ChangeLog

7.43.0 (August 2025)

Feature: User and user group capability reports
Enhancement: Support for more types of web portals using proxy
Bug fix: Password changes with special characters
Bug fix: Password specification enforcement

7.42.0 (May 2025)

Feature: API to get server password.
Enhancement: Support for Azure groups has been added using the Microsoft Graph API in OpenID Connect integration
Enhancement: Full scope override for OpenID Connect
Bug fix: Support for claims in ID token for OpenID Connect
Update ezsh backend libraries (including OpenSSL 3.5)

7.41.0 (March 2025)

Feature: OpenID Authentication
Feature: API to reset gateway user password
Enhancement: Ensure zlib PHP extension is available during setup which is required for SIEM

7.40.0 (March 2025)

Feature: Force internal authentication for specific users
Feature: API to set user expiry
Enhancement: Updated web dependency libraries
Enhancement: More logs for actions performed via API
Enhancement: Remove js/css files from web activity logs
Bug fix: Server add with auto-generated password not conforming to all password rules
Bug fix: SFTP file download failing in certain cases
Bug fix: Not displaying mexec list add failure message
Bug fix: Recaptcha V3 settings validation
Bug fix: Incorrect display in search fields

7.39.0 (November 2024)

Feature: Turnstile (Cloudflare) Captcha supported
Enhancement: Google reCaptcha v3 supported
Enhancement: Improved SSH log viewing (Includes deleted server/user)
Enhancement: Improved web activity logs
Enhancement: Improved license checking (resilient even if the license cloud and/or servers go down) and display
Enhancement: Improved adding Google Authenticator
Enhancement: Improved SIEM integration to avoid sending pre-existing data
Enhancement: Improved installer script (install, upgrade and backup)
Enhancement: Improved time picker
Enhancement: Update jQuery library
Bug fix: Enforce password minimum length for user passwords
Bug fix: Sub-SSH / passthrough user in SSH tunnel
Bug fix: Terminate active sessions on account suspension
Bug fix: Cpanel flag in Control Panels
Bug fix: SSH log streaming in web UI
Bug fix: SSH log search not finding in case of certain special characters
Bug fix: Sorting and search reset in ssh logs and scp logs
Bug fix: Sorting in users, datacenters and server import

7.38.0 (July 2024)

Feature: Throttling of ssh logins to remote devices for a gateway user
Feature: Limit concurrent logins to remove devices for a gateway user
Enhancement: Perl compatible regular expression (PCRE) support in command guard
Updated ezsh shell system libraries

7.37.11 (June 2024)

Enhancement: Support for OpenPanel as a control panel

7.37.10 (May 2024)

Enhancement: Improved input validation for theme background

7.37.9 (May 2024)

Feature: Support for ed25519, ecdsa, dsa and rsa keys for global and cluster SSH keys
Enhancement: Updated WebSSH and RDP libraries

7.37.8 (May 2024)

Bug fix: Fix CSP in 2FA form

7.37.7 (May 2024)

Feature: Allow sub-ssh user creation on servers added with non-root user with sudo privilege.

7.37.6 (April 2024)

Bug fix: Fix CSP for QR code

7.37.5 (April 2024)

Bug fix: Fix CSP in 2FA after a session expiry
Bug fix: Fix Google Authenticator QR code

7.37.4 (March 2024)

Feature: Support for ARM64 architecture

7.37.3 (March 2024)

Bug fix: Fix pagination with search in listing pages
Bug fix: Fix sub ssh user creation status display
Bug fix: Fix password based authentication in SSH tunnel

7.37.2 (March 2024)

Feature: Logging user inputs on remote systems to syslog for SIEM
Improvement: Make user home directories inaccessible to other Ezeelogin users
Improvement: CSRF token validation and per session tokens
Improvement: Hide plain text password in web UI
Improvement: Improve input validations
Bug fix: Internal error disclosure on login page
Bug fix: Issue in server and web portal import
Bug fix: Issue in listing of custom fields in server list
Bug fix: Undefined error on error pages
Bug fix: Implicit conversion PHP warning

7.37.1 (February 2024)

Improvement: Remove exit status warnings from parallel shell summary as it is not always available which causes confusion

7.37.0 (Jan 2024)

