• Created by user-e1945, last modified by user-0f753 on Nov 06, 2013

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 11 Next »

Latest update

Release Notes

The main contents of this release is improved management of SIP trunks and full support for secure SIP trunks: it is possible to configure them easily, test configuration and monitor their status.

In addition, Root Certificate Authority are full managed via web console.

Support for clients based on Java5 that uses SSL2Hello message to negotiate SSLv3 or TLS1.0 connections: SSLv2 is anyway disabled.

This version clean up SIP sessions table

 

PrivateServer - 2.5.4394

New Features

  • [PS-1050] - Administrator can configure a secure trunk
  • [PS-1052] - Trunk configuration can be tested to verify configuration
  • [PS-1053] - Current SIP trunk status is reported in realtime management section, under relaxed permissions
  • [PS-1222] - Manage the appliance Certification Authority list

Improvements

  • [PS-1077] - Registered accounts page offers a link to accunt details page
  • [PS-1121] - Installation/provisioning message logs provide more meaningful information
  • [PS-1215] - Digital certificates expiration date is shown
  • [PS-1301] - "Restart required" message is now much more visible to the user
  • [PS-1303] - Improved log rotation for Tomcat service
  • [PS-1325] - Improves instructions for account batch import
  • [PS-1378] - Cleanup SIP session log from watchdog sessions 
  • [PS-1372] - Added compatibility for SSL2Hello clients (based on Java 5), such as Blackberry Enterprise Server 4.x
  • [PS-1358] - Improved CDR log for non-ASCII characters

Fixed Bugs

  • [PS-1128] - Account wizard can create accounts outside of a group
  • [PS-1185] - Asterisk Restart service does not always work immediately and takes up to 3 minutes
  • [PS-1187] - Can't change locales setting if NTP server isn't configured yet
  • [PS-1219] - The raw_session_log table is included in configuration-only backups
  • [PS-1229] - File permissions allow reading MYSQL database credentials by local user
  • [PS-1230] - Open file permissions on directory /data
  • [PS-1239] - Clickjacking and Frame-Sniffing on some pages
  • [PS-1240] - MIME sniffing on some pages
  • [PS-1242] - Webserver uses an outdated version and discloses it
  • [PS-1250] - It is possible to connect to PrivateServer using the same account on two devices with the same IP public address (eg: behind NAT on the same WiFi network) 
  • [PS-1264] - Presence cache is not updated on Asterisk shutdown/restart
  • [PS-1269] - Secondary net interface is not automatically activated after configuration
  • [PS-1283] - [VOIPSEC] AST-2013-005: Remote Crash when Invalid SDP is sent in SIP Request
  • [PS-1284] - [VOIPSEC] AST-2013-004: Remote Crash From Late Arriving SIP ACK With SDP
  • [PS-1257] - Archive directory is readable by all local users
  • [PS-1258] - Backup directory and files are readable by all local users
     


Release Notes - PrivateServer - Version 2.5.4394

** Sub-task
* [PS-1196] - Migrate existing phone numbers to ensure the last 8 digits are unique
* [PS-1257] - Archive directory is readable by all
* [PS-1258] - backup directory and files are readable by all
* [PS-1306] - Clean Up CAcert Trusted
* [PS-1313] - Add CACert table to backup data
* [PS-1316] - No more a SNOM can use multiple accounts on the same PrivateServer
* [PS-1317] - modify the dial plan to implement the inhibition of the call reroute on the default trunk
* [PS-1318] - modify the console to implement the inhibition of the call reroute on the default trunk


