Skip to content

Releases: pandorafms/pandorafms

777 LTS (Andromeda)

11 Jun 10:22
@rafaelameijeiras rafaelameijeiras
v777-LTS
3c40981
Compare
Choose a tag to compare
777 LTS (Andromeda) Latest
Latest

OUM 777 Jun 11th, 2024

This is an LTS release containing more than 500 bug fixes and minor changes from the previous version. Please review the release note in detail before upgrading:

Release Notes

New Features since Last LTS Version (772)

Revamped GUI: The web console has been renewed, harmonizing colors and frame sizes across multiple sections and features.
New HA System: Fully integrated high availability system, allowing for geographical distribution of redundant database nodes, managed from the console with automatic event detection and switchover capabilities.
New Multi-Process Mode: Servers can now be started as separate processes, allowing independent management of each server.
Continuous System Security Monitoring (Hardening): Implemented using CIS recommendations to audit and monitor security hardening across the organization.
Security Vulnerability Monitoring: Monitors system security by identifying vulnerable installed applications using known vulnerability databases like CVE and NVD.
Discovery 2.0: Centralized monitoring implementation with automatic discovery through downloadable wizards from the plugin library.
API 2.0: Introduced a new format and dynamic documentation accessible from the Pandora FMS console.
ITSM and PFMS Integration: Simplified integration for ticket generation and management, alerts, and event responses between Pandora FMS and Pandora ITSM.
New Features in Network Configuration Management (NCM): Enhanced reports, bulk operations, interface improvements, configuration history, backup management, planner, and dashboard.
New Tool: Graph Analytics: Designed for problem detection, comparative analysis, and pattern detection in agent and module graphs.
Vertical Service Trees View: An alternative view for displaying numerous services, based on client feedback.
Version Obsolescence Management: Allows assigning expiration dates to OS versions and generating support expiration reports.
New Agent Deployment Wizard: Simplifies agent deployment for inexperienced users in Windows, Linux, or Mac environments.
Data Export and Import System: Enhanced flexibility for copying or moving items between PFSM servers, including Custom Graph, Custom Report, Dashboard, GIS Map, Network Map, Policy, Service, and Visual Console.
Correlation Engine Refactoring: Separate log and event alerts with optimized rule sets for improved data processing.
Demo Data Loading: Option to generate fully functional demo data in the Settings menu.
New Widgets: Event Cardboard, Heatmap, and Agent Hive View widgets added to enhance data visualization and interaction.
Simple Graphic Element in Visual Consoles: Added simplified graph elements for monitored metrics, configurable in color and size.
Improved Android Console: Enhancements made to the Pandora FMS console for Android.
New Report Schedule View: More user-friendly view for scheduling reports in the Reporting menu.
Complex Alerts: Allows creation of new alert templates for advanced calculations, such as averages and maximums/minimums of monitored data.
IP Information in Network Explorer: Real-time IP information using Whois.
Multiple Selection on Visual Consoles: New feature to select, move, resize, or delete multiple items simultaneously.
New Native PowerShell® Module: For Windows agents, allowing complex PowerShell commands and configurations.
Discovery Kubernetes: Centralized version of the Kubernetes Enterprise plugin for retrieving data from node, pod, and deployment APIs.
New Discovery PFMS 2.0 Plugin for Proxmox®: Centralized version of the Proxmox Enterprise plugin for retrieving data from nodes, backups, virtual machines, lxc containers, and storage APIs.
pandora_collectd Plugin: Collects data from collectd and sends it to Pandora FMS for processing and storage, enabling the monitoring of devices using collectd, generating historical data, creating reports, dashboards, and triggering alerts.

Fixed vulnerabilities

  • Removed Indexes and added ServerTokens Prod in the recommended HTTPD for the Apache web server..

  • Fixed the command update_agent in PFMS CLI, so that it does not support JavaScript code.

  • CVE-2024-35306 Thanks to Aleksey Solovev (Positive Technologies), Fixed an SQL injection vulnerability in PFMS API 1.0.

  • CVE-2024-35305 Thanks to Aleksey Solovev (Positive Technologies), Fixed an OS command injection vulnerability in event responses both from nodes and the command Command Center (Metaconsole).

  • In the Ajax mechanism of the PFMS Web Console, the Arbitrary File Write (AFW) vulnerability was fixed.

Assets 13

Tools

13 May 08:25
@rafaelameijeiras rafaelameijeiras
tools
2dd3e30
Compare
Choose a tag to compare
Tools

This release is to have tools available for installation scripts

Assets 4

v772-LTS

10 Apr 08:37
@rafaelameijeiras rafaelameijeiras
v772-LTS
f266f4a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v772-LTS

LTS Version 772 (Renaissance)

Assets 11