EVM Scan Node Agent Changelog

Sylwia
Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

Elements Vulnerability Management Scan Node Agent feature changes will be published under this announcement thread.

Every time there is a change, an entry will be created under this announcement describing new functionalities, improvements or bug fixes.

📝 Click here to see the most recent change log and bookmark the discussion to be notified of any updates.


Tagged:

Comments

  • Sylwia
    Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

    Old change log moved from: https://help.f-secure.com/product.html#business/releasenotes-business/latest/en/fsr_sna-latest-en

    Publication time frame: September 2014 - November 2016


    Version 2.2.0.304, released September 11, 2014

    New features and improvements:

    • First version of Scan Node Agent where we can ask for the day-specific log file, set or get configuration key


    Version 2.2.0.326, released September 30, 2014

    New features and improvements:

    • Option to test the connection between Scan Node and Update Service from Scan Node in console mode ("-test" option)

    Version 2.2.0.350, released November 18, 2014

    Fixed issues:

    • Fixed problem with marking scans as terminated when Security Center is not available while sending reports

    Version 2.2.2.258, released August 11, 2015

    Fixed issues:

    • Fixed problem with starting the Scan Node Agent as a Windows service

    Version 2.2.2.253, released July 23, 2015

    Fixed issues:

    • Fixed problem with Scan Node statistics - showing incorrect RAM consumption

    Version 2.3.2.631, released September 17, 2015

    New features and improvements:

    • Linux authenticated scan support

    Version 2.3.2.674, released October 1, 2015

    New features and improvements:

    • Scanning target restriction (IP blacklist)

    Version 2.3.2.676, released October 8, 2015

    New features and improvements:

    • Option to run cleanup on Scan Node from console ("-cleanup" option)

    Version 2.3.2.687, released October 15, 2015

    New features and improvements:

    • Ability to ignore certificate issues for Security Center and Update Service communication (ValidateSSLCertificate key)

    Version 2.3.2.736, released December 22, 2015

    New features and improvements:

    • Ability to ignore certificate issues for Security Center and Update Service communication separately (keys:
      • Communication. WebSerivce. SecurityCentre. SkipSSLCertificateValidation and
      • Communication. WebSerivce. Updates. SkipSSLCertificateValidation
    • New format for the hardware fingerprint used to identify Scan Node instance

    Version 2.3.2.747, released January 12, 2016

    New features and improvements:

    • New algorithm for hardware fingerprint management

    Version 2.3.2.756, released January 21, 2016

    Fixed issues:

    • Scan Node Agent working directory can contain space characters

    Version 2.3.2.759, released January 22, 2016

    New features and improvements:

    • Remote Scan Node Agent cleanup feature in Security Center's Admin Panel

    Version 2.3.2.764, released February 18, 2016

    Fixed issues:

    • Fixed problem with STOP_SCAN requests (feature-space-path)

    Version 2.3.2.768, released February 23, 2016

    Fixed issues:

    • Fixed problem with ignoring web domain for System Scan (feature-space-path)

    Version 2.4.1.850, released July 15, 2016

    New features and improvements:

    • Automatic Scan Node Agent updating feature
    • Brand changed from nSense Karhu Scan Daemon to F-Secure Radar Scan Node Agent

    Version 2.5.1.1002, released November 23, 2016

    New features and improvements:

    • Changes in SNA INBOUND mode communication interface (simple types used as a result of WCF methods changed to generic OperationResult)
    • Lowered restrictions for update file name - must now use Radar_Scan_Node_Agent_installer*.exe format and version is not mandatory in the name. During installation, the update file is moved to specific subdirectories.


  • Sylwia
    Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

    Old change logs moved from: https://help.f-secure.com/product.html#business/releasenotes-business/latest/en/fsr_sna-latest-en

    Publication time frame: January 2017- August 2017


    Version 2.5.1.1055, released January 17, 2017

    Fixed issues:

    • Problem with xcopy process - missing exitCode

    Version 2.6.1.1124, released February 22, 2017

    New features and improvements:

    • Check disk space on Scan Node Agent before saving files (product update, scanning engines update)
    • Avoid starting new scans on Scan Node Agent when no resources are available
    • Small improvements in SNA INBOUND <-> RSC communication interface
    • Checksum validation (comparison of the source catalog in Update Service with it's local copy on the Scan Node)
    • Scan Node Agent uninstaller
    • Module ID validation (prevent duplicated or invalid module license ID)
    • Deactivating Scan Node Agent (no updates are received) when the customer account has been deactivated in Update Server

