Nessus Network Monitor 5.9.0 Release Notes - 2019-06-03

New Features

Note: These new features are only available with an Industrial Security subscription and are available only when NNM is connected to Industrial Security.

New Features

The following are new features included in NNM 5.9.0:

  • Expansion of supported ICS assets to include over 1200 new detections:

    • Badger Meter - Flow Meters (2 new devices)

    • Balluff (34 new devices)

    • Beckhoff - (1000+ new devices)

    • Acromag (172 new devices)

  • Expansion of OT Protocol Detections

    • Vnet/IP Basic Protocol & Message Type Detection

  • Derivative Detections to Share OT-specific Data with

    • OT Protocol Detection

    • OT Vendor Detection

    • OT Family Name Detection

    • OT Model Name Detection

    • OT Model Number Detection

    • OT Serial Number Detection

  • Improvements to Existing Detections

    • Optimized OT detections previously only showing up in Plugin Output

    • Added individual device detections for common networking devices (Cisco and Palo Alto)

  • Added Default System Types - Discerning what a system is by as much as we know at the moment, including:

    • Host - devices hosting services and using standard IT protocols

    • Endpoint - devices acting as clients and using standard IT protocols

    • ICS Host - devices hosting services and using OT protocols

    • ICS Endpoint - devices acting as clients and using OT protocols

Changed Functionality and Performance Enhancements

The following functionality has been changed in NNM 5.9.0:

  • Stronger Password Protection by storing Cryptographic representations of passwords in the NNM database.

    (complies with Rule Version (STIG-ID): APSC-DV-001740)

  • NNM recovers when tcp syslog systems get restarted or recover from crashes.

For more information about the features and functionality supported in this release, see the NNM 5.9.0 User Guide.

Supported Platforms

Support is available for the following platforms:

  • Red Hat Linux ES 5 / CentOS 5 64-bit
  • Red Hat Linux ES 6 / CentOS 6 64-bit
  • Red Hat Linux ES 7 / CentOS 7 64-bit (includes support for RH/CentOS Version 7.6 through kernel version: 3.10.0-957)
  • MacOS 10.9 - 10.13 64-bit
  • Microsoft Windows Vista/7/8/10 and Windows Server 2008/2012/2016 (all 64-bit)

Upgrade Notes

Note: If your upgrade path skips versions of Nessus Network Monitor, Tenable recommends reviewing the release notes for all skipped versions. You may need to update your configurations because of features and functionality added in skipped versions.

Be Advised:

  • Versions of NNM prior to NNM 5.9.0 will no longer get updates via the feed. This is due to NNM's web server requiring an upgrade to extend the application's plugins limit. An upgrade to NNM 5.9.0 is necessary for all prior versions. For most existing customers with web server updates enabled (enabled by default) the transition will be seamless. For a select few customers who (a) have web server updates disabled, (b) have offline versions of NNM running that do not connect regularly for updates, or (c) customers who download old versions of NNM and attempt to install them after 30 May 2019, feed updates will no longer work.

    To resolve this, either (1) update using the NNM 5.9.0 installer/RPM (see User Guide for upgrade instructions) or (2) download the updated web server file (nbin) from the above downloads link, copy it to the <defaultInstallDir>/var/nnm/scripts/ and restart NNM.

  • Upgrades from 4.2.1, 4.4.1, 5.0.0, and 5.2.0 to 5.4.1 are supported.

  • Installations running versions prior to NNM 4.2.1 must upgrade to at least 4.2.1 prior to upgrading to NNM 5.9.0 - Refer to the NNM 5.9.0 User Guide for details on upgrading to NNM 5.9.0.

  • NNM 5.9.0 is compatible with SecurityCenter 4.7.x and later.

  • NNM 5.9.0 is compatible with Industrial Security 1.4.0. Note that only specific versions of NNM are compatible with specific versions of Industrial Security.

  • The NNM Web Server and NNM HTML5 User Interface are each automatically updated to version 2.5.0 via a plugin update.