Release Notes - Linux
v1.14.4
Release Information
| Version | 1.14.4 |
|---|---|
| Date | April 29, 2025 |
| Work Items | 2796 |
| Release Type | Hotfix Release |
New Features
- N/A
Bug Fixes
- #2796 – Fixed issue where XML export failed due to invalid characters in logs.
v1.14.2
Release Information
| Version | 1.14.2 |
|---|---|
| Date | April 24, 2025 |
| Work Items | 2380, 2658, 2589 |
| Release Type | Minor Release |
New Features
- #2380 – Retention policy for scheduled exports is now supported.
- #2658 – Scribbler storage retention is always enforced even on NAS backup failures to avoid running out of space.
Bug Fixes
- #2589 – Scheduled exports fails on Linux due to file system issues.
v1.13.50
Release Information
| Version | 1.13.50 |
|---|---|
| Date | April 08, 2025 |
| Work Items | 877, 2065, 2183, 2343, 2263, 1296, 1295, 2406, 1347, 2324, 1346 |
| Release Type | Minor Release |
New Features
- #877 – Added support to export logs.
- #2183 – Added support for two-digit year format in RFC 5424.
- #2343 – Added support to export logs at periodic interval.
- #2406 – Settings backup now includes the export schedule configuration for backup and restore.
- #1347 – Additional license information are now available in the license page
Bug Fixes
- #2263 – Reset password now does not enforce the password history.
- #2324 – UI field validation improved across the application.
- #2498 – Rfc3164 Dates are not processed correctly
Dependency Updates
- #2065 – dotnet and dependencies upgraded to 8.0.10 version.
- #1296 – data collector updated to latest upstream version.
- #1295 – log collector updated to latest upstream version
v1.12.15
Release Information
| Version | 1.12.15 |
|---|---|
| Date | October 10, 2024 |
| Work Items | 1626 |
| Release Type | Minor Release |
New Features
- 1615: Windows Event Log Collection. Ability to collect windows event logs from aggregated sources (WEF / EvtRPC) through SyskeyOT Windows Agent.
- 1593: Scribbler – Backup Retention – Added support to define retention for backups.
Bug Fixes
- 1589: Scribbler – In some corner case scenarios, The AD authentication fails with LDAP referral error.
- 1626 - Scribbler: Fails to process logs containing non-standard (malformed) priority.
v1.11.3
Release Information
| Version | 1.11.3 |
|---|---|
| Date | October 30, 2023 |
| Work Items | 1443 |
| Release Type | Minor Release |
New Features
- 1443: As a substation administrator, I want an option to forward logs with resolved
hostnames in syslog header.
- Ability to perform hostname detection using custom nameservers and custom mappings during log collection.
- Added customizable options (As is, IP Address, Hostname) to choose what values to be put on the host header before forwarding to upstream SIEM
Bug Fixes
- Nil
v1.10.12
Release Information
| Version | 1.10.12 |
|---|---|
| Date | May 22, 2023 |
| Work Items | 364, 1286, 1238, 1311, 1314 |
| Release Type | Minor Release |
New Features
- 364 : Raw message capture and storing
- 1286: Splunk Forwarding Integration
Bug Fixes
- 1238: Scribbler: Configuration export failed for Active Directory user.
- 1311: Scribbler Linux: Not releasing dbus connections when the service is disabled.
- 1314: Scribbler Snmp Agent: SysName mib fails if it unable to detect the hostname.
v1.9.42
Release Information
| Version | 1.12.2 |
|---|---|
| Date | December 19, 2022 |
| Work Items | 1223, 1227 |
| Release Type | Minor Release |
New Features
- 1227: Scribbler Linux: File manager support to the OS Management Console
Bug Fixes
- 1223: Scribbler Linux: Fails to ingest logs when forward server down for extended period
v1.9.36
Release Information
| Version | 1.9.36 |
|---|---|
| Date | November 1, 2022 |
| Work Items | 1026, 1014, 975, 974, 897, 896,1025 |
| Release Type | Minor Release |
New Features
- 897: Option to change the default admin username
- 975: Security Compliance: Upgrade all dependency components to their latest versions
Bug Fixes
- 974: Scribbler: Large log storage units failed to back up on some cases.
- 1014: Scribbler Windows: Stopped collecting logs after a random period.
- 1026: Scribbler: Idle session timeout logs out the user bit early than expected.
- 896: Scribbler Linux: The stats page (CPU, RAM,..) on the dashboard becomes empty on rare scenario
- 1025: Scribbler Linux: Does not show proper warning when Local backup folder does not has permissions to write files
v1.8
Release Information
| Version | 1.8 |
|---|---|
| Date | May 09, 2022 |
| Work Items | 190, 441, 753, 831, 862, 743, 739, 742, 721, 637, 713, 727, 670, 464, 672, 497, 711, 669, 688, 686, 709, 706 |
New Features
- 190: Basic Alerts support added.