    Version 2.6.1.1174, released March 10, 2017

    New features and improvements:

    • Changed SQLite library from 1.0.88.0 version to SQLite 1.0.103.0
    • Avoid getting scanning engines and product updates from Update Service when no resources (free disk space) are available

    Version 2.6.1.1232, released April 11, 2017

    New features and improvements:

    • Small changes in the ScanNodeStatus object (tooltip in Security Center with Scan Node performance)
    • Option to reset and stop the Scan Node Agent service remotely (Security Center 2.3.6.5841+)

    Fixed issues:

    • Issue with copying the scanning binaries when local SNA checkout of these binaries was not available
    • Communication problem with time server (dk.pool.ntp.org) - check performed only once per day, shorter message, changed dk server to the generic one
    • Improved scan directory cleanup when it is blocked by external process (fix for issue: SS folder filling up fast)
    • Fixed update package size calculation for INBOUND SNA (bytes => MB) (RADAR-6663)

    Version 2.6.1.1295, released May 8, 2017

    New features and improvements:

    • Limited the number of queries from Scan Node Agent to Security Center when the module identifier is not known by Security Center
    • Update license file and internal expiration date in Scan Node working directory in case of changes to the expiration date in Update Service
    • Cleanup scan directories periodically (12h) from all old directories that should be deleted

    Fixed issues:

    • Check if the report file is valid before sending it to Security Center (fix for 0-size file that was not valid XML)


    Version 2.6.1.1313, released May 10, 2017

    Fixed issues:

    • SN whole disk consumption fix (race condition and wrong database update query)


    Version 2.6.1.1325, released May 11, 2017

    New features and improvements:

    • Improved UI to prevent misunderstandings with the solution for offline Scan Node Agents

    Version 2.6.1.1404, released June 12, 2017

    New features and improvements:

    • Check for additional free disk resources before copying scanning engines

    Fixed issues:

    • Problem with Web Scan recordings (introduced in release 2.6.1.1325)
    • Bug in hardware fingerprint reading
    • Bug in hardware fingerprint updating flow

    Version 2.6.1.1410, released June 20, 2017

    Fixed issues:

    • Impersonation issue when adding a private key via Scan Node Agent - Control Center ("Tray") (RADAR-7986)


    Version 2.6.1.1454, released August 1, 2017

    New features and improvements:

    • Option to send scan resources to Scan Node Agent running in inbound mode

    Fixed issues:

    • Issue in getting scan resources when there are multiple resources for a specific scan in the Scan Node Agent database (choose latest)
    • Issue with Windows performance counters: names translated on non-English Windows installations and better error handling


  • Sylwia
    Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

    Old change logs

    Publication time frame: October 2017 - May 2018


    Version 2.6.2, released October 16, 2017

    New features and improvements:

    • Private IP added to the Scan Node status sent to Security Center (RADAR-8831)
    • Enabled TLS 1.2 support and disabled broken SSLv2 and SSLv3 protocols for Security Center and Update Service communication

    Fixed issues:

    • Out of memory exception and sending duplicate reports for scan (RADAR-8642)
    • Cleaning corrupted scans on Scan Node Agent (RADAR-8858)
    • Limit for update checking intervals (RADAR-8910)

    Version 2.6.3, released December 15, 2017

    New features and improvements:

    • Digitally signed binaries (RADAR-8999)

    Fixed issues:

    • Proxy configuration was bypassed (system defaults were used) when downloading update files from Radar Update Service (RADAR-9289)

    Version 3.0.0, released January 26, 2018

    New features and improvements:

    • Support for Radar REST API version 3.x (RADAR-9508)
    • Added Visual C++ 2013 prerequisite which is required to introduce new, Nmap-based Discovery Scan engine.

    Version 3.0.1, released February 1, 2018

    Fixed issues:

    • Localhost addresses added to default blacklist

    Version 3.0.2, released February 15, 2018

    Fixed issues:

    • Changed default behavior - Scan Node Agent will reset the scanner directory in case it is inconsistent with Update Service (RADAR-9795)
    • Fixed Scan Node registration link on the last screen of the Scan Node installation (RADAR-9750)
    • Simplified Scan Node Agent - Control Center user interface, in terms of Scan Nodes activation and misleading "offline" section (RADAR-7970)

    Version 3.0.3, released March 2, 2018

    Fixed issues:

    • Scan Node Agent 3.0.2 was not releasing binary locks on startup, which resulted in deadlocks.

