Page tree
Skip to end of metadata
Go to start of metadata

NMIS 9.2.3 test protocol

Summary

A total of 241 tests have been run on the NMIS 9.2.3, released on August 12, 2021, finding a total of 3 inconsistencies. 

Inconsistencies

Description 

Status

Priority
  • Details of overlapping texts in tables.
Fixed by modifying the file /usr/local/nmis9/menu/css/dash8.css. 4
  • NMIS_IS_LOCKED: NMIS remains active for almost 15 minutes
In validation.1
  • When exporting history data from the Runtime Graph, the text "Invalid arguments, missing node!"
It will be reported as a ticket.3

Priority: Informative (1), Warning (2), Minor (3), Major (4), Critical (5).

Fixes / Integrations

Description 

This is mainly a security release that includes the following improvements (Fixing CVE-2021-38550):

  • Prevent reflected cross site scripting.
  • Prevent stored cross site scripting.
  • As part of these security changes, some special characters no longer be available for node configuration fields like group names, including ;=()<>%'\/
  • Generate cookie http only.

Other improvements:

  • Fix For NMIS_IS_LOCKED that was not working.
  • Update logJsonEvent with all the event properties.
  • Added output options to import_nodes.pl.
  • Updated models to better support the baseline tool: Common-database, Common-stats and Model-CiscoRouter.
  • Fixed running Host Resources plugin when SNMP or Node are down. 

State of the test environment

The test protocol has been executed in an operating environment described below:

Server features

Number of Nodes

198

RAM

6 GB                                

Storage

110 GB

CPU

6

OS

CentOS 7

Annexes

Updated test list document. NMIS 9.2.3 Test Protocol - English.xlsx

Document where inconsistencies are described with the steps to reproduce the problems. Inconsistencies in NMIS 9.2.3.docx

  • No labels