- A new alert page, Where the alerts generated by the system are shown
- Alerts are also integrated with audit logs.
- Generates alerts when disk space is low (configurable).
- Generates alerts if the TLS certificate going to expire.
- 441: Added support to restore backups taken from another scribbler instance
- 718: HCI Support & Validation – VmWare Esxi
- Scribbler windows version is validated on VmWare vSAN based ESXi cluster
- Scribbler windows version is working as expected in the VmWare based HCI environment
- Scribbler requires all the compute nodes tagged with it’s VM should have same CPU model.
- Scribbler does not support running on different model CPU in a cluster
- 753: Scribbler SNMP Agent v3 - Added support for SnmpEngineId & EngineBoot
- 831: Configuration Export & Import
- System supports exports and import of the entire system configuration (Including encryption keys, licenses & all settings)
- The exported configuration is encrypted by AES 256 algorithm
- 862: Upgraded to latest dotnet core (6.0.3)
- USR-670: SNMP Agent Improvements
- SNMP V3 support added
- Health monitoring parameters of log collector, data store, web app and licensing are exposed through SNMP Protocol.
- USR-464: Installation Improvements
- Added support to remember installation parameters.
- Added option for lab environments which uses less RAM
- USR-672: Backup encryption now defaults to AES 256 (Previously it was AES 128)
- USR-497: TLS 1.3 Support
- The log collection and forwarding now supports TLS 1.3
- TLS 1.2 and 1.3 are the only supported versions.
- Other versions are disabled by default.
- USR-711: Release numbering changes
- Currently, Scribbler uses
<Major>.<Minor>.<Build>format for production releases.
- Currently, Scribbler uses
- Going forward, it will be still the same. But minor version will be bumped for every new release.
Bug Fixes
- 743: Upper case non-standard month names in RFC 3164 are not handled.
- 739: Scribbler backend service randomly not starting when system resources are low or systems with high disk latency (HCI Environments, HDD on HyperV)
- 742: UTC dates are shown in search and live stream instead of local for some corner cases.
- 721: The system idle timeout is now configurable between 1 and 60 minutes.
- 637: The system shows expired certificates as valid in TLS configuration.
- 713: Scribbler fails to work as expected with McAfee application control (solidifier)
- Affected Version: 1.6
- Due to incorrect temp folder configuration of log collector, Scribbler fails to start if McAfee application control also installed on the same computer.
- 727: Scribbler Windows: A typo in the installer screen.
- BFX-709: Search & Live Stream UI Improvements
- Search and live stream user interface improved to efficiently utilize the space to display longer messages better.
- Added an option to copy message content and expand all messages.
- USR-686: Rare random start delay issue in scribbler fixed.
- BFX-713: Scribbler fails to work as expected with McAfee application control (solidifier)
- Affected Version 1.6
- Incorrect temp folder configuration of log collector
- Scribbler takes long time to start in resource constrained environments and times out.
- That is fixed by moving the time-consuming work into a background thread which runs after startup initialization is completed.
- BFX-706: A corner case authentication failure issue with Nested Active Directory Groups
is fixed.
- A user who is part of two similarly named nested groups had issues during login where the system throws access denied.
- The problem is now correctly handled.
Dependency Updates
- USR-669: Updated to Microsoft dotnet 6.0.1 LTS (Long term support) release with latest security patches.
- USR-688: Log collector module (Logstash) updated to latest upstream version with security updates and patches.
- USR-688: Datastore (elastic search) updated to latest upstream version with security updates and patches.
Security Updates
- Log4J Vulnerability (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).
- Scribbler Backend Service: Not using log4j for its internal logging. Vulnerability not applicable
- Scribbler Log Collector (logstash): For log processing, filtering, and forwarding log4j is not at all used. Log4j is used by the log collector to write its own logs. Based on the vendor statement, it is vulnerable. But the vulnerability only applicable if any received data / user data is sent to log4j. Scribbler log collector does not send any user data to log4j hence the vulnerability is not applicable.
- Scribbler Data Store (elasticsearch): Log4j is used to write its own log. But the vulnerability is not applicable because a security manager component already mitigated the issue.
- However, the upstream modules (logstash, elastic search) patched the above vulnerability with the latest patch release. The fixes and patches are incorporated into scribbler.
Known Issues
- Nil
v1.7
Release Information
| Version | 1.7 |
|---|---|
| Date | June 09, 2021 |
| Work Items | 323 |
New Features
- 323: Scribbler Linux Support First Release
- Based on the Scribbler Windows 1.5.52 Code base
Bug Fixes
- Nil
Known Issues
- Nil