** New Feature * [ENTERPRISE-364] - Antivirus: Panda * [ENTERPRISE-368] - Reporting * [ENTERPRISE-101] - Integrate commtouch (web) into c-icap * [ENTERPRISE-102] - Add panda virus scanner to squid using ICAP interface * [UTM-94] - Commtouch URL Filter GUI for HTTP Proxy * [UTM-556] - IPsec module rewrite to support Xauth * [CORE-163] - Make sierra wireless 3g modem work on mini arm wireless * [ENTERPRISE-348] - Registration countdown after finishing network wizard * [CORE-356] - IP configuration from DHCP for local zones * [HOTSPOT-214] - Default number of cycles for cyclic rates * [HOTSPOT-173] - Enable or disable Quick Ticket for a single rate * [HOTSPOT-219] - GUI for Endian Hotspot Authentication Layer * [HOTSPOT-216] - Authentication Layer for Endian Hotspot * [ENTERPRISE-356] - Antivirus: Panda * [ENTERPRISE-183] - Implement application firewall * [ENTERPRISE-184] - GUI support for application firewall in outgoing firewall * [CORE-263] - Create a script for encrypting the passwords in YAML users files * [CORE-147] - Installer * [HOTSPOT-220] - Login portal * [CORE-403] - Integrate trunk8 jQuery plugin into EMI * [CORE-400] - Create a multiselect widget based on Chosen * [CORE-179] - Add jquery effects JavaScript to EMI * [CORE-408] - Chart widgets with Kendo UI DataViz * [CORE-294] - Add possibility to give multiple labels to jobs in order to allow start or wait of/for all jobs with the same label * [CORE-354] - Backend for events reporting * [CORE-576] - Live traffic monitoring with ntopng * [HOTSPOT-162] - SmartLogin: cookie-based automatic login * [ENTERPRISE-196] - Reporting * [CORE-240] - Support every mode of ethernet bonding * [UTM-691] - Drop spam and virus emails * [UTM-694] - SMTP Delivery Status Notification configuration * [UTM-526] - Smarthost configuration for each outgoing domain * [UTM-527] - Outgoing IP address configuration for each domain * [HOTSPOT-227] - Authentication Layer support for FreeRADIUS * [UTM-222] - Read the OpenVPN status from the status file * [UTM-588] - VPN user groups GUI * [UTM-589] - VPN authentication backend GUI * [UTM-590] - VPN authentication management (service) GUI * [UTM-587] - VPN user groups support for remote providers * [UTM-593] - OpenVPN server GUI * [UTM-595] - OpenVPN user migration * [UTM-585] - VPN user groups backend * [UTM-586] - VPN user groups support for local backend * [UTM-591] - OpenVPN server backend * [ENTERPRISE-310] - Prepare packages for new Commtouch Web Filter Integration * [HOTSPOT-174] - It should be possible to specify name and surname * [UTM-678] - Make RBL list editable from GUI * [UTM-308] - Add a shell command to display the DHCP leases * [ENTERPRISE-264] - Personalization of Webfilter template * [ENTERPRISE-440] - Add a shell command to display IPsec XAUTH connections * [HOTSPOT-150] - Add missing South African Rand in currency list * [CORE-340] - Logging & Monitoring * [ENTERPRISE-10] - Webfilter: Commtouch ** Improvement * [CORE-252] - Use partition labels in System status page * [CORE-192] - Italian and German translations * [CORE-185] - Portuguese and Spanish translations * [UTM-631] - Implement jobgroups to squid and icap jobs * [UTM-259] - New error page templates for squid 3.3 * [CORE-231] - Create squid graphs from snmp using collectd which sends squid-graph in retirement * [CORE-206] - Replace makegraphs.pl graphs * [UTM-267] - Add possibility to define per product how many threads a child can have in c-icap. * [CORE-205] - Unattended settings file should always be used for choosing default values * [CORE-204] - Installer should read from settings file what to do at end of installation. * [CORE-285] - Replace signatures tarball in order that new phishtank signatures are shipped instead of malwaredomains * [CORE-215] - Create a EMI command button which triggers a emi command via ajax * [CORE-232] - Gather information about read/write cycles performed on SD card * [UTM-107] - Redundancy of configuration files on ARM systems * [CORE-227] - Add multiline support to ReadonlyField * [CORE-223] - Add HugeText and UnicodeHugeText types to be used if the content of a textarea is not a list * [CORE-673] - Add a validator for the resolvable host names * [UTM-810] - Webfilter: integrated * [UTM-811] - Webfilter: integrated * [ENTERPRISE-384] - Clearly state that the appliance will be locked * [ENTERPRISE-448] - Implement HA for gateway mode * [UTM-817] - Decrease OpenVPN connection time * [UTM-740] - Connections page for VPN users: frontend * [UTM-739] - Connections page for VPN users: backend * [HOTSPOT-196] - Use an ""end date"" selector in place of the number of cycles, for cyclic tickets * [ENTERPRISE-7] - Add new SpamAssassin short-circuit configuration options * [ENTERPRISE-98] - Panda signature file has been corrupted by Panda * [ENTERPRISE-95] - Add configuration option to disable zlib in virus_scan module * [ENTERPRISE-94] - Signature update tool c-icap-panda-util should use /var/tmp instead of /tmp for temporary files * [ENTERPRISE-97] - Possibility to define that virus_check module should let pass if panda scanner reports an error * [ENTERPRISE-429] - Disable usage of multiple antivirus engines on certain appliances * [ENTERPRISE-100] - Appliance: Software * [ENTERPRISE-92] - Appliance: Software * [CORE-566] - Improve the authentication layer log file * [CORE-601] - Create a common method for checking/creating CA/host certificates for IPsec and OpenVPN * [CORE-528] - Add a method for invalidating the cache to the endian.core.lazylist.CachedList * [CORE-567] - Improve command ""datasource"" displaying YAML settings * [CORE-139] - Change u-boot configuration in order that all 9 mac addresses will be memorized and passed as kernel parameter * [UTM-709] - Add ""cert_type"" parameter to ""upload_certificate_request"" for generating certificates with server/client type * [UTM-721] - Select the certificates using the Chosen widget * [UTM-720] - Parametric configuration of the certificates 'notBefore' date * [UTM-524] - Cleaning of wizard pages that are not supposed to be reachable * [HOTSPOT-252] - Support for case insensitive usernames * [CORE-547] - Fix storage imports * [CORE-530] - Add an option to Container to set the form enctype * [CORE-317] - When a new item is created in a CacheStorage * [CORE-243] - Improve search capabillities of the jqGrid data grid * [CORE-171] - Make FieldsGroup valid in Entity.fields(fields=[...]) lists * [CORE-155] - Enable Field and OneToMany to get options for widgets * [CORE-154] - Enable EMI Entity to use entites.OneToMany * [CORE-563] - Entities autoload * [CORE-564] - Add a Python version of emicommand * [CORE-589] - Add onDeleteSuccess to GridController * [CORE-428] - Make jq grid multi controller ready * [CORE-645] - Add ""hidden_condition"" to Field to hide a show/hide the fields in the SettingsEditor * [CORE-661] - Add support for arbitrary parameters in emi commands * [CORE-300] - VPN Firewall rules optimization * [UTM-368] - When changing webfilter configuration reload should be used to minimize outage * [UTM-529] - Proxy: HTTP * [CORE-413] - Add support for RAID controller 3ware 9650se * [CORE-416] - Inherit the functions defined in the superclasses * [CORE-297] - Add the possibility to define the job actions with a class attribute * [CORE-207] - Separate the base restartscripts from the jobsengine * [CORE-415] - After a JobsEngine iupgrade * [CORE-108] - Add a job which allows to set kernel parameters according model * [CORE-629] - Update Intel network drivers * [CORE-553] - Configurable logs for trusted timestamping * [ENTERPRISE-305] - Reporting * [CORE-381] - Optimize IRQ affinity of network cards * [CORE-382] - Ifplugd action script should be implemented in a modular way * [HOTSPOT-235] - Support for new currencies: Iranian Rial * [UTM-541] - Upgrade squid to stable version 3.3.4 * [UTM-454] - Squid needs to use Rock Store cache instead of aufs * [UTM-452] - Upgrade squid to stable version 3.3.1 * [UTM-427] - Start a number of squid processes based on the number of cores * [UTM-183] - Introduce HTTPS proxy support * [UTM-140] - Split clamav from combined antivirus icap module and make it configurable which virus scanner should be used. * [ENTERPRISE-272] - The text expands out of page boundaries at mail queue * [ENTERPRISE-267] - Settings file configuration for retention time for mail quarantine * [ENTERPRISE-270] - Button to remove all mails from quarantine * [CORE-141] - Upgrade process should make a backup of /var/lib/rpm before touching rpm database * [CORE-637] - Migration must run also on packages which are newly introduced * [ENTERPRISE-357] - Users in VPN Firewall are not filtered by scope * [UTM-653] - Support multiple subnets in IPsec * [UTM-582] - EMI GUI for IPsec * [UTM-341] - Read the OpenVPN keepalive settings from the config file * [UTM-722] - Create the new OpenVPN host certificate as 127.0.0.1cert.pem instead of hostcert.pem * [ENTERPRISE-269] - ""Uncategorized Sites"" category for Commtouch web filter * [ENTERPRISE-271] - Vendor whitelists for HTTP webfilter * [ENTERPRISE-8] - Use commtouch to identify non-spam mails as well * [ENTERPRISE-361] - SpamAssassin needs option to always bypass if commtouch is enabled * [ENTERPRISE-426] - Monitoring * [ENTERPRISE-455] - Show additional info to block high ports if Skype or BitTorrent is blocked * [CORE-487] - Add a shell command to configure the network * [CORE-437] - EMI * [UTM-686] - Use the CA country and organization as default values for new certificates * [CORE-545] - Add a config option ""emi.show_traceback"" for displaying the traceback in error pages * [CORE-181] - Add Language and Major Version as argument of the help link * [CORE-170] - FieldsGroup do not support toggle_name and toggle_option * [CORE-158] - Support callable field label_text and title within container and recursive container * [CORE-617] - Add the option ""required"" to the Multiline validator * [CORE-648] - System status * [CORE-685] - Make Apply * [CORE-656] - Policy Routing doesn´t work when http proxy enabled * [CORE-360] - Improve the jobrequests log adding the id the calling job * [CORE-164] - Archived log files must be deleted when free space is needed * [CORE-357] - Possibility to select TCP or UDP for remote logging * [ENTERPRISE-386] - Reporting * [UTM-572] - In the DNS Proxy * [UTM-547] - Squid X-Forwarded-For optimization to increase compatibilty * [UTM-571] - Proxy: SMTP * [UTM-385] - Disabling interception for POP3 TLS/SSL * [UTM-733] - Reflect in GUI transitioning states of IPsec connections * [CORE-465] - Add uplink IP addresses to the console menu * [CORE-157] - Rename clientSearch DataGrid option to client_side_search * [CORE-151] - MultipleSelectField does not fully support jQuery UI Themeroller * [CORE-500] - Improve the JobsEngine restart info/error messages * [UTM-821] - Replace Uncategorized with Others in the URLfilter categories * [UTM-309] - Some mails were not detected as SPAM and they should be detected * [UTM-813] - Add the ""show ipsec"" command * [ENTERPRISE-135] - Panda signature updates * [ENTERPRISE-137] - Jobsengine need to calculate first-startup using /var/efw/wizard instead of checking for /var/efw/ethernet/settings * [ENTERPRISE-143] - Pandascan should print out virus names in order that amavis can report them * [HOTSPOT-157] - Hotspot activation does not ""lock"" DHCP settings for the blue zone * [CORE-196] - Serivce job is not generic enough * [CORE-282] - Uplink scripts print out a deprecation message * [ENTERPRISE-145] - Adjust Panda Antivirus settings GUI * [ENTERPRISE-125] - ENTERPRISE-101 Update squid to 3.2 in order to have ""adaptation_meta"" feature * [ENTERPRISE-126] - ENTERPRISE-101 Package commtouch webfilter ctengine * [ENTERPRISE-359] - New version of nDPI module required * [HOTSPOT-223] - Hotspot Portal 3.0 redesign * [ENTERPRISE-366] - When panda optional module is installed sophos values need to be changed to panda. * [ENTERPRISE-360] - Include in Endian packages the nDPI test tool * [UTM-682] - Upload external CRL * [UTM-690] - Automatically regenerate the CRL and the index file every day * [UTM-288] - Resize partitions on ARM systems * [CORE-376] - New design for UTM GUI * [CORE-550] - Cleanup obsolete-unused code * [CORE-457] - Create Kendo Web Grid widget for EMI * [CORE-186] - Create a generic ServiceJob class which does all the standard job a simple restartscript does * [CORE-555] - Move ETag* classes from endian.job.commons to endian.job.generic.downloadjob * [CORE-541] - update syslog-ng to 3.4.2 * [ENTERPRISE-191] - Update hostapd to the last stable version * [UTM-552] - Squid 3.3.4 for ARM * [CORE-245] - Update translations for the next image * [CORE-511] - Update translations * [CORE-517] - Russian translations * [CORE-538] - Turkish translations * [CORE-658] - Update Portuguese translations * [CORE-675] - Update Russian translations * [CORE-693] - Update Japanese translations * [ENTERPRISE-265] - Unified virtual image for all supported hypervisors * [ENTERPRISE-325] - Process limitation for OpenVPN * [UTM-642] - Add support for IKEv2 * [UTM-648] - Test the available IPsec cipher * [UTM-649] - Add support for XAuth * [UTM-640] - Upgrade strongSwan to version 5.1.0 * [UTM-601] - Read OpenVPN user list from multiple servers * [UTM-420] - Add an option to bind OpenVPN server to a specific IP address * [UTM-680] - Create a patch for pyOpenSSL for extracting detailed information form CRL * [CORE-309] - Remove excessive EMI logs * [ENTERPRISE-192] - Running en-client removes all custom channels * [ENTERPRISE-189] - Add changelog link if updates are available * [ENTERPRISE-190] - Add nationalized license agreements based on the GUI language ** Bugfix * [UTM-743] - ClamAV daemon is started in multiple instances at boot * [UTM-764] - ICAP * [UTM-803] - ClamAV safebrowsing is still enabled also if disabled * [ENTERPRISE-48] - New replacement for our NAND chip needs a u-boot which is able to understand BCH ECC * [ENTERPRISE-40] - New replacement for our NAND chip is refusing to ubiattach and mount * [ENTERPRISE-63] - New replacement for our NAND chip is refusing to ubiattach and mount * [ENTERPRISE-25] - No kernel is installed on Endian Mini Edge * [ENTERPRISE-434] - Skype is not blocked by nDPI and other traffic is blocked instead * [ENTERPRISE-453] - Skype protocol not blocked by nDPI with Skype v6.11 * [CORE-132] - The Authentication layer does not start due to an utf-8 problem * [CORE-485] - Monit does not restore the monitored services list after upgrade * [CORE-613] - /var directory not owned by root * [CORE-638] - Freezings and reboots caused by out of memory (on a mercury50) * [UTM-544] - GUI updates are not working * [UTM-823] - ""Apply"" popup does not take effect on settings changes * [HOTSPOT-280] - Bridge not configured at first start * [HOTSPOT-126] - Modifying a hotspot account flushes radcheck * [ENTERPRISE-159] - Upgrade fro 2.4 intel to 2.5 is broken * [CORE-369] - Interzone rules not created after migration to 2.5 * [CORE-596] - Traffic through Snort gets dropped * [UTM-511] - ICAP protocol error due to c-icap children crashing * [CORE-307] - Post triggers of some packages lead to a blocking state on first install * [CORE-374] - Kernel traceback and system freeze on Performa e9100 * [CORE-593] - Segmentation fault in libc triggered by monit * [CORE-602] - Syslog runs with multiple instances * [CORE-598] - Fix start/stop/restart problems related to monit * [ENTERPRISE-134] - XEN image lacks some modifications for running in paravirtualized mode * [CORE-286] - Demo system should not read out user