What's new in Grafana v8.0?
Grafana v8.0 alerts: centralizes alerting information
Library panels
Real-time streaming
Prometheus metrics browser
Bar chart visualization (beta)
State timeline visualization (beta)
Status history visualization (beta)
Histogram visualization (beta)
Time series visualization updates
Node graph visualization updates
Pie chart visualization updates
Panel editor updates
Look and feel update
Download logs
Inspector in Explore
Explore log improvements
Plugin catalog
Performance improvements
Initial startup and load performance
Operational and runtime performance
Azure Monitor data source
Azure Resource Graph
Managed Identity
Elasticsearch data source
Use semver strings to identify Elasticsearch version
Generic support for template variables
Allow omitting field for metrics that support inline scripts
Allow setting a custom limit for log queries
Guess field type from first non-empty value
Graphite data source
Variable metric names expand
Map Graphite queries to Loki
Jaeger data source
You can now use more parameters to find traces.
Authentication updates
JWT support
v2.10.11
========
Security Fixes
--------------
- templating engine fix for not preserving usnafe status when trying to preserve newlines. CVE-2021-3583
Bugfixes
--------
- gather_facts, package, service - fix using module_defaults for the modules in addition to the action plugins. (https://github.com/ansible/ansible/issues/72918)
- psrp - Always cleanup the last run pipeline if a second pipeline is invoked to avoid violating any resource limits.
- psrp - Fix error when resetting a connection that was initialised but not connected - (https://github.com/ansible/ansible/issues/74092).
- psrp - Try to clean up any server-side resources when resetting a connection.
Release of v1.0.0
Hiredis v1.0.0 marks the first stable release of Hiredis and introduces
RESP3 support, SSL connections, allocator injection, better Windows support,
and more.
IMPORTANT: There are breaking changes in this release meaning your code
will need to be recompiled and may need small changes. The exact
details of the breaking changes can be found in README.md.
CHANGELOG.md has a detailed list of changes between v0.14.1 and v1.0.0.
4.2 Stable
Breakthroughs
Flexible Alert Handling
Added recipients and endpoints to send alerts to different recipients on different channels, including email, Discord, Slack and Elasticsearch
Initial SCADA protocol support
Many internal components of ntopng have been rewritten in order to improve the overall ntopng performance, reduce system load, and capable of processing more data while reducing memory usage with respect to 4.0.
Cybersecurity extensions have been greatly enhanced by leveraging on the latest nDPI enhancements that enabled the creation of several user scripts able to supervise many security aspects of modern systems.
Behavioral traffic analysis and lateral traffic movement detection for finding cybersecurity threats in traffic noise.
Initial Scada support with native IEC 60870-5-104 support. We acknowledge switch.ch for having supported this development.
Consolidation of Suricata and external alerts integration to further open ntopng to the integration of commercial security devices.
SNMP support has been enhanced in terms of speed, SNMPv3 protocol support, and variety of supported devices.
New REST API that enabled the integration of ntopng with third party applications such as CheckMK.
