Skip to main content

Server Software 8.8.0

October 2020

Features

  • Security: Added support for client certificate authentication
  • Security: Updated authorization support for CORBA/SSH
  • Security: Updates for various Security Technical Implementation Guides (STIG)
  • Security Manager page
    • Import for server private key and certificate
    • Import for client CA certificate
    • Usability updates
  • Bundles
    • NetAcquire Deterministic Linux (NDL) 1.8.0

MissionView Requirement

New and/or upgraded NetAcquire servers running server software version 8.8.0, and that are configured with security features enabled, must also use updated client software to take advantage of new security features. This includes updating to MissionView 1.5.0.

Client Toolkit Requirement

Any applications built with NetAcquire Software Toolkits require upgrades to the latest associated toolkit version to take advantage of new security features. Please contact NetAcquire Support for details regarding toolkits.

mailto:support@netacquire.com

Linux and Libraries

  • kernel v4.14 (v4.14.225-rt108)
  • curl 7.71.1
  • apache-httpd 2.4.46
  • openssl v1.1.1j
  • openssh 8.3p1
  • ffmpeg 4.2.2

Security Technical Implementation Guide

  • Apache Server 2.4 UNIX Server
  • Load unique_id_module
  • Require TLS v1.2
  • Disable HTTP trace
  • Application Security and Development Security
  • Use sha256 instead of md5 to hash passwords
  • XSS mitigation – restrict frame embedding to same site

Issues

  • Security: Compressed image save/restore and update directory restricted to admin
  • Security: Update for mode change access violation
  • Security: Prevent user Modify+SSH permission access violations
  • Security: Ensure server respects HTTPS (disallow HTTP) at all times during startup after upgrade
  • Security: Improve web field input handling
  • Security: Password change now requires current password
  • Stability update for mismatched user account information
  • Web server and webmin handling for DNS unreachable case
  • Manage user can now access webmin pages
  • Data flow Switch value propagation updates for explicit triggering
  • Update to handle slow startup virus scanning
  • Updates to registry atomic write notifications
  • Upgrade page no longer viewable by non-admin users
  • Log rotation updates to include various daemons
  • Updated temperature test handling
  • Frame Synchronizer updates
  • Central Authentication: SAMBA/PAM configuration sync improved