Latest Patch
EventSentry Patch Download
The following problems are known problems with the latest official release
(v5.1.1). You are
encouraged to update to the latest build
(5.1.1.140) at your earliest
convenience.
Patches are always incorporated into the latest installer,
as such you do not have to apply a patch if you have
just downloaded the latest installer.
Please note that this patch
only applies to 5.1.1 level
releases.
Problems resolved since the initial release of EventSentry v5.1.1:
5.1.1.140
- Heartbeat Agent: Fixed issue where SNMP monitoring would stop after errors despite "Stop retrying" being unchecked
- Agent: Improved performance of File Integrity Monitoring (FIM) when a lot of files are regularly being deleted
- Agent: Fixed regression bug that would prevent browser inventory from being written to the database
5.1.1.134
- Management Console: Fixed issue where not all package types would be displayed when assigning packages under some circumstances
- Management Console: Various stability improvements
- Various bug fixes related to assigning packages
- Installer: Fixed issue when setting up the EventSentry database on a Microsoft SQL Server
- Collector: Security improvements
- Heartbeat Agent: Stability Improvments
5.1.1.128
- Agent: Fixed issue where agent would restart itself on some hosts due to an internal error in the event log engine
- Management Console: Event Viewer: Fixed system32 link for EventSentry events
5.1.1.126
- Management Console: Fixed regression bug that resulted in the built-in event viewer to not properly work
5.1.1.124
- Management Console: Fixed issue where event parameters configured for the process action would not persist
- Agent: Fixed SQL error with permission inventory when not using the collector
- Agent: Added preliminary detection for event formatting problems
- Built-In database upgraded to PostgreSQL v14.13
- pgAdmin upgraded to v8.10
5.1.1.118
- Agent: Fixed bug where recurring filters would not work under certain circumstances
- Agent: Improved logon tracking performance with reverse DNS lookups
- Management Console: Fixed issue where package download would re-download packages with the same name, causing corruption
- Management Console: Added additional options to PostgreSQL optimization dialog
- Management Console: Fixed bug where settings from environment dialog would not be saved
- Management Console: Fixed UI bugs on event log filter dialog that would cause crash
- Management Console: Fixed issue where a performance counter that is copied would not be monitored
- Collector: Stability improvements
- Installer: Improved input validation for postgres admin password
- Other minor fixes and improvements
5.1.1.106
- Management Console: Fixed issue where package update would duplicate some packages
5.1.1.104
- Agent: Reduced resource usage of digital signature checks of files
- Agent: Improved "require acknowledgment" feature in event log filters with collector-side evaluations
- Agent: Improved real-time detection of USB storage devices
- Agent: Digital signature check of files is more efficient
- Management Console: Improved loading speed of event log filter dialogs
- Management Console: Fixed issues with package download/merging
- General: Updated & improved collector shared memory
- Built-In database upgraded to PostgreSQL v14.12
- Web Reports: Added action field to summary view on Browser Extension History page
- Web Reports: Fixed Schedule Task CSV header
- Web Reports: Unique report names will now be determined based on the category
5.1.1.92
- Agent (Non-Collector): Fixed issue where the agent would use up an excessive amount of memory when using either Registry Tracking or Sysmon Integration and the configured database becomes unavailable
- ADMonitor: Fixed issue where the nightly archival process would not run when invalid files are encountered
- Configuration Assistant: Fixed issue where initialize a PostgreSQL database would sometimes require 2 attempts due to a missing schema
- Management Console: Fixed issue when applying certain JSON filters
- Network Services / NetFlow: Fixed issue where not configuring any conditions but having an AND evaluation logic would result in alerts being logged
- Web Reports: Fixed issue hovering on Performance Trends with multiple datasets under certain circumstances
5.1.1.90
- Agent: Fixes regression bug from build 5.1.1.82 that may prevent disk space data from being recorded
- Agent: Minor fixes and improvements
- Management Console: Minor fixes and improvements
- Log Import Utility: Fixed issue where import may abort before completely parsing input file
5.1.1.86
- Agent: Fixed issue where EventSentry agent would not start on Windows 2008
- Heartbeat Agent: Virtual machine status from Proxmox hosts now matches status from Hyper-V and VMWare hosts
5.1.1.84
- Management Console: Fixed issues with applying package updates
- Agent: Fixed issue where service may crash while stopping
5.1.1.82
- Agent: Fixed issue were summary notifications would not work when certain event properties contain Non-Ascii characters
- Agent: Stability improvements
- Agent: IP addresses would be resolved to host names in compliance logon tracking, even if the option was disabled
- Agent: Fixed issue where a group-specific action would not work for disk space packages
- Agent: Fixed issue where digital signature of .sys files would not be properly determined
- Management Console: Added HTTP template for Microsoft Teams
- Management Console: Fixed issues where settings from heartbeat dialog would sometimes not be saved
- Web Reports: Improved PostgreSQL 16 support on Database Usage
5.1.1.74
- Management Console: Improved package download and syncing mechanism
- Management Console: Fixed issue where having an empty event log package would always trigger a configuration save
5.1.1.72
- Agent: Fixed small memory leak with process tracking w/ collector setup
- Agent: Value comparison for anomaly detection is now case insensitive
- Agent: Anomaly engine stability improvements
- Agent: Fixed bug where agent would disconnect and not reconnect to collector when using minimal configuration
- Agent: Multiple improvements for client/collector connectivity
- Agent: Fixed bug where agent-side event log summary notifications were not working
- Agent: Only peform boot scan of event log if it is monitored
- Agent: Fixed bug where all installed browser extensions would sometimes be reported as added & removed within a short period of time
- Agent: Fixed issue where disk space overrides would not always work as expected
- Agent: Fixed bug where registry autorun monitoring would not work
- Collector: Fixed bug where agents would under rare circumstances send incomplete packets
- Collector: Fixed bug where .dump packet files were not properly written to disk
- Collector / Network Services: Fixed bug where SQL query was not properly closed when sending Network Services data through collector
- Management Console: Various UI improvements
- Database Import Utility: Fixed memory leak when importing .evtx files
- Built-In Database: Added warning files to database directories
- Web Reports: Improved readablility of Validation Script output when a script has failed
- Web Reports: Tomcat updated to v9.0.87
5.1.1.50
- Collector: Improved performance by adding parallel inbound queue processing
- Collector: Updated TLS implementation, improved reliablity
- Agent: Validation scripts will now interpret ERRORLEVEL 998 as a WARNING result (instead of #2)
- Agent: "Kill Action" will automatically append .EXE extension if process to be killed has no extension
- Agent: Improved reliablity for account management and policy tracking under heavy event logging load
- Agent: Fixed bug with file access tracking when monitoring sub directories
- Agent: Fixed bug where removing/unassigning a performance counter previously required an agent restart
- Management Console: Fixed problems with package download & merging
- Management Console: Added button to recover a stalled/frozen PostgreSQL instance
- Database Purge Utility: Data to be purged can be filtered by host
- Web Reports: Tomcat updated to v9.0.85
- Web Reports: Java updated to v17.0.10
5.1.1.36
- Heartbeat Agent: Improved overall reliablity of service
- Management Console: Fixed regression bug that would sometimes break HTTP-related tasks like checking for updates, downloading validation scripts etc
- Agent: Fixed bug where computer activity (Compliance Tracking/Account Management) would not be recorded
- Agent: Improved reliability of compliance logon tracking under extremely high event load
5.1.1.20
- EventSentray: Fixed speed test on systems where UAC is active
- Agent: Fixed issue where configuration revision was not immediately available after deploying and agent for the first time
- Management Console: Minor bug fix on system health / file monitoring dialog
5.1.1.18
- Agent: Fixed issue where some data was not written to the database when NOT using the collector
- Management Console: Fixed issue where making changes on the collector dialog would immediately be reverted and not saved
- EventSentray: Internet Test dialog now includes Speed Test (download only)
5.1.1.12
- Management Console: Fixed issue where deleting an action may incorrectly affect actions of existing filters
- Management Console: Improved accuracy of event id 1152 which is logged when the configuration is saved and shows changed items
- Management Console: Fixed issue with package download / syncing for filters with timer settings
- Management Console: Improved accuracy of collector stats when collector service changes status
- Management Console: Implemented help button on permission inventory dialog
- Collector: If an email is rejected by SMTP server because of an invalid recipient, then the email will not be resubmitted
- Agent: Improved chassis type detection for laptops
5.1.1.10
- Agent: Fixed issue where authentication failures were not written to database when not using the collector
- General: Fixed issue where creating a maintenance schedule would set custom HB settings for a host, disabling monitoring
5.1.1.8
- Collector: Fixed issue that could cause process to crash when client connects
- CMMC: Updated CMMC reports and dashboards to references #cmmc2 script tags
- Built-In database upgraded to PostgreSQL v14.10
5.1.1.4
- Management Console: Fixed regression bug where validation scripts time stamps were not read
- Management Console (light edition): Attempting to download an update would yield a certification validation error
- Agent: Fixed bug where print tracking could crash the agent if a long file name was printed (and processed by the Print Spooler)
- EventSentry Light: Binaries were not digitally signed
5.1.1.1
- Management Console: Fixed bug in EventSentry Light were navigating to certain dialogs would crash the management console
- Management Console: Various UI tweaks
- EventSentray: Network throughput is now displayed in KBytes/sec instead of Bytes/sec
- Web Reports: Fixed issue where certain optional properties would prevent the service to start
- Web Reports: Updated German and Spanish translations