernel (4.4.59) |
| BUGS |
| - Fix vulnerabilities in the public part (1 SQL injection & 2 XSS). |
| - The users can change their password |
| |
| -----------------------3.1------------------- |
| NEWS |
| |
| - The status window is now in a tab (no more popup). |
| - Linux Kernel update (4.4.55) - coova-chilli updated (1.3.2) with IPSEC VPN resolve code (see #255 on coova github) |
| - network protocols filtering by user |
| 22,8 → 23,7 |
|---|
| - admin connexion logs (when clicking on access counter) |
| BUGS |
| - manual user disconnexion in ACC (french page only) |
| - import BlackList file : doesn't work with domain name longer than 3 letters (ie : .info) |
| |
| - import BlackList file : doesn't work with domain name longer than 3 letters (ie : .info) |
| |
| -----------------------3.0.1---------------- |
| BUGS |
| 30,6 → 30,7 |
|---|
| - Fix : filter_id when importing an old users database |
| - Fix : dupplicate/remove users attributes |
| - Fix : passing trusted websites |
| |
| -----------------------3.0----------- |
| NEWS |
| - Mageia 5.0 migration |
| 39,7 → 40,6 |
|---|
| - A first BL category (malware) can be update on the fly via rsync |
| - Wildcard certificate can be used |
| - a blacklist custom file is added (TOR nodes) |
| |
| ACC |
| - freeradius-web framework has been removed |
| - all SQL PHP functions have been rewritten (thanks Clément Siccardi & Raphaël PION for this huge work) |
| 48,7 → 48,6 |
|---|
| - group attributes are displayed in the user edit page |
| - The menu of ACC is displayed according to the profile rights |
| - reoganisation of OSSI custom files (BL & WL) |
| |
| BUGS |
| - The Whitelist now works fine |
| - The passwords can be longer than 15 digits |
| 64,6 → 63,7 |
|---|
| - MAC auth equipments in DHCP mode are logout after lease time. They can't be automatically reconnected |
| ACC |
| - PHP : migration of the deprecated functions --> should be continued for the V3 |
| |
| ------------------------2.9-1 ------------------------ |
| |
| BUGS |
| 76,6 → 76,7 |
|---|
| - It's now possible to update via ssh |
| ACC |
| - show user info (name & surname) in the "activity" screen (if set) |
| |
| ------------------------2.9 ------------------------ |
| |
| BUGS |
| 96,10 → 97,12 |
|---|
| - simplify the user registration menu |
| - import a file containing a list of blacklist ip addresses or DNS names (ie : CERT) |
| - reboot or halt the system is now possible |
| |
| ------------------------2.8.1 ----------------------- |
| BUG - a security hole has been patch (EDB-ID: 34595 - OSVDB-ID: 111026) |
| - In the intercept page, fix the behaviour (loop) when the user writes "logout" as url |
| - correction in "session time" radius counter (thanks to Olivier HOUSSENBAY) |
| |
| ----------------------- 2.8 ----------------------- |
| BUGS - The file "alcasar-services" is now sorted |
| - New graphic option in grub conf file in order to fix issues with mini-itx-ATOM moterboard |
| 111,6 → 114,7 |
|---|
| - The porttracker nfsen module allows to view network statistics by protocols |
| - The imputability files are now included in a single archive file (one per week) |
| - The Alcasar name includes the domain name ('localdomain' by default). We prepare the future when we will include the domain name of company. |
| |
| ---------------------- 2.7.2 --------------------- |
| BUGS |
| - Modify the unit 'radiusd.service in order to wait for mysql |
| 119,6 → 123,7 |
|---|
| NEWS |
| - Add fail2ban on the following attacks : ssh, https (ACC admin page), Unix accounts |
| - Creation of a security page in the ACC : fail2ban alerts, virus stopped by havp+clamav, MAC addresses bloqued by the watchdog process (usurped) |
| |
| ---------------------- 2.7.1 ----------------- |
| BUGs |
| - Fix multi-users voucher |
| 127,6 → 132,7 |
|---|
| - Add 2 examples of "uamalowed and uamdomain" files with several microsoft update domains |
| - Show the blacklist category in "Acces denied" page |
| - Watchdog : don't disconnect MAC auth equipments even if they can't be reached (arping) |
| |
| ---------------------- 2.7 ----------------- |
| BUGs |
| - some corrections in the connection popup |
| 152,10 → 158,12 |
|---|
| - main page : doesn't show the date of installation in the version field (can be confused) |
| Install |
| - show the GPL |
| |
| ---------------------- 2.6.0.1 ----------------- |
| Bugs |
| - the deleted library fpdf has been restored |
| - the mysqld and radiusd services are restarted when ALCASAR is launched |
| |
| ---------------------- 2.6 -------------------- |
| Bugs |
| - "username" in "userinfo" table is varchar(64) like in others tables of ALCASAR database. |
| 186,6 → 194,7 |
|---|
| - voucher ticket with logo of organism |
| - intercept page with exception links |
| - the needed RPM for ALCASAR can be downloaded with the new script "alcasar-rpm-dowmload.sh" |
| |
| ---------------------- 2.5 -------------------- |
| Bugs |
| - watchdog of Daemons for service's test |
| 282,7 → 291,7 |
|---|
| - distinction des fichiers de log (traçabilité - ssh - accès exterieur) |
| - amélioration du processus de mise à jour (prise en compte du numéro de version) |
| |
| ---- 2.0.1 ---- |
| ---------------------- 2.0.1 --------------------- |
| - simplification du processus de mise à jour (prise en compte mdv 2010.2) |
| - déplacement du répertoire 'digest' vers /usr/local/etc/ |
| - correction horodatage des logs awstat |
| 291,7 → 300,7 |
|---|
| - inclusion d'un fichier 'alcasar-dns-name' permettant de définir des associations @IP <--> DNS par Dnsmasq |
| - qq bugs mineurs (ntpd, adresse coova 1.0.0.0, etc.) |
| |
| ---- 2.0 ---- |
| ----------------------- 2.0 --------------------- |
| - mise à jour de la documentation technique |
| - ajout des switchs en '--' pour remplacer les '-' des scripts |
| - accès authentifié à la la page de garde du centre de gestion |