settings files * [CORE-280] - Traceroute does not work on x86 systems * [CORE-211] - No package requires efw-httpd * [CORE-283] - Action do not pass the correct controllername and apply box is hidden * [CORE-259] - Make EMI storage read/write save * [CORE-235] - Create new EMI datagrid with ajax support using jqGrid * [CORE-229] - Escape ID if used within an Action link * [CORE-226] - Grid controller needs to support none int IDs * [CORE-225] - Width * [CORE-214] - The grid controller does not set the storage (based on an entity) if only a grid widget is passed on init * [UTM-268] - Restarting c-icap sometimes does not start c-icap because of ""Bind error"" * [CORE-201] - Installer fails during rpm -U * [CORE-277] - Generic servicejob does not understand that config file changed during boot. * [CORE-251] - Logrotate configuration file is removed when logrotate package is upgraded after efw-syslog * [CORE-203] - purge-log-archives script fails under special circumstances * [CORE-202] - The logrotate package for arm includes a cron.daily scripts * [CORE-195] - BLUE_IPS and ORANGE_IPS is not defined in ethernet default settings * [UTM-236] - Accessing policy including a web filter profile does not apply until proxy restart * [UTM-213] - After Restarting c-icap a squid reload is needed * [UTM-184] - DansGuardian black- and whitelist are not written into the DansGuardian profile configuration files * [UTM-172] - DANSGUARDIAN_ENABLED and HAVP_ENABLED are not set to off if HTTP proxy is not enabled * [UTM-212] - C-icap does not start because of Include c-icap.d/*.conf * [CORE-274] - Error page templates will not be recreated after upgrading a module package * [ENTERPRISE-274] - Create a popup to show the content of an email * [ENTERPRISE-281] - Create a e-mail quarantine GUI * [UTM-200] - Route to subnet behind OpenVPN gw2gw user is set up with wrong gateway ip address when user has a static ip assigned * [UTM-774] - OpenVPN init.d script always returns exit code 1 when called from CLI * [ENTERPRISE-278] - During boot commtouch module is loaded in a manner that it would not block anything * [ENTERPRISE-279] - Commtouch urlfilter is not blocking anything after boot. * [ENTERPRISE-275] - Commtouch webfilter module should display category name instead of category id on html error page * [ENTERPRISE-276] - Urlfilter c-icap module shows ""banned1"" as reason for blocking a page when it is listed in custom blacklist * [ENTERPRISE-16] - Enable upstream proxy support within Commtouch ctasd.conf and Panda pandola-daemon.conf * [ENTERPRISE-148] - pavikit causes segmentation faults (in pandola-daemon but also in c-icap) under special circumstances * [CORE-228] - Add form_error argument and show form_errors within the form * [CORE-224] - Add suppress_label as entity field option * [CORE-631] - Default gateway is lost after adding an uplink on the same interface the main one is using * [ENTERPRISE-157] - Kernel panic when someone is connected with the wireless network * [UTM-398] - dnsmasq doesn't update resolv.conf after netwizard configuration * [UTM-604] - Squid cache is restarted because of an assertion failing * [UTM-466] - HTTP traffic interception doesn't work with SSL-Bump enabled * [UTM-815] - Squid fails to start after 3.0 migration * [CORE-582] - Time is 2h back after reboot * [CORE-615] - Traceback and hang (during clean dansguardian) in upgrade procedure * [ENTERPRISE-392] - Missing ip in httpd if port sharing is enabled * [UTM-697] - IPsec 3.0 migration missing * [UTM-828] - Routing between clients on different cores * [ENTERPRISE-222] - Package fallback category information for commtouch categories to be used when there is no access to commtouch servers * [ENTERPRISE-330] - With web filter enabled c-icap fails to start * [HOTSPOT-182] - Model classes not unloaded correctly * [ENTERPRISE-3] - Commtouch spam filter lose enabled status * [ENTERPRISE-58] - Pavikit overwrites existing signatures * [ENTERPRISE-37] - Semaphore leak in c-icap * [ENTERPRISE-35] - Panda AV fails with SMTP Proxy * [ENTERPRISE-59] - Old signatures are installed after the pavikit engine * [ENTERPRISE-449] - Panda job does not enable icap. * [ENTERPRISE-413] - ClamAV use a large amount of memory * [CORE-295] - Sometimes the restore of the hotspot database fails * [CORE-399] - Cached registration not cleared after factory default * [CORE-344] - Service Templates * [CORE-427] - Deadlock during the reading/writing of SettingFiles * [CORE-510] - fcron doesn't start at boot on arm with monit sync * [CORE-592] - ClamAV restart action raises traceback * [CORE-462] - Installer * [UTM-771] - Error signing a certificate request * [UTM-725] - Serial port speed is set to 38400bps * [UTM-765] - Going through Network Wizard again won't update settings * [HOTSPOT-233] - Database * [HOTSPOT-169] - Accounting trigger can exit prematurely * [UTM-641] - VPN: OpenVPN * [CORE-548] - Emi crash initializing entities stored on db * [CORE-318] - Multiple emi instances on upgrade * [CORE-289] - Logging & Monitoring * [ENTERPRISE-161] - endian-client causes traceback and refuses upgrade from EN when collectd is not up-to-date. * [UTM-445] - c-icap libPskavs segfaults * [UTM-780] - c-icap daemon fails to start after migration when parsing configuration file * [UTM-798] - c-icap uses a very large amount of memory * [CORE-389] - Monit does not wait for stop process to be finished before calling start process * [CORE-604] - JobsEngine returns an error if a function return an empty result set * [CORE-386] - Updated drivers modules are not loaded because of wrong folder * [CORE-642] - Kernel kmalloc traceback in /var/log/messages * [CORE-521] - Monit fails to change gid to '0' randomly on different daemons * [CORE-639] - Log timestamping doesn't use correctly the pattern variable * [HOTSPOT-132] - The portal page is not usable with IE7 * [HOTSPOT-267] - Web page for add ticket on client side is showed in wrong format * [UTM-658] - Reporting * [UTM-758] - Reporting * [UTM-724] - Reporting * [ENTERPRISE-338] - Reporting * [CORE-312] - Network wizard doesn't update routing rules * [CORE-349] - During netwizard reload jobs remain blocked causing that network is not configured which render the system inaccessible * [CORE-518] - Static Routing has higher priority than direct connected zones * [UTM-333] - Antispyware will block some very popular sites * [UTM-318] - Using PhishTank API key it's easy to hit the download limit * [UTM-442] - SHM deleted by old Squid process while in use by the new process * [UTM-437] - squid locks in uninterruptible sleep * [UTM-417] - Group based Access Policy fails on LDAP Authentication * [UTM-255] - Squid passwords can't be longer than 8 chars * [UTM-457] - Squid terminates abnormally due to invalid acl src_rule entries format * [UTM-323] - Missing LDAP helper for Squid * [UTM-702] - HTTP Proxy issues * [UTM-382] - Could not access popular sites with HTTPS proxy in transparent mode * [UTM-412] - Upgrade squid to version 3.3.0.3 (BETA) * [UTM-629] - HTTPS Proxy breaks Windows Updates as well as other services * [UTM-581] - P3scan child segfaults in libssl library while Intercepting for SSL connections is active * [UTM-423] - P3scan crash sometimes when a virus is found * [UTM-477] - SMTP proxy does not work if greylisting is active * [UTM-703] - Dedicated smarthost assigned to a specific uplink does not work * [HOTSPOT-146] - Tickets with 'datetime' validity are not enabled and disabled correctly * [ENTERPRISE-216] - High availability does not work because the uplinks and ethernet setting are not synchronized * [ENTERPRISE-223] - HA with appliances in gateway mode does not work * [ENTERPRISE-454] - Primary ip address of zones is management ip instead of GREEN ip if HA is enabled. * [UTM-735] - Snort establishes wrong