annoucements about the service and software of CAT

[Stefan Winter <stefan.winter AT restena.lu>]

Hello,

We are happy to announce a maintenance release 1.1.2 of the Configuration 
Assistant Tool (CAT).

This is a maintenance and light feature enhancement wrap-up; some of the 
fixes are already available since a while as "hotfixes" on cat.eduroam.org. 
The main goal of this release is to get rid of the hotfix series of 1.1.1 so 
that we have clean heads to work on the last "real, big" update in the 1.1.x 
series: the upcoming EAP-TTLS supplicant for Windows Vista and 7 - which will 
be the 1.1.3 update.

We would like to thank especially HP Enterprise, or more specifically their 
Aruba Networks division, for providing to us for free a revised version of 
the EAP-pwd Windows installer - some of you may have noticed that their 
previous version which we shipped before had problems under Windows 10. These 
problems were fixed by their development team on short notice and are now 
sorted out.

There is one notable behaviour change which we hope nobody notices or cares 
about, but anyway:

When a profile was production-ready, the user download page showed a deep 
link to /API.php?... for direct download of the installer. If a user 
bookmarked the deep link, the link would continue to work even if the 
"production-ready" flag was removed in the meantime; all other public display 
of the profile in question would cease. It is the intended behaviour to make 
production-ready remove an institution from anything in reach of an end-user; 
so the behaviour before 1.1.2 is considered a bug and now fixed.

Here is the full ChangeLog for this release:

Changes in 1.1.2
================
- [BUGFIX #1]  in radiust_tests translation of some messages was not 
activated and they appeared in English
- [BUGFIX #2]  in Windows installers the profile name was not sent trough 
code page conversion (reported by Daniele Albrizio)
- [BUGFIX #3]  fix regression: federation operators see their national stats 
again
- [BUGFIX #4]  In UserAPI generateInstaller returned a link to the actual 
file location and not the proper API call
- [BUGFIX #5]  Move installer cache and connection tests away from the web 
tree
- [BUGFIX #6]  in Linux module fix multiline display of messages in terminal 
mode, the installer can be run with sh, better bash location
- [BUGFIX #7]  In Linux installer there was no support for SSID removal
- [BUGFIX #8]  static RADIUS tests got confused when getting a server cert 
with more than one CN in its subject and reported "does not parse as 
hostname" errors when in fact all CNs were hostnames
- [BUGFIX #9]  Fix language changing in realm checks
- [BUGFIX #10] Fix RADIUS tests for self-signed server certs
- [BUGFIX #11] UDP tests running in parallel could fail due to the same 
Calling-Station-Id
- [BUGFIX #12] Server certificate subject printing failed if multiple CNs 
were present
- [BUGFIX #13] EAP-PWD implementation renewed and in the same time a problem 
with loading profiles on 64-bit systems resolved
- [BUGFIX #14] fix unathenticated access to installers marked as 
non-production
- [FEATURE #1] "About CAT" now displays a matrix of supported devices and EAP 
type combinations
- [FEATURE #2] RADIUSTests now use the first tab to display overview 
information from all tests
- [FEATURE #3] RADIUSTests can now report the new warning-level certificate 
condition "certificate contains more than one CN"
- [FEATURE #4] Linux module now supports Python3
- [FEATURE #5] Linux module verifies server certificates bases on 
altSubjectName
- [FEATURE #6] Linux module asks the user if in case of Network Manager 
installation failure it should save a wpa_supplicant file
- [FEATURE #7] add download options for Android: Amazon Appstore + local DL

The release is available on the usual location on downloads.geant.net. See 
this link for further information:

https://forge.geant.net/forge/display/CAT/Downloads

We are planning the actual deployment on cat.eduroam.org in the coming week; 
more concrete details to follow soon.

Greetings,

Stefan Winter

-- 
Stefan WINTER
Ingenieur de Recherche
Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de la 
Recherche
2, avenue de l'Université
L-4365 Esch-sur-Alzette

Tel: +352 424409 1
Fax: +352 422473

PGP key updated to 4096 Bit RSA - I will encrypt all mails if the recipient's 
key is known to me

http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xC0DE6A358A39DC66

Attachment: 0x8A39DC66.asc
Description: application/pgp-keys

Attachment: 0x8A39DC66.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature