ovh/the-bastion
1
1
Fork 0
mirror of https://github.com/ovh/the-bastion.git synced 2025-03-10 06:24:42 +08:00
Code Issues Projects Releases Packages Wiki Activity
the-bastion/doc/release-notes/v3.16.99-rc2.md
Stéphane Lesimple 4062b3e046 chore: add release notes to doc/
2024-12-10 14:21:30 +01:00

31 lines
2.4 KiB
Markdown
Raw Blame History

# :zap: Security
- No security fixes since previous release
- Oldest release with no known [security issue](https://github.com/ovh/the-bastion/security/advisories) is `v3.14.15` (2023-11-08)
# :bulb: Highlights
Please read the ``rc1`` changes that are also included in this pre-release.
The ``rc2`` add support of ``rsync`` (#301). Now, for specific protocols (such as scp, sftp and rsync), instead of having a dedicated option for all the plugins, they share a new ``--protocol`` option, which will permit adding more protocols if needed, without requiring adding new named options. The previous options are still supported and will keep working, even if the [documentation](https://ovh.github.io/the-bastion/using/sftp_scp_rsync.html) has been updated to only reference ``--protocol``.
We also add a new per-account option: egress session multiplexing (usage of the ``ControlPath`` and ``ControlMaster`` ssh client options), for accounts opening a large number of connections to the same hosts, such as is the case with e.g. Ansible usage. You'll find it in the [accountModify](https://ovh.github.io/the-bastion/plugins/restricted/accountModify.html?highlight=multiplexing#cmdoption-accountModify-egress-session-multiplexing) documentation.
Worth noting is also a new plugin: ``groupSetServers``, to permit setting the ACL (asset list) of a group in one shot, to attain a given wanted list, instead of having to rely in several `groupAddServer` and `groupDelServer` calls.
A more complete list of changes can be found below, for an exhaustive (and boring) list, please refer to the [commit log](https://github.com/ovh/the-bastion/compare/v3.16.01...v3.16.99-rc1).
# :pushpin: Changes
- feat: add rsync support through the ``--protocol rsync`` option in all plugins
- feat: add ``--egress-session-multiplexing`` option to ``accountModify``
- feat: add ``groupSetServers`` to entirely change a group ACL in one shot
- enh: add lock for group ACL change to avoid race conditions on busy bastions
- enh: ``selfPlaySession``: remove sqliteLog.ttyrecfile dependency
- chore: FreeBSD: ignore OS version mismatch with packages
- chore: ``selfMFASetupPassword``: clearer message
# :fast_forward: Upgrading
- [General upgrade instructions](https://ovh.github.io/the-bastion/installation/upgrading.html)
- [Specific upgrade instructions for v3.16.99-rc2](https://ovh.github.io/the-bastion/installation/upgrading.html#v3-16-99-rc2-2024-09-17)
Reference in a new issue View git blame Copy permalink