pid filename * [ENTERPRISE-240] - OOM Killer gets triggered when Mail Quarantine is loaded * [CORE-520] - ntpd does not sync time in some conditions * [CORE-483] - Deadlock during upgrade procedure due to checkkernel cron-script which uses rpm * [CORE-135] - Upgrade process from GUI doesn't work * [ENTERPRISE-329] - Generic authentication with LDAP fails * [UTM-729] - IPsec status connection don't explain the right status * [UTM-801] - IPsec ESP Group Type not migrated to 3.0 * [ENTERPRISE-224] - L2TP issue if Endian UTM has a private IP address on main uplink * [ENTERPRISE-244] - Wrong iptables rules for L2TP users * [UTM-822] - OpenVPN server is limited to 256 client connections * [UTM-795] - Providers associated to a scope are lost * [ENTERPRISE-335] - IPsec connection not created * [ENTERPRISE-416] - IPsec XAUTH unable to establish a connection on iPhone/iPad with iOS7 * [ENTERPRISE-215] - c-icap does not start fast enough and will be killed by monit * [UTM-698] - Unable to download the content filter signatures * [HOTSPOT-215] - Users with cyclic tickets cannot be deleted * [HOTSPOT-202] - Accounts with bandwidth limits are not shown in the Active Connection Logs * [HOTSPOT-124] - Printed hotspot tickets contain no information * [HOTSPOT-276] - Authentication * [HOTSPOT-197] - Usernames with spaces are not parsed correctly * [HOTSPOT-266] - Database * [ENTERPRISE-2] - resolver address is not correctly parsed in ctasd.conf * [ENTERPRISE-5] - Commtouch activation flag disabled when saving certain settings * [UTM-714] - ClamAV signatures are not downloaded * [UTM-699] - Traceback during ClamAV start/restart * [UTM-806] - ICAP * [ENTERPRISE-62] - ICAP error when trying to download archive which contains encrypted files. * [ENTERPRISE-53] - Remove temporary files of c-icap-panda-util also from new location /var/tmp * [ENTERPRISE-42] - c-icap-panda-util does not find panda signature directory parameter in config file if globbing *.conf is used * [ENTERPRISE-57] - c-icap-panda-util segfaults while updating signatures * [ENTERPRISE-55] - Temporary signature files are not deleted in /tmp * [ENTERPRISE-29] - Panda LiveLog renderer is blocking LiveLogs * [ENTERPRISE-43] - Panda signatures credentials need to be moved from efw-panda to *-appliance-* packages * [ENTERPRISE-34] - Panda signatures are not updated * [ENTERPRISE-354] - Download of signatures with POP3 Proxy fails due to invalid jobsengine function request * [ENTERPRISE-383] - Panda antivirus is not enabled when selected only for HTTP Proxy * [ENTERPRISE-65] - New u-boot need to enable BCH only when hardware needs it * [ENTERPRISE-36] - Jobsengine startup messages are confusing on LCD * [ENTERPRISE-47] - Interfaces of macro-r1/2 and of any other device with more than 10 NICs are not sorted correctly in netwizard. * [ENTERPRISE-337] - ICAP error retrieved whenever a custom Web Filter is set up on a HTTP Proxy Access Policy * [ENTERPRISE-410] - Mailgraph use a huge amount of CPU * [ENTERPRISE-376] - Tor protocol is not blocked by nDPI * [ENTERPRISE-443] - SMTPS Protocol is not blocked by nDPI when Microsoft servers are used * [ENTERPRISE-435] - OpenVPN not blocked by nDPI * [ENTERPRISE-444] - pcapReader returns false positives on detected protocols * [ENTERPRISE-403] - YouTube protocol not blocked by nDPI * [ENTERPRISE-374] - Gmail Protocol not blocked by nDPI * [ENTERPRISE-375] - BitTorrent traffic not blocked by nDPI * [ENTERPRISE-323] - Checkbox doesn't work correctly and it display help text * [ENTERPRISE-322] - Box for hosts reachable not showed * [CORE-267] - update_user_value does not work with empty list * [CORE-472] - Remote authentication reply can contain binary values * [CORE-278] - Consider all kind of backups * [CORE-546] - Missing import of pwd and grp in endian/data/container/settings.py * [CORE-184] - The collectd netlink plugin stores information that are never used * [CORE-165] - After first configuration wizard * [CORE-559] - MultiLineSysLogHandler instance has no attribute 'unixsocket' * [CORE-587] - Bootloader * [CORE-578] - Monit memory leak * [CORE-423] - System status * [CORE-320] - The currently unused 'recovery' command of u-boot configuration is stored in a line which is too long * [CORE-284] - No boot if serial device is missing * [UTM-689] - Hide the ""Download the Certificate Revocation List"" link if the CRL is not available * [UTM-706] - Display a warning message instead of an error when importing a not already valid certificate * [UTM-696] - VPN: OpenVPN * [UTM-676] - Generating new certificates and having the CA in revoked list as well will sign certificates making them invalid * [UTM-728] - Proxy: HTTP * [HOTSPOT-201] - Unable to remove connected MAC-based accounts * [HOTSPOT-269] - Bridge hotspotbr0 is not created when the Hotspot is activated * [CORE-188] - Signature updates dashboard plugin does not work with certain translations * [HOTSPOT-203] - Database not upgraded if users are still logged in * [HOTSPOT-184] - Cyclic tickets price round up/down to near integer * [HOTSPOT-149] - Accounting may overflow for very large amounts * [HOTSPOT-147] - Calling 'hotspot-commandline --rebuild' leads to a broken radcheck table * [HOTSPOT-135] - Tickets with 'since ticket first use' validity are not expired * [HOTSPOT-259] - Hotspot DB migration not working on 3.0 * [HOTSPOT-247] - RADIUS * [CORE-535] - Text fields with type ""file"" cause an exception during form validation * [CORE-524] - CSV storage cache does not work correctly * [CORE-494] - Logging & Monitoring * [CORE-482] - CLONE - Sometimes emicommand hanging up because of curl * [CORE-480] - Revert the CachedStorage.select method and rename Storage.select into Storage.filter * [CORE-481] - Webshell does not work after recent emi upgrades * [CORE-475] - Datagrids must not share the same search filter cookie * [CORE-464] - Fix db storage sort order * [CORE-455] - If the optional HTTP header 'Accept' is not present in the request * [CORE-426] - Grid controller returns wrong subgrid information to jqGrid * [CORE-331] - Markup characters are not escaped before getting formated for grid columns * [CORE-310] - Sometimes emicommand hanging up because of curl * [CORE-281] - Emi convert error when editing web filters * [CORE-255] - YAML storage does not store anymore * [CORE-230] - Apache EMI 500 and 502 error pages use Endian Management Interface instead of Management Interface * [CORE-167] - EMI FieldsGroup and Container do not use correct line breaks * [CORE-161] - GridController.multiStore does not save correctly * [CORE-153] - EMIs CSVStorage does not support default CSV files because it creates an empty CSV file which overwrites the default * [CORE-152] - When using the multi controller the width of the content is to big * [CORE-149] - Slider widget does not work properly * [CORE-133] - After a system upgrade emi might not work anymore * [CORE-660] - The validators for network addresses wrongly restring network size to range 8-32 instead of 0-32 * [CORE-671] - In all the emi guis * [CORE-672] - Emi commands ignores all but the first param of a param list after the first request * [CORE-691] - The ""Apply"" button in the cgi pages does not work * [ENTERPRISE-177] - Reboot will be performed also if the upgrade ended without success * [ENTERPRISE-165] - Endian Network registration error * [ENTERPRISE-175] - Uplinksdaemon trigger calls the wrong executable * [ENTERPRISE-171] - Translations are incorrect because of wrong gettext strings * [ENTERPRISE-300] - Snort rules in enterprise products are outdated * [CORE-301] - An error warning is shown when trying to modify the events notifications * [CORE-265] - Events page raises an exception * [CORE-623] - VPNFWTRAFFIC bypassed if destination port matches PORTFW rule * [UTM-498] - Sometimes