Mondoo 11.31 is out!
๐ฅณ Mondoo 11.31 is out! This release includes asset inventory exploration, NGINX security, expanded risk detection, and more!โ
Get this release: Installation Docs | Package Downloads | Docker Container
๐ NEW FEATURESโ
Explore query packs results space-wideโ
Understand the configuration of systems throughout your spaces with query packs. Query pack pages now expose results returned for each asset. Use Mondoo's two dozen out-of-the-box query packs to expose important configuration data such as running processes or available memory. If those query packs don't include quite what you need, write your own query packs to expose business-specific asset configuration data throughout your spaces.
New CIS NGINX benchmark policiesโ
Keep critical web servers, proxy servers, and load balancers secure with new CIS NGINX benchmarks. These six policies include 91 checks in total designed to ensure that NGINX is not only installed securely but configured to protect sensitive data from prying eyes.
Run Mondoo in Azure Cloud Shellโ
Secure your Azure subscriptions without complex Azure credential configuration. Now Mondoo can install and run directly in Azure Cloud Shell: Simply paste the Workstation Quick Setup command in Azure Cloud Shell.
๐งน IMPROVEMENTSโ
Priority findings on the spaces pageโ
Quickly understand the spaces that need your attention the most with a count of priority findings shown on the spaces page. The number of priority findings is the total of all critical and high findings on the space. Mondoo highlights them to help you to better prioritize your effort.
Faster load times in complianceโ
Track your compliance quicker than ever, with up to 10x faster load times in the Compliance Frameworks page.
Additional risk factors for FTP serversโ
Prioritize the risks that matter the most with new risk factors for assets running vsftp, Pure-FTPd, and ProFTPD FTP servers.
Updated CIS Debian 11 Benchmark policy 2.0.0โ
With 665 updates including new and improved checks, descriptions, and remediation steps, this updated policy keeps your Debian 11 systems secure against the latest threats.
Resource updatesโ
gitlab.projectโ
- New
emptyRepo
field - New
groupRunnersEnabled
field - New
jobsEnabled
field - New
sharedRunnersEnabled
field
gitlab.project.approvalsettingโ
- New
selectiveCodeOwnerRemovals
field
gitlab.project.memberโ
- New
state
field - New
username
field
๐ BUG FIXES AND UPDATESโ
- Improve the rendering of descriptions and remediation steps in the Mondoo Linux Security policy.
- Move all service checks in the Mondoo Linux Security policy into a Sensitive Services chapter.
- Expand the Mondoo Linux Security policy
Ensure FTP servers are stopped and not enabled
check to include Pure-FTPd and ProFTPD. - Expand the Mondoo Linux Security policy's
Ensure IMAP and POP3 servers are stopped and not enabled
check to include the Cyrus IMAP server. - Expand the Mondoo Linux Security policy's
Ensure DNS server is stopped and not enabled
,Ensure NIS server is stopped and not enabled
, andEnsure talk server is stopped and not enabled
checks to support Debian- and Ubuntu-based systems. - Add remediation steps for SLES/openSUSE to the Mondoo Linux Security policy.
- Fix the Mondoo Linux Security policy's
Ensure SSH Protocol is set to 2
check incorrectly running on Ubuntu 24.04 systems. - Fix the Mondoo Linux Security policy's
Ensure mail transfer agent is configured for local-only mode
incorrectly identifying the IPv6 loopback address. - Ensure that the remediation steps in the Mondoo Linux Security policy include service restarts where necessary.
- Fix failing compliance reports in some spaces.
- Fix some AWS and Azure platforms not displaying correctly in the inventory overview.
- Fix the link to the CloudFormation template during AWS Serverless integration setup with non-us-east-1 regions.
- Add support for searching for software, compliance frameworks, and compliance controls in a space.