Feature: FIDO2 (WebAuthn) support for second factor authentication (2FA)
Feature: SIEM support via syslog
Feature: Prompt to enter a reason before accessing a remote server in SSH
Feature: Constant time authentication in Web panel
Improvement: Fixed RDP login when password is not saved
Improvement: Used standard CSRF token name for VAPT tools to not raise a false alarm
Improvement: Add additional HTTP headers to address VAPT warnings
Improvement: Stricter CSP to address VAPT warnings
Improvement: Stricter input validations to address VAPT warnings
Improvement: Upper bound for parallel shell threads to avoid crashing in low resource environments
Improvement: Updated dependency librarires
Bug fix: ezsh not listing servers when there are invalid entries in the database
Bug fix: IP search in ezsh not working in certain ACL configurations
Bug fix: SFTP ACL when giving specific access
Deprecated: Support for PHP 7.x

7.36.1 (November 2023)

Feature: Splunk SIEM integration
Feature: Enable or Disable Password based authentication to remote servers in SSH
Bug fix: Crash in parallel shell in certain edge cases

7.36.0 (November 2023)

Feature: Command guard assignment to user groups
Feature: Remote startup script - script to be executed on remote device on login via ezsh
Enhancement: Azure AD group name resolution with SAML authentication
Enhancement: support for PHP 8.2
Deprecated: support for PHP 7.x
Bug fix: Fix Sub SSH User ACL (add/delete not available when only one is allowed)

7.35.0 (September 2023)

Enhancement: Update autogenerated password specification for auto generating simpler password for use in IPMI consoles
Bug fix: SFTP upload/download via web panel when Sub SSH user is configured
Bug fix: Sub SSH user credentials display in server details view via web panel
Bug fix: Sub SSH user credentials missing in certain edge conditions

7.34.3 (August 2023)

Bug fix: Secondary node install failure on OSes with very old OpenSSH

7.34.2 (August 2023)

Feature: Option to not verify TLS certificate for LDAP
Improvement: More details in credential history
Improvement: Remote path checking in SFTP upload
Bug fix: Potential information disclosure in the log file
Bug fix: Error in user SSH key editing with expiry enabled
Bug fix: CSP on error pages
Bug fix: Server getting deleted in certain edge cased when it’s manually updated
Bug fix: SFTP upload/download to servers using global key alone
Bug fix: Secondary node install failure on OSes with a new OpenSSH such as Debian 12
Bug fix: Credential history getting out of sync in cluster during automated password reset
Bug fix: Cluster setup when MySQL socket is used
Bug fix: Error when changing server IP and password management in a single edit

7.34.1 (August 2023)

Bug fix: error when MySQL SSL ciphers specified in ez.conf

7.34.0 (August 2023)

Feature: Credential history - show history of previous passwords and keys for servers

7.33.1 (July 2023)

Improvement: Capture remote exit status or signal and record such failures as well in parallel shell

7.33.0 (July 2023)

Feature: Summary of failed sessions in parallel shell

7.32.2 (June 2023)

Bug fix: Saving SAML service provider key in form.
Update: ezsh backend libraries

7.32.1 (May 2023)

Bug fix: Server listing API

7.32.0 (May 2023)

Bug fix: Fix saving SAML service provider key - Update: ezsh backend libraries

7.31.0 (April 2023)

Feature: Gateway user and actual user SSH client IP in remote shell environment

Use first name and last name from SAML attributes when auto-creating user

Bug fixes: Fixed error on ACL update when notification or detailed audit logs is enabled

Fix notification being sent during certain ACL updates even when change notification is disabled

7.30.2 (Mar 2023)

Fixed manual resolution when cluster goes out of sync

7.30.1 (Mar 2023)

Bug fixes
Fixed LDAP user search
Fixed cluster remove when the other node is down

7.30.0 (Feb 2023)

ECDSA key support
Removed libssh2 dependency for web file transfer
Updated ezsh backend libraries

7.29.11 (Jan 2023)

Bug fixes
Fix loading SAML libraries on Linux
Fix installer crash when mysqli library is not loaded
Fix for Cyberpanel in web panel proxy
Fix content security policy for Duo auth on PHP < 7.3

7.29.10 (Jan 2023)

Updated ezsh backend libraries
UI Improvements
Backup script improvements
Bug fixes (SSL verification setting in web portal advanced proxy)

7.29.9 (Nov 2022)

ACL for web portal export
Bug fixes and enhancements

7.29.8 (Nov 2022)

Bug fixes

7.29.7 (Nov 2022)

Web file transfer

7.29.6 (Nov 2022)

Bug fixes

7.29.5 (Nov 2022)

Bug fixes and enhancements

7.29.4 (Nov 2022)

Password hash for allow (whitelist) command guard
Updates for PHP8
Bug fixes and enhancements

7.29.3 (Oct 2022)

ACL to show IP address

7.29.2 (Oct 2022)

Bug fixes and enhancements

7.29.1 (Oct 2022)

Use saved SSH key for servers in API
Web based file upload to remote servers
Added PHP 8.x support.
Removed PHP 5.x support
NOTE: Server fingerprint format has changed. Ezeelogin cluster and remote server fingerprints need to be reset.

