Enterprise Recon 2.11.1

ER 2.11.1 Release Notes

The Release Notes provide information about new features, platforms, data types, enhancements, bug fixes and all the changes that have gone into Enterprise Recon 2.11.1.

For a quick view of the changes since the last Enterprise Recon release, see Summary of Changes.

Contents:

  1. Highlights

  2. Important Notes
  3. Enterprise Recon 2.11.1 Changelog
  4. Features That Require Agent Upgrades

Important Security Enhancements

This release of Enterprise Recon 2.11.1 brings third-party library updates to enhance the overall security of the application. Updated libraries include the SSH protocol and TLS protocol libraries, compression and image processing libraries, regular expressions library, and others.

Updates to client libraries are also included for increased application security when connecting to Active Directory and scanning Exchange Domain, IBM DB2, PostgreSQL, and MongoDB Targets in Enterprise Recon 2.11.1.

An Agent Upgrade is required for the IBM DB2 client library updates to take effect.

New and Improved Data Types

Three existing Australia-based data types have been enhanced in Enterprise Recon 2.11.1. For the updated Australian Driver License Number data type, selecting Robust Search or Relaxed Search is now supported, allowing you to apply either a stricter or a lenient search to your scan. In addition, the Australian Healthcare Identifier - Organisation and Australian Individual Healthcare Identifier data types have both been updated with improved scan times for detecting unsecured healthcare identifier data.

Enterprise Recon 2.11.1 also includes the updated Belgian National Number data type that can now detect national numbers with mixed separators, specifically a combination of period and dash symbols.

Early Access

The Early Access stage allows Ground Labs to collect a round of usability and performance feedback before a feature is made generally available.

If you would like to request access to any of the Early Access features, please get in touch with the Ground Labs Support Team for assistance.

Early Access Features

  • Apache Hive - Enables sensitive data discovery on Apache Hive (and Cloudera Hive) database Targets.

Important Notes

CRITICAL: One Way Upgrade to Enterprise Recon 2.11.1

Certain data sets, storage formats and components for the Master Server have been updated in Enterprise Recon 2.11.1. Therefore once the Master Server is updated from Enterprise Recon 2.11.0 (and below) to ER 2.11.1, the datastore is not backward compatible and downgrading ER 2.11.1 to an earlier version is not supported.
Please contact the Ground Labs Support Team for assistance with upgrading the Master Server.

CRITICAL: End of Support for CentOS 7 Master Server

Master Server installations with CentOS 7 as the base operating system are no longer supported in Enterprise Recon version 2.11.1. Consequently, upgrading a CentOS 7-based Master Server to version 2.11.1 through an online update is no longer possible.

If you have existing installations of CentOS 7-based Master Server, you will need to create a backup of your Master Server datastore and datastore configuration file, and migrate to Enterprise Recon on the new operating systems to continue receiving support for new features and product updates.

See How To Install the Master Server Appliance (from ISO) or How To Install the Master Server on RHEL 8 (from RPM).

Upcoming End-of-Support Platforms and Features

The following platforms and/or features will reach end of support and be removed in the upcoming Enterprise Recon 2.13.0 release:

Changelog

The Changelog is a complete list of all the changes in Enterprise Recon 2.11.1.

Enhancements

  • Improved Features:
    • You can now perform distributed scans in Salesforce Targets.
    • Updated TLS protocol and SSH protocol libraries, compression and image processing libraries, regular expressions library, and other third-party library upgrades for increased application security.
    • Updated client libraries for increased application security when connecting to Active Directory and scanning Exchange Domain, IBM DB2, PostgreSQL, and MongoDB Targets. Requires Agent Upgrade for the IBM DB2 client library updates to take effect.
    • Minor UI enhancements.

Bug Fixes

  • Incomplete contextual data for the match samples was displayed in the Match Inspector window for scans where the "Capture context" option was enabled.
  • The "Source" column in the Scan History page would temporarily display an incorrect path or source information for the Target location being scanned when the scan was in the "Scanning" state.
  • Invalid and/or non-existing Amazon S3 Target location paths could be scanned successfully. With this fix, scans for the invalid and/or non-existing Amazon S3 Target location paths will return an appropriate error message.

Features That Require Agent Upgrades

Agents do not need to be upgraded along with the Master Server, unless you require the following features in Enterprise Recon 2.11.1:

  • Updated database client library for increased application security when scanning IBM DB2 database Targets.

For a table of all features that require an Agent upgrade, see Agent Upgrade.


Ensuring we are delivering the best technology for our customers is a core value at Ground Labs. If you are interested in future early builds of Enterprise Recon with forthcoming features, please email your interest to product@groundlabs.com.