Release Notes for Snare Central v8.5.3

Owned by Svetlana Sheptiy
Last updated: Feb 23, 2023
2 min read

Snare Central v8.5.3 was released on 7th March 2023.

Snare Central incorporates Reflector v3.1.3, Snare Agent Manager (SAM) v1.6.1, and Snare Enterprise Agent for Linux v5.6.1.

If the threat intelligence component is active, version 6.8.7 of ElasticSearch is activated.

The following licensed components are available: 

  • Snare Management Center (SMC)
  • Snare Management Center Client (SMC)
  • Agent Management Console (AMC)
  • Cloud Logs Collection:
    • Office 365 Logs Collection

Important

After upgrading to Snare Central v8.5.3, please reboot your computer to apply kernel changes, as advised by Ubuntu: 
https://ubuntu.com/security/notices/USN-5804-1

Overview

Snare Central version 8.5.3 is a patch release that includes updated system packages, security patches, enhancements and bug fixes.

Security

  • System packages updated to mitigate security vulnerabilities
  • Prevented possible information leak via Ubuntu’s default MOTD (Message of the Day) service
  • Strengthened access control for reports cloning
  • Removed interactive, password-protected access to generated PDF files via the web interface
  • Elasticsearch is removed during Snare Central upgrade if configuration setting for SATI is disabled and Elasticsearch is installed

After upgrading to Snare Central v8.5.3, please reboot your computer to apply kernel changes, as advised by Ubuntu: 
https://ubuntu.com/security/notices/USN-5804-1

Features and Enhancements

  • Japanese and other multi-byte character sets are now supported in the dynamic query field regular expression tester
  • Japanese and other unicode characters, are now supported in the click-through from a "Pattern Map" component in Reports
  • Support Data Retrieval now allows the same file(s) to be downloaded many times
  • Minor enhancement for Support Data Retrieval locking

Bug Fixes

  • Resolved an issue in the Backup and Restore tool that blocked the restore functionality when invalid file names were present in the backup
  • Fixed handling of whiteout files after data removal for overlay file systems
  • Fixed incorrect alert on inode usage legend in Disk section of Health Checker
  • Fixed issue where Password History Length and Max Login Consecutive Fails fields remain in a read-only state after activating Enhanced Password Security
  • Fixed the "Produce a sum of the integer field" capability in tabular output of Reports
  • Fixed a potential crash in reflector during high load
  • Fixed an issue in Reports that could cause the output components after "Tabular Details" to display incorrectly
  • Fixed incorrect display of the Event Search graph when searching across multiple Log Types

Known Issues

  • For users of Office 365 log collection capabilities, the configuration may be overwritten on upgrade. If you wish to retain your current settings, please make a backup copy of the /data/Snare/ConfigSettings/Office365Config.json file in a location of your choosing, and restore it after the upgrade is completed.  


User Guides

Offline version of the User Guide related to this release



Installation & Side-by-side Migration Guide for Snare Central

User Guide to the Snare Agent Management Console (AMC) in Snare Central