c-icap-client does not produce ICAP headers * [UTM-283] - Creation of c-icap access log files does not work * [UTM-275] - C-icap need upsteam fixes which fix problems in decompressing zip files * [UTM-271] - Proxy: HTTP * [UTM-362] - Reloading c-icap causes to exit cleanly because of a configuration error * [UTM-353] - While stopping c-icap children sometimes do not shutdown cleanly but block * [UTM-805] - Proxy: HTTP * [UTM-804] - c-icap does not start when clamAV is enabled instead of Panda Antivirus * [CORE-414] - Never import other job modules into a job * [CORE-345] - Due to an error in parsing the 'on' condition * [CORE-335] - jobcontrol hangs when sync restarting jobs * [CORE-326] - Jobengine exception during update * [CORE-279] - A malformed jobcontrol parameter causes an error in the JobsEngine * [CORE-257] - Jobs are restarted multiple times causing high load * [CORE-554] - ServicesJobs with dependencies loop forever * [CORE-558] - Add endian.emi.storage to the list of JobsEngine not-unloadable modules * [CORE-560] - Jobsengine ignores the functions if the job_actions is present * [CORE-552] - Signatures download failure due to missing proxy settings * [CORE-316] - Values of default settings files are not read when job uses get_config() * [CORE-477] - Network slowdown with e1000e 2.0.0-NAPI driver on Intel 82573L Gigabit Ethernet * [CORE-190] - Enable FUSION_SAS driver * [CORE-395] - Panda Antivirus archive logs * [CORE-247] - Logrotate is not run under various circumstances * [CORE-189] - RRD files from collectd must be stored in /tmp and periodically synchronized to /var * [CORE-595] - Password is shown in clear text in syslog-ng logs * [CORE-644] - Some log files are not rotated * [CORE-591] - Logrotate removes archives older than 7 days automatically for most daemons * [HOTSPOT-221] - Client-side login for Hotspot SmartLogin * [HOTSPOT-208] - MAC-based accounts are logged out * [HOTSPOT-207] - SmartLogin enabled for MAC-based accounts * [HOTSPOT-168] - Unable to register SmartConnect users with any browser bu Firefox * [HOTSPOT-130] - Changes to the portal background page setting are not applied * [HOTSPOT-129] - Registration via email can't be completed * [UTM-443] - Reporting * [CORE-343] - VLANs configuration problem * [CORE-174] - Local routes are missing in ip rule so user defined rules always overrule local routes * [ENTERPRISE-158] - Wireless GUI and job do not work if efw-hotspot is not installed * [UTM-338] - Updating efw-dnsmasq the httpd configuration file is removed * [UTM-250] - Replace malwaredomains with phishtank * [UTM-378] - Double efw-dnsmasq packages after upgrade * [UTM-606] - Frox is not working with appliance set in gateway mode * [UTM-289] - FTP Proxy port is missing in ip_conntrack_ftp module * [UTM-611] - Web Filter's custom whitelist does not work. * [UTM-555] - Squid %postun trigger does not restart squid * [UTM-455] - Squid status shows deprecated value * [UTM-277] - CLONE - NCSA users are moved into the wrong during an update * [UTM-273] - NCSA users are moved into the wrong during an update * [UTM-251] - Useragent logger logs also to /var/log/messages * [UTM-245] - Some templates for c-icap are missing or misplaced * [UTM-229] - Intercepted proxy connections are refused * [UTM-181] - Proxy PAC is not applied * [UTM-93] - Denial of service triggered by access to the proxy port * [UTM-456] - HTTP proxy status on dashboard is not correctly valorized * [UTM-624] - Squid restartscript create a settings file owned by root after the netwizard * [UTM-352] - No GUI access if sslbump and http proxy in non-transparent mode are enabled * [UTM-644] - Squid cache SNMP filedescriptor leak * [UTM-745] - HTTP Group Authentication with LDAP fails due to wrong filters * [UTM-773] - Dansguardian uninstall leaves a pending logrotate configuration file * [UTM-461] - Squid error with packages for new Logs and live logs * [UTM-407] - Downloaded certificate also contains the private key * [UTM-481] - Amavis daemon not starting due to inappriopriate value for $LOGFILE * [UTM-326] - Amavis passes mails with infected attachments * [UTM-327] - Amavis fails to block attached virus with double extension * [UTM-335] - SPAM and Virus email are always sent to quarantine * [UTM-655] - Spam withelisted mail address is being blocked whilst spamassassin shortcircuit is enabled * [UTM-782] - Virus engine for amavis is failing due to unexpected exit code 255 * [CORE-12] - Deleting all QoS rules does not disable QoS entirely * [HOTSPOT-159] - Radiusd configuration file is not updated * [HOTSPOT-224] - Cleaning of /var/log/radius/radacct * [UTM-627] - DHCPD restartscript create a settings file owned by root if the network settings are changed before configuring the DHCP server * [ENTERPRISE-213] - On HA takeover squid in transparent mode cannot bind to the address * [UTM-119] - At boot * [UTM-484] - ESTABLISHED/RELATED connections always pass through snort * [ENTERPRISE-253] - Mail quarantine need a button which allows to delete the entire quarantine * [ENTERPRISE-243] - Loading page timesout with to many emails in the quarantine * [ENTERPRISE-242] - The quarantine is not accesible * [ENTERPRISE-225] - Introduce the To field in the mail quarantine grid * [UTM-617] - QoS configuration on a PPPoE or PPTP uplink is applied to wrong physical interface * [ENTERPRISE-226] - SMS Activation Code Registration not working from GUI * [CORE-562] - Contentfilter on 'Status/System status' webgui section appears as stopped * [CORE-409] - Incorrect timezone after modification from GUI * [CORE-287] - Some strings are not brandable * [CORE-488] - Migration at the end of efw-update need to be started synchronized and not through jobsengine daemon * [CORE-484] - Cron scripts should not run during upgrade procedure * [CORE-466] - Emi sometimes on slow systems with high load refuses to start migration process. * [CORE-328] - In special circumstances smartpm calculates wrong transaction causing packages to be removed/upgraded wrongly * [CORE-159] - Some migration scripts are not executed * [CORE-458] - Error in migratiion must cause upgrade procedure to exit with failure * [CORE-459] - Ouput of hooks and their success or failure should be more verbose * [CORE-619] - No migration of enabled services on user vpn * [CORE-676] - efw-urlfilter conflicts with efw-dansguardian * [CORE-620] - Traceback while efw-update upgrade * [UTM-108] - OpenVPN client call a missing method ""remove_rules"", it is not controlled by jobengine and uses a deprecate function * [UTM-688] - Gateway to gateway connection is not initialized * [ENTERPRISE-313] - VPN user groups are always shown * [ENTERPRISE-352] - OpenLDAP Authentication filter strings user and group search possibility * [ENTERPRISE-320] - After removing AD-Server * [ENTERPRISE-411] - VPN: L2TP * [UTM-95] - Selecting GREEN in IPsec GUI corrupts ipsec configuration file * [UTM-652] - Add the zones in the IPsec interface options * [UTM-685] - Force reloading CRLs after revoking a certificate or uploading a crl * [UTM-687] - when a ipsec net to net tunnel is create a wrong local subnet is added * [UTM-700] - Reset connection button not showed on ipsec management page * [UTM-693] - Fix IPsec connection status parsing * [UTM-707] - The config file ipsec.secrets contains a wrong references to the server private key * [UTM-716] - Display a warning message in Virtual IP is enabled but the Virtual IP pool is not setted * [UTM-715] - Reload the IPsec configuration when a connection is deleted * [UTM-704] - First attempt in establishing a Net-to-Net IPsec connection fails * [UTM-708] - Windows 7 cannot to IPsec with IKEv2 machine certificate authentication because a missing Extended Key Usage parameter * [UTM-770] - After upgrade IPsec restartscript fails while trying to