New features
Traffic Behavioral Analysis
Periodic Traffic
Lateral Movements
TLS with self-signed certificates, issuerDN, subjectDN
Support for Industrial IOT and Scada with modbus, DNP3 and IEC60870
Support for attack mitigation via SNMP
Active monitoring
Support for ICMP v4/v6, HTTP, HTTPS and Speedtest
Ability to generate alerts upon unreachable or slow hosts or services
Detection of unexpected servers
DHCP, NTP, SMTP, DNS
Services map
nIndex direct to maximixe flows dump performance
MacOS package
Improvements
Implements per-category indicator of compromise score
Flexible configuration import/export/reset
Ability to import/export/reset all the ntopng configurations or parts of it
Increased nIndex dump throughput by a factor 10
Increased user scripts execution throughput
Massive cleanup/simplifications of plugins to ease community contributions
Improved cardinality estimation (e.g., number of contacted hosts, number of contacted ports) using Hyper-Log-Log
Added DSCP information
Reworked handling of dissected virtual hosts to improve speed and reduce memory
nEdge
Support for hardware bypass
Fixes
Fixed race conditions in view interfaces
Fixed crash when restoring serialized hosts in memory
Fixed conditions causing high CPU load
Fixes CSRF vulnerabilities when POSTing JSON
Fixes heap-use-after-free on HTTP dissected last_url
3.4 Stable
New Features
Completely reworked and extended QUIC dissector
Added flow risk concept to move nDPI towards result interpretation
Added ndpi_dpi2json() API call
Added DGA risk for names that look like a DGA
Added HyperLogLog cardinality estimator API calls
Added ndpi_bin_XXX API calls to handle bin handling
Fully fuzzy tested code that has greatly improved reliability and robustness
New Supported Protocols and Services
QUIC
SMBv1
WebSocket
TLS: added ESNI support
SOAP
DNScrypt
Improvements
Python CFFI bindings
Various TLS extensions and fixes including extendede metadata support
Added various pcap files for testing corner cases in protocols
Various improvements in JSON/Binary data serialization
CiscoVPN
H323
MDNS
MySQL 8
IEC 60870-5-104
DoH/DoT dissection improvements
Office365 renamed to Microsoft365
Major protocol dissection improvement in particular with unknwon traffic
Improvement in Telegram v6 protocol support
HTTP improvements to detect file download/upload and binary files
BitTorrent and WhatsApp dissection improvement
Spotify
Added detection of malformed packets
Fuzzy testing support has been greatly improved
SSH code cleanup
Fixes
Fixed various memory leaks and race conditions in protocol decoding
NATS, CAPWAP dissector
Removed HyperScan support that greatly simplified the code
ARM platform fixes on memory alignment
Wireshark extcap support
DPDK support
OpenWRT, OpenBSD support
MINGW compiler support
MISC
Created demo app for nDPI newcomers
Removed obsolete pplive and pando protocols
0.4.1:
This is a bug fix release. This fixes a bug with Promscale on TimescaleDB 2.3.
It also adds some bug and security fixes. We deem this upgrade low priority:
you should only update if you are switching to TimescaleDB 2.3.
0.4.0:
At a high level, this release contains:
Stable version of new HA system (was previously experimental)
Support for multi-tenancy
Improved PostgreSQL permissions
Add text format ingest
Improvements to locking behavior
Stable version of new HA system
This release adds support for inserting data into compressed chunks
and improves performance when inserting data into distributed hypertables.
Distributed hypertables now also support triggers and compression policies.
The bug fixes in this release address issues related to the handling
of privileges on compressed hypertables, locking, and triggers with
transition tables.
New in 2.4:
* Added support for the following platforms:
(Previously, a build on these platforms failed.)
- arm64: macOS 11.
- arm: FreeBSD 12.
- sparc: Solaris 11 32-bit.
New in 2.3:
* Added support for the following platforms:
(Previously, a build on these platforms failed.)
- x86_64: FreeBSD 13, OpenBSD 6.5 and newer.
- powerpc64: AIX 7 with xlclang compiler.
* Fixed a couple of multithread-safety bugs in the trampoline and callback
packages.
## Verify(text) ensures a newline at end of files
### BREAKING CHANGE
Since most tools will ensure a newline at the end of a file, approval
test is now adding this to allow copying approval results in diff tools
to work correctly. Please note that this will break all you previous
approvals that do not end with a newline!
This will show by your diff tool opening with two files that look
identical, but one actually has a newline at the end.
### Upgrade Path
We suggest you use ReporterByCopyMoveCommandForEverythingToClipboard()
as your Default Reporter to re-approve all your files.
## Namer handles multiple nested methods in a unit test
Previously if you had nested methods in your unit test, the names would
incorrectly identify the help method rather than the test method. This
is now fixed.
The omppool file is both in PLIST and PLIST.Linux. One needs to go. This hotfix
just removes the typo. Do we remove PLIST.Linux and assume every platform
of interest has working OpenMP? Add Darwin dep for parallel/openmp?
