## Improvements - New Name, Same Awesome: The Admin page has been renamed to Settings. - Where's Waldo?: Notifications, Node Credentials, and Node Integrations can all now be found in the newly named Settings page. - Moved Around: General Settings is now called Node Lifecycle, and located under the newly named Settings page. - Improved Compliance: The STIG RedHat 7 preview compliance profile includes: - SV-86555r2_rule (Existing passwords are restricted to a 60-day maximum lifetime.) - SV-86619r2_rule (Default permissions for authenticated users ensure the user can only read and modify their own files.) - SV-86627r2_rule (Group Identifiers (GIDs) referenced in /etc/passwd are defined in the /etc/group.) - SV-86747r4_rule (Audit all uses of the creat syscall.) - SV-86749r4_rule (Audit all uses of the open syscall.) - SV-86751r4_rule (Audit all uses of the openat syscall.) - SV-86753r4_rule (Audit all uses of the open_by_handle_at syscall.) - SV-86755r4_rule (Audit all uses of the truncate syscall.) - SV-86757r4_rule (Audit all uses of the ftruncate syscall.) - SV-86795r6_rule (Audit all uses of the mount command and syscall.) - SV-86877r3_rule (SSH daemon must only use MACs employing FIPS 140-2 approved cryptographic hash algorithms.) - SV-86943r2_rule (System must not forward IPv6 source-routed packets.) ## Bug Fixes - Not the Silent Deep: `chef-automate backup delete` command no longer silently fails to delete backups. - Clear-cutting: Internal request logs were being written to disk without log rotation. No more! Our fix cleans up any instances of these logs that have been left around. - The Client-run Export now has: - Corrected behavior of Total Resource Count to provide correct values. - Removed fields that should not be associated with a node. - Clear Away: Node credential validation used to wrongly display an error, but we worked it out. - Resolved: A Compliance report export error when exporting larger reports is now fixed. - Can't Click That: Disabled buttons no longer act as clickable on mouse-over.