fetch CIDR for local subnet * [ENTERPRISE-258] - Authentication layer - HTTP header error * [ENTERPRISE-230] - L2TP with NAT-T fails creating ipsec connection in ESP state due to INVALID_ID. * [ENTERPRISE-246] - L2TP IP pool is not set correctly * [UTM-677] - OpenVPN job raises an exception if a zone is not available * [UTM-684] - Use the correct CRL according to the selected certificate * [UTM-536] - setvpnfw does not create the VPN rules because it reads the VPN status file too early * [UTM-625] - OpenVPN restartscript create a settings file owned by root after the netwizard * [UTM-759] - Use subnet topology for OpenVPN tun servers * [UTM-819] - When an OpenVPN connection is disconnected from the gui * [UTM-671] - Global OpenVPN option selects the old server certificate after a CA is deleted and recreated * [UTM-669] - Default VPN server instance is needed for automatic creation of certificates * [UTM-667] - Device is not deleted when changing tunnel interface from TUN to TAP and vice versa * [UTM-665] - Two factor is not working due to incorrect parsing for AUTH_TYPE * [UTM-666] - If user is present in two groups settings won't be added only if you restart the instance * [UTM-674] - Pushing domain for VPN user incorrectly prompts the user to insert an IP instead * [UTM-672] - OpenVPN port-sharing not working in 3.0 * [UTM-830] - Wrong IP in VPN firewall rules with multi process servers * [ENTERPRISE-369] - No warning for IPsec lack of roadwarrior IP pool when adding connections * [ENTERPRISE-333] - Can't establish a VPN tunnel with IPsec with XAUTH authentication * [ENTERPRISE-407] - Missing IPsec XAUTH User in VPN Firewall * [ENTERPRISE-210] - Emi error when a domain is added in webfilter custom white/black list * [ENTERPRISE-218] - Blocking uncategorized sites results in incorrect behaviour when blocking other sites * [ENTERPRISE-254] - C-icap sporadically crashes during start when commtouch is enabled * [ENTERPRISE-236] - Urlfilter c-icap module does not log anymore if a page has been blocked * [ENTERPRISE-260] - A webprofile which denies every category creates a block line which is to long and so last categories in line are ignored * [ENTERPRISE-245] - Disable commtouch in c-icap when commtouch-webfilter is disabled * [ENTERPRISE-252] - Blocking uncategorized sites leads to allowance of some blocked categories * [ENTERPRISE-221] - When accessing a HTTPS page c-icap causes ""The proxy server is refusing connections"" * [UTM-282] - Custom white and black-lists are ignored * [UTM-252] - Dansguardian job does also create config files and call cron script when commtouch is enabled * [HOTSPOT-195] - Replace the total price calculator for cyclic rates * [HOTSPOT-189] - Database * [HOTSPOT-181] - Calendar widget shown hitting enter on any text field * [HOTSPOT-175] - The function used to check the MAC address raises an exception * [HOTSPOT-167] - Multiselect widgets are no longer enhanced using jQuery * [HOTSPOT-153] - Changing timezone * [HOTSPOT-265] - Language setting show errors for turkish language * [ENTERPRISE-1] - Brackets characters {} are interfering with parsing e-mail attachment names. * [ENTERPRISE-4] - Ignore IP list is not added to ctasd.conf * [ENTERPRISE-347] - Commtouch Antispam packages present but no Commtouch options on GUI * [ENTERPRISE-433] - Commtouch Antispam tuning buttons are not correctly disposed. * [UTM-573] - ClamAV engine version 0.97.3 is outdated. * [ENTERPRISE-56] - Panda signatures are downloaded only if efw-proxy is installed * [ENTERPRISE-51] - Incorrect signature time for Panda AV shown in Dashboard * [ENTERPRISE-400] - Sophos is not removed after migration to 3.0 * [ENTERPRISE-44] - Shutdown and reboot are not displyed on LCD * [ENTERPRISE-327] - Appliance: Software * [ENTERPRISE-428] - Appliance: Software * [ENTERPRISE-363] - ""Log refused packets"" action in Log settings has no effect on application firewall rules * [ENTERPRISE-304] - FQDN it's splitted in wrong way * [CORE-446] - During a shutdown * [CORE-347] - Use endian.datatypes instead of endian.core.specialdict and endian.core.specialtypes that are deprecated * [CORE-264] - Logout button doesn't work for all browsers * [CORE-210] - efw-shell popd command does not work as expected * [CORE-616] - Changing the root password from the console menu does not work * [UTM-664] - Certificates are allowed to be reuploaded even if were previously revoked * [UTM-663] - Certificate name is represented as ""pem"" and ""p12"" on Chrome web browser * [UTM-661] - Certificate Revocation List still includes the CA of a deleted Certificate * [UTM-785] - Hide download server certificate for the OpenVPN and IPsec * [UTM-786] - Incorrect messages after sign a certificate * [UTM-769] - VPN: OpenVPN * [UTM-809] - VPN: IPsec * [HOTSPOT-187] - Login portal * [HOTSPOT-178] - When dhcpd is enabled to run on BLUE and hotspot is also running * [HOTSPOT-188] - Login issues for iOS devices * [HOTSPOT-261] - Login issues for iOS 7 devices * [CORE-322] - Menu is not shown in HA Slave * [CORE-583] - Redundant subsections in dashboard page * [HOTSPOT-240] - Update database version number * [HOTSPOT-183] - Tickets with datetime validity fail to set validity_added field when used after post-paid tickets * [HOTSPOT-154] - Exported accounts don't contain phone areacode * [CORE-606] - 'VPN client download' tab is missing from GUI * [CORE-476] - Fix webshell jquery_scrollpane_css import * [CORE-324] - Could not load YAML file '/var/efw/access/user' * [CORE-313] - Jobsengine * [CORE-160] - Prepare CSS for branding * [CORE-156] - EMI raises an exception if an _ does not return a dict when being processed * [CORE-150] - Accordion widget does not work as expected * [CORE-137] - YAML Storage raises an exception trying loading a valid YAML file that contains a list instead of a dictionary * [CORE-608] - Choosing other antivirus than ClamAV won't update Dashboard signatures * [CORE-674] - Parameters ignored for POST queries * [CORE-651] - In System Status some sub categories disappear when navigating to VPN connections * [CORE-456] - Descending sorting is not supported by the Database Storage * [ENTERPRISE-172] - The registration to Endian Network always display ""Unknown error in enclient"" as error message * [ENTERPRISE-167] - ""Start update process NOW"" just lists the packages on a 1st attempt * [UTM-303] - Show an error message to the user * [UTM-401] - Web page content not retrieved by c-icap * [CORE-366] - Some tools do segmentation fault.. probably due to compilation with wrong kernel header files * [CORE-353] - Jobsengine segfault after upgrade * [CORE-338] - Jobsengine logs action at different time * [CORE-308] - ETag comparison may fail * [CORE-650] - No child processes error in jobsengine log * [CORE-679] - JobsEngine fact containing unicode strings are not handled correctly * [CORE-678] - JobsEngine fact values containing a "":"" are not handled correctly * [ENTERPRISE-371] - Time left for registration is shown even for registered appliances * [CORE-397] - Old log information included in Commtouch webfilter * [CORE-371] - Panda Antivirus logs are not generated * [CORE-372] - Web filter live logs are not generated * [CORE-652] - System Status is not reflecting the true state of the services it reports * [HOTSPOT-260] - Remove genshi dependency for the Hotspot portal * [CORE-575] - Unable to add additional addresses to a new ethernet static uplink * [UTM-320] - DNS black and whitelists are ignored until the cron job runs * [UTM-316] - Blacklisted and Whitelist domain are not erased after saving settings * [UTM-775] - Duplicated lable in DNS Routing page * [UTM-393] - Wrong template shown when hitting Access policy ""access denied"" * [UTM-231] - ICAP error when activating proxy with AV * [UTM-232] - Web filter white/black