24.10.003 changelog

24.10.003

Released on 29 October, 2024.

Client

Updated the help menu item so it focuses the help window if it already exists.
Previously server-sent configuration would not apply until after the first successful API command after boot. Now stored server-applied configuration is loaded at boot time.

When generating support bundles, users can now optionally add support details and contact information to their submission.

Resolved an issue with BGP functionality that negatively impacted service availability on reload.
Patched a bug in Controller clustering that would cause excessive traffic and log noise about peer members being known as new, different peers.
Fixed an authentication route that could potentially expose an open redirect.
Controllers now enforce stricter Set-Cookie settings.
Closed an avenue for server information disclosure in the sos.service daemon.
Grafana’s cookie security defaults have been hardened.
Fixed broken links to collections when configuring web filtering.

The Control Plane settings interface now enforces correct values for web filtering collections if present.
Controller support bundles now include more-complete wireguard interface information. Private keys are not included.
If a Controller SoS fails to send correctly, the bundle payload is now cached for a short period of time. Administrators may optionally choose to retrieve this file to share out-of-band in situations like air-gapped Controllers or when the submission API endpoint is otherwise unavailable.
The conntrack utility is now available on Controllers by default.
Log out and log in buttons are now more prominently displayed on Control Plane pages.