V4.7.3 - Security Fixes, Improvements and Bug Fixes

This is a security and bug fix release for versions v4.7.0 through to v4.7.2 inclusive.

If you are upgrading from v4.7.x, you should follow the standard upgrade instructions.

If you are upgrading from a version <v4.7.0 then you should upgrade to v4.7.0 first by following the specific upgrade instructions from v4.7.0.

Security Fix

This release includes a fix for a security bug introduced in v4.7.0. All users of v4.7.x should upgrade to v4.7.3 immediately. To allow people a chance to upgrade, we will delay publishing more information on the security issue until March 1st 2018.

Credit to @sparkeh for finding this.

Improvements and Bug Fixes

• Implement the IX-F Member Export Schema v0.7
• A management MAC address field has been added to the switch table. This is to allow for automated provisioning and particularly to allow you to create DHCP files with static addressing for your switches.
• A blank customer footer has been added as per #389 to allow for easy addition of Google Analytics/Piwik (now Matomo) tags.
• Do not include AS macro is IX-F export if none configured- fixes #379
• Escape SNMP commuities for MRTG - fixes #384
• Ensures looking glass API URLs do not end with a trailing slash (closes mailing list discussion)
• Add ping API endpoint (api/v4/ping)
• Add ability to allow customers to add/delete their configured MAC addresses (disabled by default). See documentation at: http://docs.ixpmanager.org/features/layer2-addresses/#end-user-access