зеркало из https://github.com/mozilla/MozDef.git
87 строки
3.0 KiB
Plaintext
87 строки
3.0 KiB
Plaintext
# Changelog
|
|
All notable changes to this project will be documented in this file.
|
|
|
|
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/)
|
|
|
|
## [Unreleased]
|
|
|
|
## [v1.38.5] - 2019-04-09
|
|
### Added
|
|
- Support for CSS themes
|
|
|
|
### Changed
|
|
- The CI/CD order to now build docker images in CodeBuild, upload them
|
|
to DockerHub and then pull them down in the packer instance. Updated docs.
|
|
- Assert TravisCI Python version in advance of change of Travis default to 3.6
|
|
|
|
### Fixed
|
|
- Dashboard error on docker spinup
|
|
|
|
|
|
## [v1.38.4] - 2019-04-08
|
|
### Fixed
|
|
- Docker image tagging for git version tag builds
|
|
- Correctly propagate the source ip address to the details.sourceipaddress in Duo logpull
|
|
- Invalid literal in squidFixup.py destionationport field
|
|
- Lowercase TAGS in squidFixup.py
|
|
- Adding check for None type object in date fields to address GuardDuty null date
|
|
|
|
### Added
|
|
- Documentation on the CI/CD process
|
|
- A summary to squidFixup.py
|
|
- Tags assertions to tests
|
|
|
|
## [v1.38.3] - 2019-04-01
|
|
### Fixed
|
|
- AWS CodeBuild tag semver regex
|
|
|
|
## [v1.38.2] - 2019-03-29
|
|
### Fixed
|
|
- Remaining references to old alertplugins container
|
|
|
|
## [v1.38.1] - 2019-03-29
|
|
### Added
|
|
- Enable CI/CD with AWS CodeBuild
|
|
- Create AMIs of MozDef, replicate and share them
|
|
- Link everything (container images, AMIs, templates) together by MozDef version
|
|
|
|
### Changed
|
|
- Publish versioned CloudFormation templates
|
|
- RabbitMQ configured to use a real password
|
|
|
|
## [v1.38] - 2019-03-28
|
|
### Added
|
|
- Create alert plugins with ability to modify alerts in pipeline
|
|
|
|
### Changed
|
|
- Renamed existing alertplugin service to alertactions
|
|
- Updated rabbitmq docker container to 3.7
|
|
|
|
### Fixed
|
|
- Resolved sshd mq plugin to handle more types of events
|
|
|
|
## [v1.37] - 2019-03-01
|
|
### Added
|
|
- Watchlist - use the UI to quickly add a term (username, IP, command, etc.) that MozDef alerts on
|
|
- Generic Deadman - use a simple config file to validate that expected events are appearing in a given time window (and alert an Error when they do not)
|
|
|
|
### Changed
|
|
- Improve error handling on Slack bot
|
|
- Improve Slack bot alert format for better readability
|
|
- Minor UI adjustments
|
|
|
|
### Fixed
|
|
- Some Duo events were not correctly displaying the source IP address. It is now always the access device IP
|
|
- Fixed defaults for Slack bot to ensure more consistency each time it loads
|
|
- Added checks on sending SQS messages to only accept intra-account messages
|
|
- Improved docker performance and disk space requirements
|
|
|
|
[Unreleased]: https://github.com/mozilla/MozDef/compare/v1.38.5...HEAD
|
|
[v1.38.5]: https://github.com/mozilla/MozDef/compare/v1.38.4...v1.38.5
|
|
[v1.38.4]: https://github.com/mozilla/MozDef/compare/v1.38.3...v1.38.4
|
|
[v1.38.3]: https://github.com/mozilla/MozDef/compare/v1.38.2...v1.38.3
|
|
[v1.38.2]: https://github.com/mozilla/MozDef/compare/v1.38.1...v1.38.2
|
|
[v1.38.1]: https://github.com/mozilla/MozDef/compare/v1.38...v1.38.1
|
|
[v1.38]: https://github.com/mozilla/MozDef/compare/v1.37...v1.38
|
|
[v1.37]: https://github.com/mozilla/MozDef/releases/tag/v1.37
|