Monthly Release Notes - October 2019

Jump to:

Automate


Automate Schedule

Version 4.4.1
New Features
  • Agent Tiers have been consolidated into two tiers to simplify product licensing across multiple operating systems.
Enhancements
  • Upgraded Ruby on Rails to version 5.2 to enhance security and performance.
  • Upgraded JRuby to version 9.2.5.0 to enhance security and performance.
  • Upgraded the PostgreSQL database to the 64-bit version 10.6 to enhance security and performance.
  • Upgraded Apache Tomcat to 7.0.92 to enhance security and performance.
  • Upgraded to OpenJDK Java 11 to enhance security and performance.
    NOTE: Windows Server 2008 R2 will continue to use Java 8.
Other Fixes
  • Fixed a vulnerability to prevent Reflected XSS attacks.
  • Fixed a vulnerability to prevent SQL Injection attacks.

Back to Top

 

GoAnywhere


Version 6.2.3
New Features
  • Updated the SAML response XML parser to prevent access to external entities by default for enhanced security.
Other Fixes
  • Improved the audit log indexing process to better handle very large data sets that were causing memory issues during a full index rebuild on certain databases.
  • Added missing labels to the protocol filter on the Job File Audit log page.
  • Fixed issue with Quick Downloads REST API where an invalidated session ID was being returned to client.
  • Fixed an issue where user role access was not properly updated after deleting an Admin Group.
  • Fixed an issue where user role access was not properly updated after LDAP group synchronization.
  • Fixed an issue where a 500 error would occur when redirecting a SAML authenticated user to the logout page on session timeout. This was introduced in version 6.2.2.

Back to Top

 

Halcyon


Network Server Suite

Version 11.0 (AIX and Linux Agents only. These are backward compatible with v10.3)
Other Fixes
  • A fix has been applied so that releasing a Linux Log File Rule no longer causes old entries to be processed.
  • Data processing now gathers data for all collections as expected.
  • Automatically suspending a rule 'Until Triggered x Times' now raises an alert as expected.
  • A fix has been applied so that CPU and filesystem data is now correctly parsed on AIX devices when running under regional settings.
  • A fix has been applied so that AIX agents can now be run as a subsystem.
  • Installers now check for both the existence of a SUSE Firewall and also if it is running.

Back to Top

 

Robot


Robot HA

Version 12.07
New Features
  • Assure MIMIX to Robot HA transition now available.

Enhancements
  • During the upgrade, we will be recompiling QCLSRC in library RSFUSER. If you have customized any programs in RSFUSER, you will need to manually recreate those changes after the upgrade.
Other Fixes
  • Fixed issue with sync jobs intermittently showing as late/lagging when they should not be.

  • Data queues are now being replaced correctly on backup when sync jobs run.
  • Fixed issue with QS36F for triggers and clean process.

  • RHA1031 and CHGRSFSA no longer allows OMIT (*ALL/*ALL).

  • Journal entry types D-CG and F-MC now handled correctly.

  • Fixed issue with journal apply job receiving error while deleting SQL tables.

  • Now saving access paths when doing a refresh of a file.

Back to Top

 

Safestone


DetectIT

Version 14.4.9
Enhancements
  • Added reports to the Db2 Mirror activity report.

    For activity relating to Db2 Mirror replication services, QAUDJRN Entry type M7, the following reports are available:

    • MSC443L2 AUDIT - Db2 Mirror Replication Services
    • Plus MY* and MZ* consolidated versions to report by system name and chronologically, respectively

    Created additional DetectIT Message IDs to allow flexibility for the following Message Action processing alerts:

    • Event 'A' - MLT1995
    • Event 'D' - MLT1996
    • Event 'P' - MLT1997
    • Event 'R' - MLT1998
    • Event 'S' - MLT1999

    The following reports are available for activity relating to Db2 Mirror product services, QAUDJRN Entry type M8:

    • MSC443L3 AUDIT - Db2 Mirror Product Services
    • Plus MY* and MZ* consolidated versions to report by system name and chronologically, respectively

    Created additional DetectIT Message Ids have been created to allow flexibility for Message Action processing alerts:

    • Event 'A' - MLT2000
    • Event 'C' - MLT2001
    • Event 'F' - MLT2002
    • Event 'I' - MLT2003
    • Event 'R' - MLT2004
    • Event 'S' - MLT2005
    • Event 'T' - MLT2006
    • Event 'W' - MLT2007
  • Created a new version of the DetectIT User Profile Listing (MSP095). The new version prints the same details as before, but includes descriptions of User Profiles, Company Numbers, Menus, and Application Codes.

    This new version of this report is not fully integrated into the DetectIT Menu system.

  • Updated the DetectIT IBM i Release Level cross reference table to include details for IBM i 7.4. For a DetectIT Network, this allows the administrator to configure a system running IBM i 7.4 (V7R4M0).

    The cross reference table is available to print the DetectIT Menu structure by selecting option 7 then option 42. Alternatively, you can print directly from the ALERT profile (or any profile configured with the appropriate DetectIT MS application code level) using the following:

    • SECEXEC PGMNAM(MSP5331)
  • When maintaining the system audit journal codes to be collected with DetectIT, the administrator can now select the codes that are associated with *JOBBAS and *JOBCHGUSR. These values can be entered for the auditing System Values of QAUDLVL and QAUDLVL2. Both values are part of the *JOBDTA auditing value. IBM introduced *JOBBAS and *JOBCHGUSR to allow the administrator more flexibility to determine the type of job related activity to collect within the QAUDJRN system audit journal.

