Skip to main content

Server Software 8.9.0

March 2021

Features

Security: New Anti-Virus vendor support Security: Updates for various Security Technical Implementation Guides (STIG) SNMPv3 configuration enhancements Bundles NetAcquire Deterministic Linux (NDL) 1.9.0

MissionView Requirement

New and/or upgraded NetAcquire servers running server software version 8.9.0, and that are configured with security features enabled, must also use updated client software to take advantage of new security features. This includes updating to MissionView 1.6.0.

Client Toolkit Requirement

Any applications built with NetAcquire Software Toolkits require upgrades to the latest associated toolkit version to take advantage of new security features. Please contact NetAcquire Support for details regarding toolkits.

mailto:support@netacquire.com

Linux and Libraries

kernel v4.14 (v4.14.225-rt108) curl v7.74.0 openssl v1.1.1j sudo v1.9.5p2

Security Technical Implementation Guide

Apache Server 2.4 UNIX Server

  • Multiple Log formatting and capture updates

General Purpose Operating System SRG

  • Login delay

Application Security and Development Security

  • Unnecessary application accounts must be disabled, or deleted
  • The application must execute without excessive account permissions
  • The application must provide audit record generation capability for HTTP headers including User-Agent, Referrer, GET, and POST
  • The application must set the secure flag on session cookies
  • Isolate security functions from non-security functions
  • The application must implement cryptographic mechanisms to prevent unauthorized disclosure of information…
  • The application must not disclose unnecessary information to users
  • The application must not be vulnerable to XML-oriented attacks
  • The application must not be vulnerable to overflow attacks
  • The application must have the capability to mark sensitive/classified output when required

Issues

  • Security: Snapshot security enhancements (6964)
  • Security: Daemon user accounts isolated (7511)
  • Security: Audit log access limited (7546)
  • Security: Ensure server anonymity of web headers (7589)
  • Security: Enforce upload authentication and authorization (7609)
  • Security: User account lockout stability improvements (7568, 7661, 7662, 7695)
  • Apache cache control modernizations (7696)
  • Paced I/O stability fixes (7629)
  • Time zone configuration page formatting fixes for certain zones (7689)
  • User account change stability updates (7693)
  • Registry file write permission corrections (7697)
  • Frame synchronizer stability fix (7699)
  • Software upgrade page previous-version fields addition (7701)
  • Software upgrade web-access stability fix (7720)