Release Notes: User can now choose the way alerts are sorted. Asynchronous DNS resolution is now supported in the alert view as well as the message summary. The alert summary view now handles portlist and ip_version service fields, and shows the alert's messageid. An exception when rendering ToolAlert was fixed along with double classification escaping. The Heartbeat view was sped up. A Polish translation was included. There were also various bugfixes and cleanups.
Release Notes: An auto-refresh system was implemented. The ability to filter on missing, offline, online, or unknown agents was added. It is now easier to read each agent status in collapsed mode. A filter load/save/delete problem with translation was fixed. New "My account" tabs were added under the Settings section. messageid and analyzerid parameters were added, allowing a link to a Prewikka alert from an external tool. The timeline control table layout was improved. Translation of strings possibly using plural forms was fixed. Various bugs were fixed.
Release Notes: A new powerful and scalable agent view, grouping agent together by Location and Node. This release has been internationalized: a user can choose the language used in their settings tab, or specify a default locale using the "default_locale" configuration keyword. Current translations: Brazilian Portuguese, French, German, Russian, and Spanish. In the Alert/Heartbeat summary view, analyzers are numbered backward to reflect the ordering in the analyzer list. Support has been added for resizing the menu. A Konqueror rendering bug with the inline filter has been fixed. There are various bugfixes.
Release Notes: All sources and targets are not shown if they reach a predefined limit; an expansion link is provided instead. Two new views were added in the Events section: CorrelationAlert and ToolAlert. The ability to filter/aggregate on all IDMEF paths was added. The user may choose which criteria filter operator to use. Analyzer aggregation was added. When a session expires and the user logs in, she is directed to the last page she attempted to access. When an error occur, the default layout is preserved. Non-aggregated views are faster by around 50%. IDMEF Action, SNMPService, and WebService class are supported. Support for small screen resolution was improved.
Release Notes: Database performance was improved by reducing the number of queries. CleanOutput filtering was activated (with a lot of escaping fixes). More action logging was added. Bugs with the error pages' Back/Retry buttons were fixed. An error which occurred when grouping by user was fixed. A template compilation error with Cheetah version 2 was fixed.
Release Notes: User configuration can be Saved and loaded when using CGI authentication mode. The Prewikka version is shown in the About page. The Python logging facility is used (available backends are stderr, file, smtp, syslog), and multiple simultaneous handlers are supported. Anonymous authentication was fixed. An external process going into zombie state was fixed. The sqlite schema was fixed. The correct alertident is displayed for an invalid CorrelationAlert analyzerid/messageid pair. prewikka-httpd should now log the source address. Thread safety was fixed.
Release Notes: The newer preludeDB deletion API is used, providing a deletion performance improvement of around 3000%. Multiple sources and targets are handled properly. The host command and information link were made available from the Sensor listing. External command handling was improved so that command line arguments can be specified, instead of being limited to a defined command subset. Toggling several popups at once in the HeartbeatListing is avoided. Lookup capability is only provided for a known network address type. New address and node name lookup services were added. Various bugs were fixed.
Release Notes: A new CGI authentication module. The libpreludedb runtime version check has been corrected. This release shows multiple sources/targets in the message listing/summary. Invalid use of socket.inet_ntoa() to read ICMP Gateway Address, which is stored as a string has been fixed. Aggregation on IDMEF-Path values that are not string has been fixed. The setup.py --root option has been fixed.
Release Notes: The 'Filter on Target' link was fixed along with an alert summary exception with alerts including file permissions. The creation of an empty __init__.py file in lib/site-packages was fixed. The currently installed version is now printed along with libpreludedb requirement errors. The console now ensures that /usr/bin/env python is expanded.