** Bug
* [PS-1128] - Account wizard can create accounts outside of a group
* [PS-1180] - DTMF patches backported to asterisk 1.8.15 broke ZRTP support
* [PS-1185] - Asterisk Restart service isn't working properly: sometimes asterisk is not restarted
* [PS-1187] - Can't change locales setting if NTP server isn't configured yet
* [PS-1197] - Asterisk answers SDES offers with another offer
* [PS-1204] - CLONE - Disable mail allert on Presence request error
* [PS-1206] - CLONE - If the presence request contains a wrong contact, the server discard all the request
* [PS-1218] - Asterisk 1.8.22.0 answers SRTP offers with another offer
* [PS-1219] - The raw_session_log table is included in configuration-only backups
* [PS-1229] - File permissions allow reading of MYSQL database credentials by local user
* [PS-1230] - Open file permissions on /data, where some PGSM files are installed.
* [PS-1239] - Clickjacking and Frame-Sniffing on multiple pages ( https://[server]/applianceManager/* )
* [PS-1240] - MIME sniffing on multiple pages ( https://[server]/applianceManager/* )
* [PS-1242] - Webserver uses an outdated version and discloses it ( https://[server]/rest/ )
* [PS-1244] - CLONE - No ZRTP client on iOS can place or receive calls
* [PS-1245] - CLONE - XSS possibility via open redirect (example: https://[server]/applianceManager/servicesRestarted?returnToURI=http://www.google.com/ )
* [PS-1246] - CLONE - XSS vector (example, verified in Firefox 22: https://[server]/applianceManager/servicesRestarted?returnToURI=data:xss;base64,PHNjcmlwdD53aW5kb3cubmFtZT0neHNzJztjb25maXJtKHdpbmRvdy5uYW1lKTwvc2NyaXB0Pg== )
* [PS-1250] - It is possible to connect the same account on two devices with the same IP address (ex: on wifi)
* [PS-1251] - CLONE - HTTP connector open externally on port 8080
* [PS-1253] - Cannot delete a certification authority
* [PS-1264] - Presence cache is not updated when Asterisk shuts down/restarts
* [PS-1268] - Service binding for HTTP is broken if console and smartphone should be available on different interfaces
* [PS-1269] - Secondary net interface is not made active after configuration
* [PS-1276] - Firewall configuration misses the "related" rule
* [PS-1280] - Sip trunk modification from UDP to TLS
* [PS-1283] - [VOIPSEC] AST-2013-005: Remote Crash when Invalid SDP is sent in SIP Request
* [PS-1284] - [VOIPSEC] AST-2013-004: Remote Crash From Late Arriving SIP ACK With SDP
* [PS-1288] - Registered accounts list is empty
* [PS-1290] - Presence cache pruning doesn't repopulate the cache
* [PS-1292] - Console doesn't reconnect automatically to AMI
* [PS-1294] - CLONE - Watchdog accounts creation fails, blocking installation
* [PS-1297] - NTP Update not working Properly
* [PS-1298] - PrivateServer Editing an account
* [PS-1300] - CLONE - SMS installation link is detected as a possible XSS attack and blocked
* [PS-1308] - Date Error and data not present in Data Archive List in Private Server 2.5
* [PS-1309] - CallerId validator display wrong messages
* [PS-1312] - Trunk incoming call is drop after a call is answered with security message
* [PS-1326] - Even tough Asterisk is stopped, a register Messagenet trunk shows online.
* [PS-1329] - Even Tough i deleted an unregister Trunk from PrivateServer i still see connection toward the trunk in SessionLogEntry List
* [PS-1346] - Problem reconciliation data in privateserver qa.moseo.fr
* [PS-1361] - In "Latest session events" of an account created, I have in the history tab account register with error "403 Forbidden" but the device is able to receive and place a call
* [PS-1385] - configuration database is mess up: ast_config table is full of repeated featuremap and applicationmap entries
* [PS-1394] - SIp Trunk Deletion fails
* [PS-1398] - Creating a ZRTP account manually, on the account state in console the license is reported Unknown

** Epic
* [PS-1050] - Administrator can configure a secure trunk

** Improvement
* [PS-763] - The administrator can choose to re-route secure calls on trunks for account temporarily not available
* [PS-1077] - Link to account details from registered accounts list
* [PS-1121] - Improve installation/activation message sending logs
* [PS-1177] - Add full support for spanish, french and german language
* [PS-1195] - Ensure the last 8 digits of virtual phone numbers are unique
* [PS-1209] - CLONE - Improve SessionLog reconciliation
* [PS-1213] - CLONE - Change sort order for list pages
* [PS-1215] - Show the certificate expire date
* [PS-1217] - CLONE - Show the provisioning SMS text to the user
* [PS-1254] - Show "certificates" and "certification authority" in a tabbed view
* [PS-1256] - Sort certification authority by Subject
* [PS-1266] - CLONE - Update *.madama.at certificate
* [PS-1301] - Make the "Restart required" message more visible to the user
* [PS-1303] - Improve the log rotate for Tomcat6
* [PS-1304] - Reconnect a trunk using QUALIFY on asterisk restart
* [PS-1320] - Downloading CSV File of sessionLogEntry it contains local 127.0.0.1 watchdog logs.
* [PS-1323] - Use uniform names in install/provisioning messages log
* [PS-1325] - Improve label for account batch import
* [PS-1330] - Do not track SocketTimeoutException on synchro requests as errors
* [PS-1331] - Log OPTIONS requests in session log
* [PS-1332] - Don't show OPTION event on sip sessions page
* [PS-1341] - Delete "noise" events from session log

** New Feature
* [PS-1252] - Certification of Asterisk 1.8.22
* [PS-1286] - Cisco CUCM and CUBE secure trunk

 


** Story
* [PS-1017] - SIP Trunk status should be shown in Sip Trunk list
* [PS-1052] - Trunk configuration can be tested to verify configuration
* [PS-1053] - Report trunk connection status
* [PS-1056] - Trunk configuration offers an option to enable/disable certificate verification
* [PS-1221] - Trunk configuration offers an option to enable/disable encryption
* [PS-1222] - Manage the appliance Certification Authority list

** Task
* [PS-1150] - Update Asterisk to 1.8.22.0
* [PS-1192] - Upgrade to Asterisk 1.8.22
* [PS-1223] - Add CA file to backup data
* [PS-1224] - Enable "qualify" by default on all trunks and change label to "Send keep alive"
* [PS-1305] - Remove the unnecessary CAs from the "Certification Authority list"
* [PS-1319] - Remove "visible" flag from account configuration

 

  • No labels