We’ve enhanced the installation process for the SIEM module. The Filebeat setup will now use a dedicated user instead of the Kibana root user. This change strengthens the security of the installation process by reducing the risk associated with using elevated privileges.
General – NetEye Setup
We’ve resolved an issue in the update/upgrade process. When verifying file consistency across cluster nodes—particularly for certificate files that should be identical on all nodes—the script now accounts for symlinked files. This improvement makes the update/upgrade process more flexible and compatible with custom configurations.
List of updated packages
To solve the aforementioned issues, the following packages have been updated:
elastic-agent, elastic-agent-autosetup, elastic-agent-neteye-config, filebeat, filebeat-autosetup, filebeat-neteye-config, logstash, logstash-neteye-config, logstash-autosetup, logstash-neteye-config-autosetup, kibana, kibana-autosetup, kibana-neteye-config, elasticsearch, elasticsearch-autosetup, elasticsearch-neteye-config, elasticsearch-xpack-license to version 8.17.0_neteye3.72.8-1
neteye-setup, neteye-setup-configurator to version 1.136.2-1
Emil Fazzi
Software Developer, R&D Team in the "IT System & Service Management Solutions" group at Würth IT Italy.
Author
Emil Fazzi
Software Developer, R&D Team in the "IT System & Service Management Solutions" group at Würth IT Italy.
Fix: monitoring links from the Event Overview When opening a link from the Event Overview page, the monitoring URL was supposed to be translated into the corresponding IcingaDB link. The translation was only handled on a simple click, though, so Read More
Improve visibility of Feature command state icons Feature command state icons and captions were difficult to see against the white background in the UI. To improve readability and accessibility, we updated the icon and caption colors to provide stronger contrast Read More
Important: Keycloak security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the keycloak packages is now available for NetEye 4. Security Fix for NetEye 4.48 26.6.2_neteye1.40.0-1 Summary This vulnerability allows an attacker Read More
Fix HEAD HTTP method not supported We resolved a compatibility issue affecting HEAD requests to NetEye endpoints. These requests could previously time out because the method was not fully supported by the underlying architecture. As a result, some procedures could Read More
Fix IcingaDB password file sync on all cluster nodes. We have resolved an issue that caused an IcingaDB password file to be present only on one node in a cluster installation. This could lead to failures during NetEye updates and Read More