  • When using Work with QAUDJRN Data Collection, the administrator can switch the collection of the Db2 Mirror related audit events on or off as needed. In order to do so, *SYSMGT must exist within the QUADLVL or QAUDLVL2 System Values. The related Db2 Mirror activity is defined by the following QAUDJRN Entry types:

    • M0 - Db2 Mirror setup tools
    • M6 - Db2 Mirror communication services
    • M7 - Db2 Mirror replication services
    • M8 - Db2 Mirror product services
    • M9 - Db2 Mirror replication state
  • Added the following reports for activity relating to Db2 Mirror communication services, QAUDJRN Entry type M6:

    • MSC443L1 AUDIT - Db2 Mirror Communication Service
    • Plus MY* and MZ* consolidated versions to report by system name and chronologically, respectively.

    Added the following DetectIT Message Ids to allow flexibility for Message Action processing alerts:

    • Event 'A' - MLT1992
    • Event 'C' - MLT1993
    • Event 'R' - MLT1994
  • Added the following events within the Service Tools User ID and Attribute Changes Entry type, DS, to IBM i 7.4:

    • D - Delete service tools user ID using the DLTSSTUSR command.
    • H - Change service tools user ID using the CHGSSTUSR command.
    • R - Create service tools user ID using the CRTSSTUSR command.
    • S - Change service tools security attributes using the CHGSSTSECA command.

    All of the above events are available for reporting the following existing DetectIT reports:

    • MSC443C6 "AUDIT - DST Password reset".
    • Plus the corresponding MY* and MZ* prefixed consolidated versions of the reports.

    Added DetectIT Message Ids to provide the administrator with flexibility for Message Action processing alerts relating to each of these new events:

    • D - MLT1987
    • H - MLT1988
    • R - MLT1989
    • S - MLT1990
  • Added the following QAUDJRN Entry Types toIBM i 7.4. These new items relate to Db2 Mirror for IBM i.

    • M0 - Db2 Mirror Setup Tools
    • M6 - Db2 Mirror Communication Services
    • M7 - Db2 Mirror Replication Services
    • M8 - Db2 Mirror Product Services
    • M9 - Db2 Mirror Replication State

    In addition to the above, the QAUDJRN entries now include more data for activity related to Cluster Operations (Entry Type CU), Service Tools User ID, and Attribute Changes (DS). Consequently, the default lengths have increased. These updated values are available within the Work With Entry Type Overrides DetectIT auditing option. The Db2 Mirror auditing Entry Types are also included with the associated data lengths.

  • Added the following reports for activity relating to Db2 Mirror setup tools, QAUDJRN Entry type M0:

    • MSC443K9 AUDIT - Db2 Mirror Setup Tools
    • Plus MY* and MZ* consolidated versions to report by system name and chronologically, respectively.

    Added the following DetectIT Message Ids to allow flexibility for Message Action processing alerts:

    • Event 'A' - MLT1991
  • Added the following reports for activity relating to Db2 Mirror replication state, QAUDJRN Entry type M9

    • MSC443L4 AUDIT - Db2 Mirror Replication State
    • Plus MY* and MZ* consolidated versions to report by system name and chronologically, respectively

    Added the following DetectIT Message Ids to allow flexibility for Message Action processing alerts:

    • Event 'C' - MLT2008
  • Compliance Center for IBM i now provides the ability to construct and run queries over activity relating to Db2 Mirror for IBM i. This includes activity that generates the following QAUDJRN Entry Types:

    • M0 - Db2 Mirror Setup Tools
    • M6 - Db2 Mirror Communication Services
    • M7 - Db2 Mirror Replication Services
    • M8 - Db2 Mirror Product Services
    • M9 -Db2 Mirror Replication State
Other Fixes
  • Created the CHKPRFPRM command to prevent the following error message: "Text not available for message MLT0804 file QCPFMSG". This error previously occurred if the SUPGRPPRF value was not correct within the DetectIT Profile Maintenance located in Different Parameters/Different Systems.

  • The Network Traffic Controller Log Pre-Filtering logic ensures that the Global level filtering works successfully. Previously, the specific Application level Pre-Filtering worked but not at the Global level.

  • When using DetectIT Profile Maintenance, the Special Authority values associated with the User Profile attempting to perform the maintenance are verified to determine if that profile has the required authority values to complete the activity.

    For example, for User Profiles attempting to maintain any profile, All Special Authority values associated with the specific User Profile, its main Group Profile, and any Supplemental Group Profiles are used during DetectIT Profile Maintenance.

  • When retrieving the QHST log data, the program name within the DetectIT logs is populated with the correct value.

  • The MCH0603 received by MSC940B1 error message is no longer displayed when running the Print SQL requests report, MSP634.

  • When using the DetectIT DSPPRF command to output DetectIT Profile parameter details to an output file, the correct value for Activate in Software is now displayed in the DPACTD field. For profiles that are configured with Activate in Software set to P, the DPACTD field is now set to P for Partial activation of DetectIT menu processing only. The value within the DPACTD field should now match that as displayed within the DetectIT Profile Inquiry Details.

  • Updated the Help Text Panel Group for Set Up Auditing Details to provide information about *PTFOBJ and *PTFOPR. These values can be included in QAUDLVL and QAUDLVL2 System Values for auditing IBM related PTF activity.

Back to Top

 

 

Copyright © HelpSystems, LLC.
All trademarks and registered trademarks are the property of their respective owners.
Last Published: 201910160214