lists are not applied * [UTM-90] - DansGuardian blacklists and phraselists are missing * [UTM-719] - ClamAV can't get signatures * [UTM-657] - Error 401 when going via squid * [UTM-761] - HTTP proxy information popup is not shown correctly * [UTM-760] - Webfilter: integrated * [UTM-755] - Proxy: HTTPS * [UTM-395] - Download of CA certificate should set MIME type and filename properly * [UTM-752] - YAML Traceback in Domain Routing until first domain route configuration * [HOTSPOT-136] - The FreeRADIUS server is restarted multiple times at boot * [ENTERPRISE-217] - High Availability still active after changing from routed to gateway mode * [ENTERPRISE-238] - Sorting by date and size of content within a email directory storage is not done correctly * [ENTERPRISE-232] - Error message shown after trying to view a quarantine email * [ENTERPRISE-344] - Attachment column header not shown in Mail Quarantine * [CORE-127] - Spam filter for SMTP (amavis) is shown as STOPPED * [CORE-302] - Status page does not show the correct information for some service * [CORE-305] - Australia/Yancowinna timezone is associated to country ""toria"" instead of ""Australia"" * [CORE-323] - Fix the timezone/country mapping * [CORE-412] - Portuguese * [CORE-662] - Update Spanish translations * [CORE-468] - Upgrade procedure does not log errors of smart package manager * [CORE-474] - Upgrade with smart 1.4.1 fails if a package need to be installed due to Require and has multiple versions of it in channels * [CORE-611] - ""Updates"" - ""Start update NOW!"" in the GUI always goes to the package list on a 1st attempt * [CORE-618] - Traceback during upgrade on x86 virtual * [ENTERPRISE-401] - KeyError ClientAuthException when navigating to VPN's Authentication * [UTM-738] - IPsec don't listen on GREEN when the appliance is configured in gateway mode * [UTM-701] - Generating a certificate from IPsec global settings fails * [UTM-776] - VPN connections status show a wrong users status * [UTM-812] - VPN: OpenVPN * [UTM-799] - IPSec deprecated keyword in strongSwan or weakSwan * [UTM-742] - Disabling IPsec Net-to-Net connection displays the status as if it was Connected or Connecting * [UTM-797] - IPSec Target could not be a DNS name * [UTM-97] - OpenVPN process can't remove temporary files * [UTM-557] - OpenVPN certificate migration error * [UTM-695] - VPN: User & Group Management * [UTM-781] - OpenVPN connection is not shown in VPN connections * [UTM-670] - Apply button's still visible after confirming changes to OpenVPN Server configuration * [UTM-673] - OpenVPN's `route delete` exits with code 2 when tries to delete a route for a (non existent) device * [UTM-675] - Navigating to Status > OpenVPN Connections won't contain statistics regarding VPN connections even if users are connected * [ENTERPRISE-451] - Cannot disconnect IPsec XAUTH users from the VPN Status page * [ENTERPRISE-234] - GUI Proxy log for Content filter does not exist * [ENTERPRISE-212] - c-icap can't blacklist all websites * [ENTERPRISE-229] - Blocking category is not shown if uncategorized sites are blocked * [ENTERPRISE-399] - Dansguardian is to be obsoleted by URLFilter * [ENTERPRISE-398] - Migration of old Dansguardian configuration to URLFilter is missing * [ENTERPRISE-235] - When ""Uncategorized Sites"" is selected, error page displays always ""ALL"" as description instead of the category where page is in. * [HOTSPOT-194] - Labels of cyclic rates are not clear enough * [CORE-451] - EMI * [UTM-660] - 'Unable to get local issuer certificate' error message when viewing uploaded certificate * [CORE-348] - emi traceback when Hotspot is disabled * [UTM-389] - Squid doesn't check for c-icap and tries to stop on reload * [UTM-103] - Sort form fields of AD Join GUI correctly * [UTM-325] - Squid tries LDAP connection even if HTTP Proxy is not enabled * [UTM-329] - HTML wrong header string for Mail routing * [UTM-751] - SMTP Mail server settings typo for DNS zones * [UTM-750] - Spam Black and Whitelists typo in tooltip displayed text * [CORE-138] - System uptime is shown incorrectly * [CORE-526] - UMTS analog dialup chat script will not be created due to missing variable * [ENTERPRISE-131] - SMTP/POP/FTP Proxies cannot modify content * [ENTERPRISE-130] - Missing ldconfig trigger in pavikit-5.04.05.0005-1.endian7.i586.rpm * [CORE-646] - Wrong owner on /var/efw/ethernet/settings * [CORE-253] - system crash due to squid-graph * [ENTERPRISE-12] - C-icap children crash with segmentation fault if commtouch module is active and persistent caching is enabled * [ENTERPRISE-14] - Commtouch ctasd daemon is not started by job * [ENTERPRISE-13] - Commtouch mail security cannot be disabled * [UTM-147] - Fix dependencies in order to allow to have a system without clamav * [ENTERPRISE-140] - Removing pandola-daemon blocks logrotate and keeps logfiles * [ENTERPRISE-133] - Logrotate doesn't work because of wrong configuration files or missing directories * [ENTERPRISE-136] - c-icap creates high load * [ENTERPRISE-141] - ICAP AV warning page references ClamAV * [ENTERPRISE-132] - ""Clean infected files"" AV engine option is disabled by default * [ENTERPRISE-139] - Panda c-icap module has a memory leak and consumes to much memory * [ENTERPRISE-128] - Panda cron job is not created if only HTTP_PROXY needs it * [ENTERPRISE-146] - Pandola client --update hangs when started by Panda job while the pandola daemon is not running * [ENTERPRISE-147] - Missing panda c-icap configuration variables need to be added to template * [ENTERPRISE-142] - Panda's pandola daemon is not effected by jobsengine and services * [ENTERPRISE-144] - Make Panda signature updates independent from pandola-daemon * [CORE-420] - CORE-389 Monit must always exec start/stop/restart in sync * [ENTERPRISE-22] - ENTERPRISE-14 Rename ctasd shell script to ctasd.start and ctasd.bin to ctasd * [ENTERPRISE-23] - ENTERPRISE-14 Add status attribute to ctasd init.d script * [ENTERPRISE-24] - ENTERPRISE-14 Add changed return value to save_config method * [ENTERPRISE-20] - ENTERPRISE-13 Fix Commtouch checkbox at Proxy->SMTP->Configuration->Spam settings * [ENTERPRISE-67] - ENTERPRISE-55 Workaround for removing panda signature download files * [ENTERPRISE-114] - Webfilter: Commtouch * [ENTERPRISE-116] - ENTERPRISE-101 Upgrade squid to 3.2.1 * [ENTERPRISE-111] - ENTERPRISE-101 Squid job fails if efw-commtouch-webfilter is not installed * [ENTERPRISE-150] - ENTERPRISE-128 Add check for HTTP proxy to pandacron.pre_set * [ENTERPRISE-149] - ENTERPRISE-128 Trigger pandacron job when restarting icap job * [ENTERPRISE-152] - ENTERPRISE-135 Delete pav.zip and *.udp files with pandola daemon after signature update * [ENTERPRISE-151] - ENTERPRISE-135 Download signatures with c-icap-panda-util if pandola-daemon is not running and reload signature db of c-icap after signature update * [ENTERPRISE-154] - ENTERPRISE-142 Pandola daemon is not triggered by panda job * [ENTERPRISE-156] - ENTERPRISE-142 Apply Update fix patch to pandola * [ENTERPRISE-104] - ENTERPRISE-101 Implement commtouch c-icap-module * [ENTERPRISE-108] - ENTERPRISE-101 Add commtouch webfilter icap configuration and job * [ENTERPRISE-106] - ENTERPRISE-101 Make c-icap include all known icap services if they are enabled using a c-icap.d include * [ENTERPRISE-105] - ENTERPRISE-101 Add feature to commtouch c-icap module that profile name is read from icap meta header * [ENTERPRISE-107] - ENTERPRISE-101 Integrate c-icap commtouch service into squid configuration templates * [ENTERPRISE-109] - ENTERPRISE-101 Automatically disable Dansguardian if Commtouch is enabled * [ENTERPRISE-124] - ENTERPRISE-102 libcap needs to be updated in order to have transparent proxy mode work with squid * [ENTERPRISE-123] - ENTERPRISE-102 Fix dansguardian * [ENTERPRISE-121] - ENTERPRISE-102 