Skip to main content

2.5.0

2 mins

This version focussed on SSO (single sign on) and security updates.

  • [#1630]: Added a feature to send CargoLink PINs on demand
  • [#4690]: Improved the SNMP agent by adding a system status information
  • [#4919]: Improved the database replication monitor
  • [#4920]: Added a feature to allow for custom data stored with a CargoLink
  • [#4925]: Added a feature to detect and mitigate brute force attacks on CargoLinks
  • [#4926]: Added a feature to allow CargoLinks of type “directory” via the API
  • [#4927]: Added a feature to provide a manifest in JSON format for a CargoLink via the API
  • [#4928]: Added a feature to allow SAML based SSO authentication/authorisation
  • [#4938]: Fixed an issue where the log archiving failed to start
  • [#4940]: Improved the archiving of old log and session data
  • [#4964]: Improved the SMS status checks by using asynchronous scheduling
  • [#4965]: Fixed an issue where the antivirus report tried to process a missing file
  • [#4973]: Updated to rails 3.2.17 for security improvements
  • [#4991]: Improved the display of confidential messages
  • [#5019]: Improved the CargoLink manifest cache
  • [#5027]: Updated openssl to version 1.0.1g for security improvements
  • [#5031]: Fixed an issue where notifications for file uploads in a CargoLink have not been sent
  • [#5045]: Improved user input handling to prevent stored XSS vulnerabilities
  • [#5047]: Improved error messages to prevent reflected XSS vulnerabilities
  • [#5056]: Improved the failed login detection and IP blocking rules
  • [#5057]: Improved the SW version display to prevent information leakage
  • [#5058]: Improved the error messages sent by the webserver
  • [#5060]: Improved the SFTP cipher selection
  • [#5074]: Added a feature to enforce authentication even for CargoLink access
  • [#5077]: Improved the SSL cipher and protocol selection for HTTPS, added the X-Content-Security-Policy header