Will the following two issues be addressed in the next release? I’ve posted on the their individual threads
Question - Project activity logs not found
This looks like it was reported and fixed. Not sure if my issue is the same (it matches the description) or a regression in the code but it doesn’t look good when rolling out the app and teaching staff how to use it to make their life easier… Trainer: “Click any link to get more information, but don’t click that activity link!”
Question - Removing insecure cipher suites
Its is somewhat ironic that our GRC software features high on our list of risks due to supporting insecure ciphers! Management : “Can we get rid of that package to reduce our risks?” Me “???” Even if its just a mod we can add into the docker recipe to turn off these ciphers.
No, these issues are planned to be addressed in version 3.27.0.
Regarding the cipher suites — yes, you can disable them directly within the container, but please note that this won’t be a permanent fix. As mentioned earlier, the proper fix will be included in the 3.27.0 release.
Thanks for the update. I’ll keep an eye out for the next big release. Is there a release date? I checked on the page but I couldn’t see any indication of the timeframe for the next release.
RE the ciphers: I did get chat GPT* to change the docker compose file to sort the ciphers and what its done looks sensible based on my limited docker and apache knowledge. I’ll give it a go once I have my eramba sandbox up and running, if 3.27 is not released by then