    Version 3.1.1, released May 21, 2018

    New features and improvements:

    • Automatic Radar Security Center API version detection (Radar Security Center 3 REST API vs. Radar Security Center 2 WCF API) (RADAR-10216)
    • Improved code base (RADAR-10264)
    • Fixed "SqlSpatial110.dll" issue. Some customers experienced a conflict between Radar Scan Node Agent and MS SQL Server 2012 with the following symptoms: installation failed to initialize database, application fails to start, logs contain phrases like "ExtentPlaceholderCreator", "Unable to load DLL 'SqlServerSpatial110.dll'" or "SetClrFeatureSwitchMap" (RADAR-10335)

    Fixed issues:

    • Release 3.1.1.1640, published on May 21, fixes fresh Radar Scan Node Agent registration bug introduced in 3.1.1.1639 on May 15
    • Release 3.1.1.1642, published on May 21, fixes bug in Radar Scan Node Agent's client for Radar Security Center 2 WCF API introduced in 3.1.1.1639 on May 15

    Version 3.1.1.1643, released May 29, 2018

    New features and improvements:

    • Privacy policy linked to Radar Scan Node Agent's installer


  • Sylwia
    Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

    Old change log

    Publication time frame: June 2018 - June 2019

    Version 3.2.0, released June 15, 2018

    New features and improvements:

    • Compatibility with new low disk space notifications handling in Radar Security Center (RADAR-10392)

    Fixed issues:

    • Some scans were not starting due to a bug in free disk space check (RADAR-10683)

    Version 3.3.1, released, August 28, 2018

    New features and improvements:

    • Using external library to handle communication with Radar Security Center (RADAR-10355)
    • Enabled execution of remote actions (e.g. fetching Scan Node Agent logs, obtaining Scan Node Agent configuration entries) issued from Update Service (RADAR-4048)
    • Set environment variables with paths to Scan Node Agent's and scanning engines' log directories to enable integration with Splunk (HHH-19915)
    • Added Scan Node Agent version to log entry generated in cases of inability to complete a scan (RADAR-10923)

    Version 3.3.2, released September 12, 2018

    Fixed issues:

    • Scan progress was not updated in Radar Security Center 2.x (RADAR-11305)

    Version 3.3.3, released October 3, 2018

    New features and improvements:

    • Prepare to introduce .NET Core prerequisite smoothly by recommending .NET Framework 4.7 (RADAR-11193)
    • Added disk space check to the Scan Node installer (RADAR-6885)

    Fixed issues:

    • Inbound Scan Nodes failed to receive updates after a Windows update (fingerprint issue, RADAR-11194)
    • Installer suggested old .asmx endpoint during proxy check and failed to connect when Radar server did not support TLS 1.1 or lower (RADAR-11307)

    Version 3.3.4, released November 13, 2018

    New features and improvements:

    • Improved logging for operations related to configuration of decryption keys for authenticated scans (RADAR-11719)

    Fixed issues:

    • Inbound Scan Nodes no longer try to initiate outbound connection to Update Service to fetch remote actions (RADAR-11488)
    • Scan management issues related to failed scans check and Discovery Scan process management (RADAR-11602)

    Version 3.4.0, released Jan 4, 2019

    New features and improvements:

    • Scan Node health monitoring and load limitation regarding current RAM consumption (RADAR-11812)
    • Avoid user name to SID translation when setting access rights during installation (RADAR-12076)
    • Make update procedure safer (RADAR-11525)

    Version 3.5.0, released February 19, 2019

    Fixed issues

    • [RADAR-12561] - Due to internal race condition, some reports were unnecessarily sent multiple times

    Version 3.5.1, released February 26, 2019

    Fixed issues

    • [RADAR-12811] - Scan report and logs lost when first push attempt was not successful

    Version 3.5.2, released April 8, 2019

    New features and improvements

    • [RADAR-12398] - Scan node load limit shown in Security Center respects disk space and RAM limitations
    • [RADAR-12629] - Updated system scan RAM usage prediction
    • [RADAR-11600] - Added .NET Core 2.2 requirement


    Version 3.6.1, released June 02, 2019

    New features and improvements

    • [RADAR-13431] - Special header in request from Scan Nodes to Radar Security Center API that allows the tagging of those requests
    • [RADAR-13477] - Additional command-line parameter to perform a registration check within Radar Security Center on demand

