New
- New automatic database maintenance job: The Security Console will now adaptively tune the auto-vacuum routine for the PostgreSQL database on a daily basis to better scale with larger tables that would benefit from more frequent vacuum operations.
Customer Requested
- New SSH key support: We added support for SSH ECDSA public key authentication.
Improved
- Updated Center for Internet Security (CIS) policies: We updated the following CIS policies:
- Red Hat Enterprise Linux 6, version 3.0.0
- CentOS Linux 6, version 3.0.0
- Oracle Linux 6, version 2.0.0
Fixed
- Our check for the Extended Internet Service Daemon (also known as xinetd) will no longer start the service in order to verify that it's installed.
- We fixed an issue where requests to the
/api/3/{assetId}/vulnerabilitiesAPIv3 endpoint could have returned vulnerability results that were inconsistent with the data for that same asset shown in the Security Console interface. - We fixed an issue with our Center for Internet Security (CIS) IOS 15 Level One v4.0.0 policy that caused inaccurate results for rule 1.5.8 when assessed against assets running Cisco IOS 15.2.
- We fixed multiple fingerprinting issues for assets running Solaris 11.4 and later where the system version was not correctly identified and installed packages were not properly enumerated.