Remove HAVP * [ENTERPRISE-122] - ENTERPRISE-102 Integrate c-icap creating job and config files * [ENTERPRISE-119] - ENTERPRISE-102 Package c-icap and c-icap-modules containing panda module * [ENTERPRISE-120] - ENTERPRISE-102 Adapt squid config file for squid 3.1 * [ENTERPRISE-118] - ENTERPRISE-102 Upgrade Squid to version 3.1 * [ENTERPRISE-153] - ENTERPRISE-142 Services (SMTP proxy * [ENTERPRISE-185] - ENTERPRISE-183 Package ndpi netfilter kernel module and ndpi netfilter iptables module * [ENTERPRISE-188] - ENTERPRISE-183 Implement application firewall rules generation in outgoing firewall * [ENTERPRISE-187] - ENTERPRISE-183 Remove state NEW from checks in firewall skeleton pointing to OUTGOINGFW * [CORE-486] - CORE-485 Restarting monit with restart-enabed raises an error * [CORE-422] - CORE-389 Deadlock during the ""import"" in the forked child process if fork() happened while import_lock was held * [CORE-378] - CORE-376 Apply new design to Legacy GUI * [CORE-143] - CORE-75 Add u-boot configuration which starts a disaster recovery * [UTM-421] - UTM-420 OpenVPN portsharing * [CORE-443] - CORE-417 Disable uploads in vpn gui if demo mode is enabled * [CORE-450] - CORE-417 Disable ids upload fields if demo mode is enabled * [CORE-460] - CORE-417 Disable hotspot switch if demo mode is enabled * [CORE-453] - CORE-417 Limit hotspot acount generator to 10 accounts if demo mode is enabled * [CORE-454] - CORE-417 Limit hotspot ticket generator to 10 tickets if demo mode is enabled * [CORE-452] - CORE-417 Disable hotspot upload fields if demo mode is enabled * [CORE-445] - CORE-417 Disable emi upload fields if demo mode is enabled * [CORE-444] - CORE-417 Disable web console if demo mode is enabled * [CORE-388] - CORE-376 Fix branding packages * [CORE-387] - CORE-376 Move common css files into endian-artwork-core * [CORE-385] - CORE-376 Fix design issues in other packages * [CORE-379] - CORE-376 Images for new design * [CORE-377] - CORE-376 Apply new design to EMI * [CORE-330] - CORE-235 nodata option is handled wrong if not set * [CORE-299] - CORE-235 Remember opened subgrids after reload of the main grid * [CORE-293] - CORE-235 None ajax action do not use the standalone link if used from a standalone page * [CORE-292] - CORE-235 Add custom trigger to make async command calls * [CORE-291] - CORE-235 Add support for custom triggers on ajax grid action * [CORE-272] - CORE-235 Let the height of data grid grow with the width of the window in standalone mode * [CORE-271] - CORE-235 Let the width grow with the width of the window in standalone mode * [CORE-270] - CORE-235 Pass gridid * [CORE-269] - CORE-235 Force subgrid reload after ajax action * [CORE-261] - CORE-259 Write data to a temporary file and switch it with original file after completion * [CORE-260] - CORE-259 Add mutex to store and load method of the Storage class * [CORE-262] - CORE-259 Do not update timestamp of cached storage if read fails * [CORE-258] - CORE-235 Improve commands and status commands to return either text or json * [CORE-254] - CORE-235 Make emi commands and status commands less verbose and write tracebacks only into log files * [CORE-250] - CORE-235 Use AJAX request when executing multi item actions and actions if ajax support is enabled * [CORE-249] - CORE-235 Int ids need to be converted to always get converted to int when using grid actions * [CORE-244] - CORE-235 Add support for jqGrid multi item actions to datatgrid.js * [CORE-239] - CORE-235 Add Subgrid support for showing additional info stored in another entity * [CORE-241] - CORE-235 Rename ui.mulitselect to ui.muliselectendian and fix label problem * [CORE-242] - CORE-235 Apply new jquery ui themeroller custom theme * [CORE-237] - CORE-235 Integrate jqGrid into data grid * [CORE-218] - CORE-235 Implement EMI command grid action * [CORE-216] - CORE-235 Implement JavaScript to trigger command * [CORE-217] - CORE-215 Implement EMI command button * [CORE-142] - CORE-75 Disaster recovery job * [CORE-145] - CORE-75 Modification to installer initrd in order that it installs from usb * [CORE-410] - CORE-417 Add a demo mode to JobsEngine * [CORE-390] - CORE-389 Squid job should not use monit to restart the process. * [ENTERPRISE-201] - Reporting * [CORE-471] - CORE-343 After VLANs configuration * [ENTERPRISE-263] - ENTERPRISE-240 Not all memory allocated by the cached storage is given free after it is cached into a file * [ENTERPRISE-291] - ENTERPRISE-281 Releasing mail fails sometimes * [ENTERPRISE-290] - ENTERPRISE-281 Create emi command for releasing mails * [ENTERPRISE-289] - ENTERPRISE-281 Ask user if a mail should be removed from quarantine after release * [ENTERPRISE-288] - ENTERPRISE-281 SMTP proxy sometimes can not connect to amavisd * [ENTERPRISE-287] - ENTERPRISE-281 Create a custom widget to show the payload of an email * [ENTERPRISE-286] - ENTERPRISE-281 Add amavisd-release to amavisd package * [ENTERPRISE-283] - ENTERPRISE-281 Create a custom storage which scans a directory for emails and wraps the content * [ENTERPRISE-285] - ENTERPRISE-281 Create a grid to show the mails stored in the quarantine * [ENTERPRISE-284] - ENTERPRISE-281 Create the directory structure for the efw-mail-qurantine package * [CORE-418] - CORE-417 Disable Language Change if demo mode is enabled * [UTM-607] - UTM-582 Add an option to change the multi values separator of the CSV storages * [UTM-599] - UTM-582 EMI GUI for certificates * [UTM-818] - UTM-817 Add session id to the open connections list * [UTM-829] - UTM-828 Disable direct client communication when multiple processes is enabled * [ENTERPRISE-117] - ENTERPRISE-101 Add support to whitelist / blacklist certain URLs from commtouch * [ENTERPRISE-115] - ENTERPRISE-101 Disable Zero Latency for ctengine when used with c-icap * [ENTERPRISE-113] - ENTERPRISE-101 Add category caching support to Commtouch c-icap module * [ENTERPRISE-112] - ENTERPRISE-101 Create custom error templates for c-icap * [ENTERPRISE-110] - ENTERPRISE-101 Package license information * [ENTERPRISE-21] - ENTERPRISE-13 Stop ctasd daemon if commtouch is not needed (SMTP proxy disabled/Spam filtering disabled/Commtouch disabled) * [ENTERPRISE-19] - ENTERPRISE-13 Remove switch from Proxy->SMTP->Anti-Spam * [ENTERPRISE-155] - ENTERPRISE-142 Pandola signature update cron job is not disabled if pandola is not needed * [ENTERPRISE-186] - ENTERPRISE-183 Add a global state INVALID DROP * [CORE-298] - CORE-235 Add default definition of order by for main and sub grid * [CORE-238] - CORE-235 Test if the jqGrid works on not yaml storages * [ENTERPRISE-197] - Reporting * [ENTERPRISE-207] - Reporting * [ENTERPRISE-261] - ENTERPRISE-240 Improve parsing of mails * [ENTERPRISE-262] - ENTERPRISE-240 Mailquarantine is diplayed slowly * [CORE-198] - CORE-196 Trigger action always if no changed[affects] exists for the job/service * [CORE-199] - CORE-196 Add flag to actions to define if a job or a service needs to be triggered * [CORE-197] - CORE-196 Merge restartOnStop ** Task * [ENTERPRISE-387] - Update demo to 3.0 * [ENTERPRISE-311] - 3.0 help links * [ENTERPRISE-365] - When commtouch is installed/removed categories need to migrated somehow * [ENTERPRISE-88] - New Endian UTM Mini Edge Wireless Appliance * [ENTERPRISE-297] - Documentation * [HOTSPOT-258] - Documentation * [CORE-417] - Create efw-demo rpm for the demo system * [CORE-177] - Boot procedure analysis * [CORE-172] - Test and Fix all EMI GUIs after the changes UTM-167 * [CORE-411] - Create a jquery-libs package * [CORE-692] - Read the configuration also from /var/emc/ * [ENTERPRISE-332] - Reporting * [UTM-633] - Add the type (client/server) to certificate * [UTM-636] - Use the certificates created/imported with efw-ca in OpenVPN * [ENTERPRISE-82] - Appliance: Software * [CORE-586] - Removal of credits page