V3.1.3 [ Répondre ] Par : Richard REY (Rexy) on 2017-07-16 12:53 | [forum:486548] |
Bonjour La version 3.1.3 vient d'être mise en ligne. Elle apporte une multitude de petites évolutions dans tous les domaines (sécurité, ACC, certificat "Let's Encrypt", etc.). La mise à jour est automatique sur une version 3.1.x -------------------- 3.1.3 -------------------- NEWS - Add Let's Encrypt integration. - Change the ALCASAR CA certificate extension to .crt (to be added more easily in Firefox). - Allow hostname different than "alcasar". - Check/remove conf file of removed NIC. - move udev rule for huawei GSM modem in "/lib/udev" ("/etc/udev" will be deprecated) ACC - New network configuration UI (dynamic user-friendly diagram form). - Show/hide advanced attributes dynamically in user/group creation and edition. - Print parsed log of Fail2Ban instead of raw log lines. - New ACC menu (with JS instead of PHP reload). - Add option to allow unsecure login for user interception. BUGS - Display info field for DHCP static equipment - Fix bug where the encrypted password is printed in a random column in the ACC user editor. SECU - Rename Fail2Ban rule "alcasar_acc-htdigest" to "alcasar_acc" (iptables does not support long name). - Remove '/usr/bin/openssl' sudo privilege for 'apache' user. - Escape exec() parameters in ACC to prevent RCE attacks. - Update NfSen to 1.3.8 (Fix a security vulnerability). |