    Fixed issues

    • [RADAR-13496] - Removed unnecessary reverse DNS query for IP resolution

    Version 3.6.2, released June 04, 2019

    Fixed issues

    • [RADAR-13704] - Scan Node service failed to start

    Version 3.7.0, released June 18, 2019

    New features and improvements

    • [RADAR-11966] - Improved Radar Scan Nodes telemetry submission to give better insight into decisions on prerequisites updates
    • [RADAR-11708] - Added proper check and adequate guide for Scan Node modules registration after installation and update


  • Sylwia
    Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

    Old change log

    Publication time frame: November 2019 - July 2021

    Version 3.7.1, released November 06, 2019

    New features and improvements

    • [RADAR-14903] - Extended the test method to include performance counters verification
    • [RADAR-13459] - Include Npcap OEM installer in the Scan Node installer

    Version 3.8.0, released February 14, 2020

    New features and improvements

    • [RADAR-15301] - Support for scanning engine updates protocol 1.1
    • [RADAR-15548] - Dropped support for WinPcap and forced update to npcap
    • [RADAR-14105] - Support for installer with token in name

    Fixed issues

    • [RADAR-15907] - Logging improvement for tracking recurrent report submission issue
    • [RADAR-14382] - Improved visibility for SSL certificate validation issues in test methods

    Version 3.8.1, released March 31, 2020

    Fixed issues

    • [RADAR-15836] - Solved recurrent report submission issue.
    • [RADAR-16481] - Fixed an issue with reading the performance counters on non-English operating systems. The issue resulted in the Scan Node not taking up any new scans on Windows with German localization, for example.

    Version 3.8.3, released June 19, 2020 - beta only

    • [RADAR-14784] - Optimization of the WCF GetScanNodeAction() method

    Version 3.8.4, released July 2, 2020

    • [RADAR-16846] - Scan logs are truncated on the fly instead of modifying the original log file
    • [RADAR-17293] - Added support for TLS 1.2 to the Scan Node test method

    Version 3.8.5, released October 13, 2020

    • [RADAR-18035] - Collect telemetry information about latest .Net Framework 4.8. Added an option in Scan Node Agent to suggest installing .Net Framework version 4.8.

    Version 3.8.7, released April 13, 2021

    • [RADAR-19341] - Fixed Scan Node telemetry and the remote actions from Radar Update Service that were not working.

    Version 3.9.0, released Jul 05, 2021

    • [RADAR-8779] - Improved time check in Scan Node and its installer so that RUS or RSC are queried when NTP server is not reachable.


  • Sylwia
    Sylwia W/ Staff, W/ Article Coordinator Posts: 44 W/ Staff

    Old change log

    Publication time frame: January 2022 - October 2022

    Version 3.10.0, released Jan 14, 2022

    • [RADAR-19253] - Adjusted Windows Radar Scan Node name to Elements naming convention
    • [RADAR-19255] - Adjusted SN software INSTALLER name to Elements naming convention

    Version 3.12.0, released Jan 28, 2022

    • [RADAR-15981] - Enabled logs compression for REST API client
    • [RADAR-21634] - Enabled report compression for REST API client

    Version 3.12.2, released Apr 5, 2022

    • [RADAR-22245] - Fixed the compatibility issue related to sending uncompressed logs of failed scans (Windows SNA)

    Version 3.12.2, released July 11, 2022

    • [RADAR-22513] - Removed dependency to .NET Core 2.2 (Scan Node Agent version has not been modified but internal version of Installer has been changed to 4.9.3)

    Version 3.12.3, released October 5, 2022

    • [RADAR-23587] - Fixed issue with scan logs being sent to Security Center without scan report ID


  • Jakub Koralewski
    Jakub Koralewski W/ Staff Posts: 6 W/ Staff
    edited March 2023

    Windows Scan Node Agent

    Version 3.12.4, released January 27, 2023

    • [RADAR-22829] Rebrand Windows Scan Node Installer from F-Secure Elements VM Installer to WithSecure Elements VM Installer

    Changes needed to be made to Windows Scan Node Agent after rebranding of the installer.

    Version 3.12.10, released March 16, 2023

    • [RADAR-22799] Windows Scan Node Agent was rebranded from F-Secure Radar Scan Node Agent to WithSecure Elements VM Scan Node Agent

    Results after changes:

    • [RADAR-24715] Target info is logged on scan start

    For audits it's important to verify which targets were scanned so we decided to extend logging message related to scan start action.

