DOM Customer Portal / Releases / Digi On-Prem Manager v24.1

Digi On-Prem Manager v24.1


Version 24.1 of Digi On-Prem Manager was released 2024-02-15.

The updated version is available in our APT repository.

c9ad211539da1a6fddefcbc7c4e4a7b44cdac311bb8174282297ed2ebf651dde   dom-server_24.1_all.deb

Changes from v23.9 to v24.1

  • Security:
    • sbom: Added downloadable Software Bill of Materials documents in CycloneDX 1.5 format describing vendored dependencies (63da530d)
    • passwords: Prevent users from setting passwords if they are on a list of the top 100.000 exploited passwords from the OWASP SecLists project (58e011ef9)
    • passwords: Increase minimum password length from 5 to 8 characters (20ef7fc1)
    • passwords: Increase generated password length from 11 to 16 characters, and increase alphabet size while avoiding ambiguous characters (0010653e)
    • passwords: Add mitigation for bug in the CSPRNG library used for password generation making the password derivation function sometimes fail. This bug was reported upstream, and did not have a security impact (1b8df7b0)
    • certs: Update cacert bundle to 2023-12-12 (19fdf78e)
  • Update SarOS DX client to 3.3:
    • Add support for TLS 1.2 if supported by SarOS version (d-dx/00b2e42d)
  • Update DAL DX client to 4.13:
    • Handle “Network unreachable” errors when devices do not yet have a route to the server (d-dx/9c515a29)
    • Make model lookup logic consistent with firmware versions, allowing for firmware updates on Digi Connect-IT devices (d-dx/a540d409)
    • Make wwan interface detection more robust with a failover to network.interface.wwan1 (d-dx/11975fdf)
    • Provide more detailed error messages in logs if sending telemetry to the server fails (d-dx/63a8f062)
  • Bugfixes:
    • dom-check: Fix incorrect syntax in nginx worker_connection suggestion (6fc6350)
    • groups: Fix bug where empty Change Log lines where added on empty save operations even if there were no changes (#1872)
    • reports: Fix incorrect dates in the Technology chart (#1815)
    • ui: Fix “Connect” and map links in application that broke after CSP rule changes (#1824)
    • ui: Fix inconsistent selection breadcrumbs on “RTask”, “Stats” and “Limits” pages (#1872)
    • ui: Fix HTML bugs on “Share Router” page (#1842)
    • ui: Fix bug with buttons on “Bulk CSV” page (#1838)
    • ui: Fix iframe sandbox restrictions that broke “Print Label” feature (#1822)
    • ui: Fix issue with “Show More” buttons on Router Details page (#1819)
    • ui: Fix styling issue with “Disable Two-Factor” button (#1821)
    • ui: Fix styling issue when Router multi-edit fails (#1877)
    • ui: Remove broken sort arrows from tables (#1820)
    • warnings: Fix counter error in the group dropdown menu (#1787)
    • warnings: A missing router temperature will now resolve a former temperature warning (#1823)
  • Features:
    • alerts: Enable optional downtime email alerts via the “Alerts” feature (207f98140)
    • router: Support for polling data usage from configurable Ericsson API endpoints. (#1602)
    • router: Support for using OpenCelliD data files for resolving locations based on cellular tower data (117c6e564)
    • router: Added “CSV Upload” to modify or add routers (#1716)
  • Improvements:
    • api: Added “reboot” and “ppp restart” counts (#1861)
    • dashboard: Add “Fixed”, “Cell-ID” and “GPS” filters (23a4f2e1)
    • dashboard: Add disabled routers to the “Inactive” count (#1816)
    • dx: Increase dx_cmd timeout from 9 to 15 seconds (11b58be0c)
    • group: Add “Notes” field to groups, shown where appropriate (#1844)
    • inbox: Add a change log record when a router is allowed (#1834)
    • map: Improve visibility of map markers
    • reports: Detect 5G routers and show them correctly in the Technology chart (#1827)
    • router: Add support for IPv6 addresses in WAN Override column
    • router: A common function for changing router data, instead of multiple implementations (#1860)
    • router: Add support for IPv6 addresses in WAN Override field
    • router: Swapped the compare dropdows so that the changes are more logically left to right + added help text (#1826)
    • rtask: Don’t start a “DX Upgrade” before every “Firmware Upgrade” (f58c7b72)
  • System:
    • rtask: Support a configurable number of taskrunner processes via the rtask.workers configuration file parameter, default increased from 1 to 3 (#1874)
    • configuration: Add support for extra hostnames via the server.extra_hosts configuration file parameter (e622ed25)
    • db: Refactor write operations against router metadata to use transactions, ensuring consistent valiation and change logging.
    • Refuse to run dom-check if you are not root (5920dc75)