*
BREAKING CHANGE: Username/password in the URL is DEPRECATED, but can be enabled in the Protected registry key
*
CHANGE: Setting to cap the maximum number of email alerts sent per hour per target email address (defaults to 50 - configurable)
* External API can use
Basic Auth and Bearer Token authentication
*
MCP server (completely disabled by default) to allow AIs to talk to PA File Sight for reading configuration and making suggestions
* Updated to OpenSSL 3.6.2
* Upgraded to libcurl 8.21
* Fix for missing PDFs from emailed group reports
* Fixed a crash that can happen when a report refers to source data that no longer exists
* Protection against custom (not self-signed) TLS certificates being overwritten
* Fix for OAuth connection timeout causing a re-authentication
* Better Endpoint performance
* Stretchable Find window
* Fixed an occasional slow down that impacted file processing speeds
* Fix to keep audit test files out of the reports
* More efficient storing of values within Execute Script actions and monitors
* Reports have a PDF orientation and paper size parameter
* Console can use Single-Sign On for remote Console login
* Improved GetMonitorStatus for the Execute Script monitors
* Web page access can use Basic Auth and Bearer Token authentication
* Credential Manager can view and delete Bearer Tokens
* File Sight buffer analysis will show top user
* Fix for custom SSL certificates getting overwritten when they expire too far in the future
* Can login with an Active Directory/LDAP distinguished name
* Alerts show the **Malware** or **Not Allowed** tag next to the correct name in a rename scenario
* Increase in file I/O processing speed
* Configurable run times for the helper (still defaults to 15 minutes)
* New WIN_CRED_FROM and WIN_CRED_KEY parameters for the ADD_SERVER External API call
* Fix for a case where one File Sight monitor caused another monitor to not fire actions
* Embedded HTTP server will use connection:keep-alive in more cases
* The Console Quiet! feature does better at stopping queued emails
* The Console Quiet! feature will cause a red banner in the Console and group reports indicating when the Quiet period will end
* More security hardening
* Made comparing and merging internal file lists much much faster for large lists
* Improvements to how the Endpoint reports file activity from whitelisted processes
* Installer will no longer indicate unrelated Windows services should be closed
* Quieting .NET helper errors that shouldn't be shown
* Start Application configuration file browser shows files from the correct target
* Improved OAuth token refreshing when a network error happens
* Fix/improvements for the GET_NOTES and SET_NOTES External APIs
* Less database locking while loading/initializing internal lists
* Driver will do better at combining/eliminating 'noise' records, cutting down on work on busy servers
* Fix generation root Certificate Authority - it will have a longer expiration date
* Regenerating root Certificate Authority if it has expired (and not using custom certificates)
* Hardened HTTP server redirects
* Update to the Endpoint to find the Google Drive folder/drive (method for finding it changed with update to Google Drive)
* Added new Trusted Application statements PROCESS_IS_BROWSER and FILE_IS_FROM_SERVER to make it easy to block users from uploading server files to the cloud
* Made it easier to use Let's Encrypt - added a (off by default) restricted port 80 HTTP listener for handling ACME challenges
* Fixed the Ignored Files in the File Sight monitor that were not saving
* Fix for Endpoint ignoring files if Explorer does an unusual file I/O pattern
* File Sight queue almost full warnings will show top users and processes
* Allowed File Extensions and Ransomware Extensions are synching correctly to Satellites
* File Sight configuration hint about alerting on all file reads and/or writes
* Better extension testing for the File Sight extension lists
* Installing updates will cause Satellites and Endpoints to resync Trusted Application lists
* Fix for crash when the Ransomware and Allowed_List extensions contained the same extension in the first position
* Trusted Applications List Manager GUI shows duplicates real time, allowing for pasting extra items into the list that are duplicates and being notified
* Improved User Alerts on Satellites that took a long time to process
* MITM test logged in Satellite (experimental)
* Additional security hardening
* Fixed AD login regression bug
* Improved alert suppression time recommendations
* Using Forwarded and X-Forwarded headers for logging IPs coming into the service
* The Satellite-Only installer will only show the Satellite option
* Testing an extension in the List Manager will select the matching extension in the list
* Change to prevent a rare crash in the Endpoint