    • [RADAR-24607] Icons change depending on Windows theme

    Taskbar icon changes automatically when Windows theme changes while Scan Node Agent is running and before it is started. If taskbar is dark then light version of icon is used, if taskbar is light then dark version of icon is used. Window icon stays dark regardless of changes to Windows theme to contrast with white window background.

    Windows Scan Node Agent Installer

    Version 4.10.1, released January 27, 2023

    • [RADAR-22829] Windows SN Installer was rebranded from F-Secure Elements Vulnerability Management Installer to WithSecure Elements Vulnerability Management Installer

    Version 4.11.2, released March 16, 2023

    • [RADAR-24607] Icons change depending on Windows theme

    As in Windows Scan Node Agent. See below for example of different icons used depending on taskbar background color.

    • [RADAR-24846] Use new installer icon

    New icons are used for installer to distinguish it from Windows Scan Node Agent when both are open at the same time:

  • Jakub Koralewski
    Jakub Koralewski W/ Staff Posts: 6 W/ Staff

    Linux Scan Node Agent

    Version 4.373.0, released July 7th, 2023



    • [RADAR-25316] - Add base64 decoding for credentials used in Api mode scan
    • [RADAR-25316] - Portal support for authenticated network device scan via API
    • [RADAR-24172] - Alpha feature development

  • Jakub Koralewski
    Jakub Koralewski W/ Staff Posts: 6 W/ Staff
    edited September 2023

    Linux Scan Node Agent

    Version 4.375.11, released September 21st, 2023

    • [RADAR-25982] - Fix CI bug due to build system plugin update


    • [RADAR-25982] - Fix asking for license when already applied during installation

    • [RADAR-25982] - Fix misleading error message in internal installation method

    • [RADAR-25616] - Pass subscription key as an environment variable during installation

    • [RADAR-12345] - Fix local SNA version

    • [RADAR-25753] - Upgrade dependency

    • [RADAR-25642] - Miscellaneous bug fixes

    • [RADAR-25717] - Fix update partially unzipping to a different /Engine directory

    • [RADAR-25753] - Remove unused DLLs caused by changes in library

    • [RADAR-24173] - Download scan engines in subscription key mode
    • [RADAR-25276] - Handle abruptly closed socket connection to internal library

    • [RADAR-25167] - Add registration to Elements VM

  • Jakub Koralewski
    Jakub Koralewski W/ Staff Posts: 6 W/ Staff

    Windows Scan Node Agent

    Version 3.12.11, released May 8th, 2023

    • RADAR-25164 Fix SNA drive free disk space reported incorrectly via portal and API

    Version 3.12.13, released July 7th, 2023

    • RADAR-25316 Portal support for authenticated network device scan via API

    Version 3.12.15, released September 25th, 2023

    • RADAR-26026 Scan engine not killed due to differing .exe suffix in expected name in Win SNA

  • Jakub Koralewski
    Jakub Koralewski W/ Staff Posts: 6 W/ Staff
    edited November 2023

    Linux Scan Node Agent

    Version 4.378.3, released November 21st, 2023

    • [RADAR-25747] - Developer experience improvements
    • [RADAR-25669] - Unregister in FATE on uninstallation/applying license in subscription key mode
    • [RADAR-25982] - Increase coverage of Doormand enums
    • [RADAR-26179] - Add opt-in GUTS2 migration
    • [RADAR-25804] - Check connectivity to fsapi.com domains needed after migration

    Windows Scan Node Agent

    Version 3.13.0, released November 14th, 2023

    • [RADAR-25805] - Check connectivity to fsapi.com domains needed after migration

    Due to upcoming changes please remember to whitelist the following fsapi.com domains

    https://community.withsecure.com/en/kb/articles/31217-network-addresses-for-withsecure-elements-cloud-managed-products#withsecure-elements-vulnerability-management

  • Jakub Koralewski
    Jakub Koralewski W/ Staff Posts: 6 W/ Staff

    Linux Scan Node Agent

    Version 4.379.5, released December 11th, 2023

    • [RADAR-26399] - Migrate existing Lin SNA installations to use fsapi.com endpoints
    • [RADAR-26183] - Modify Lin SNA update process to use fsapi.com endpoints

    Windows Scan Node Agent

    Version 3.13.1, released December 5th, 2023

    • [RADAR-26308] - Migrate Win SNA to use fsapi.com endpoints
    • [RADAR-26308] - Remove user-visible references to f-secure.com