IMPORTANT: This release includes changes to some default behavior. Please carefully read the release notes for details!
Fixed
❗ Support for the config key EnableForkAndExitLogging was inadvertently removed in v2022.9. This has effectively been treated as if it had a default value of true, but the intention was for the default value to be false. Support for this key and its original default have been added back. If you require FORK and EXIT log events, please update your configuration to set this key appropriately.
❗ Configuration documentation was updated to include several supported but previously missing keys.
Changed
↔️ Clean syncs now remove only non-transitive rules from a host's rules database before applying the newly received rules by default.
↔️ The clean_sync preflight response key has been deprecated. Sync server maintainers should migrate to using the new sync_type key. If the clean_sync key is used, it will trigger the new default behavior of only removing non-transitive rules.
↔️ Transitive rule configuration is now printed regardless of whether or not a sync server is configured. The field was also moved to be grouped with the daemon section rather than the sync section.
Added
➕ The switch santactl sync --clean-all was added to reproduce the old clean sync behavior of removing all rules (instead of only non-transitive rules).
Please refer to the clean sync documentation for a better understanding of the new clean sync behavior!
What's Changed
- reorder e2e tests by @kallsyms in #1249
- Revert "Project: Remove provisioning_profiles attributes from command-line to…" by @mlw in #1251
- Initial support for some scoped types by @mlw in #1250
- GUI: Change default button text to "Open..." by @russellhancox in #1254
- Event drop metrics by @mlw in #1253
- Fix issue with drop count calculations by @mlw in #1256
- Fix
santactl rule --checkby @mlw in #1262 - Change build target visibility by @mlw in #1264
- Fix wrong srcs paths by @mlw in #1265
- Added documentation to clarify clean sync with zero rule behavior by @pmarkowsky in #1259
- Docs add missing config keys by @mlw in #1270
- Add back support for EnableForkAndExitLogging config key by @mlw in #1271
- chore: Fix multiple typos by @hugo-syn in #1273
- chore: Fix typo s/occured/occurred/ by @hugo-syn in #1274
- Make santactl status always print out transitive rule status if set by @pmarkowsky in #1277
- Sync clean all by @mlw in #1275
New Contributors
Full Changelog: 2023.10...2024.1