7.29.0 (Oct 2022)

Content Security Policy for web panel
Update web panel JS libraries

7.28.1 (July 2022)

Web panel global logout feature
Enable/disable advanced web proxy for webportals
Web proxy for URLs without auto login for webportals
Update backend libraries
Update web proxy libraries

7.28.0 (July 2022)

Update web panel framework
Bug fix: web sockets via web proxy

7.27.8 (May 2022)

Better error notification when requesting list of supported authentication methods fails

7.27.7 (April 2022)

Support usernames having spaces and only numbers
Bug fixes with enhancements

7.27.6 (April 2022)

Bug fixes with enhancements

7.27.5 (March 2022)

Option to skip LDAP user verification in ezsh
Bug fixes and enhancements
Error with empty license

7.27.4 (March 2022)

RDP port error in API script

7.27.3 (January 2022)

Bug fixes and enhancements.

7.27.2 (December 2021)

Bug fixes and enhancements.

7.27.1 (November 2021)

API to reset server fingerprint

7.27.0 (October 2021)

Authentication logs
Enhanced audit logs

7.26.1 (July 2021)

Allows web panel to continue operation in case of minor SQL errors. The errors will be only logged in the application log file.

7.26.0 (July 2021)

Duo security (two factor authentication) Universal Prompt support (requires PHP 7.3 and above)

7.25.12 (July 2021)

Bug fix in secondary node upgrade.

7.25.11 (July 2021)

Separate SAML Configuration for secondary node.
Bug fixes and enhancements

7.25.10 (July 2021)

Configurable notification from email address
Bug fixes and enhancements

7.25.9 (May 2021)

Bug fixes and enhancements

7.25.6 (April 2021)

Support for remote MySQL connection encryption without specifying separate key and certificate.

7.25.5 (April 2021)

mExec lists in ezsh group list
Improved password hashing
Control panels without auto-login.
Bug fixes and enhancements

7.25.4 (April 2021)

Reverse SCP.
Bug fixes and enhancements.

7.25.3 (March 2021)

User report
Bug fixes and enhancements.

7.25.2 (February 2021)

Improved ACL change notifications
Bug fixes and enhancements.

7.25.1 (February 2021)

Improved web-activity logs.
Bug fixes and enhancements.

7.25.0 (February 2021)

Radius for two factor authentication.
Bug fixes and enhancements.

7.24.1 (January 2021)

Bug fixes and enhancements.

7.24.0 (January 2021)

Force a user to change password on the next login.
Notifications for failed logins and account suspension.
Support logout from Web GUI even if no logout URL is provided by SAML IDP.
Support internal authentication as well (configurable) when using SAML authentication.
Option to export activity logs from web panel.
Option to download the SSH log file from web panel.
Bug fixes and enhancements.

7.23.0 (October 2020)

Ability to upgrade secondary node seamlessly without re-installation.
Bug fixes and enhancements.

7.22.0 (August 2020)

SSH to remote target servers by providing the remote ssh username and password on prompt.
Advanced web proxy with support for CSRF enabled portals.
Ability to annotate SSH/RDP logs.
Ability to update unmanaged Sub-SSH user credentials.
Support for adding IP ranges in Allowed IPs for user.
Internal command “ezexit” in ezsh to force exit from remote shell.
Show license source - where the license was loaded from
Improve alignment of server fields.
Included RDP port in server export.
Updated new helpdesk and knowledgebase links.
Bug fixes and enhancements.

7.21.0 (May 2020)

Updated libraries for supporting latest node versions.
Updated web panel framework.
Bug fixes and enhancements.

7.20.3 (May 2020)

Allow hyphen and underscore in usernames.
Bug fixes and enhancements.

7.20.2 (May 2020)

Updated libraries for supporting latest node versions
Updated web panel framework
Bug fixes and enhancements

7.20.2 (May 2020)

Allow hyphen and underscore in usernames
Bug fixes and enhancements

7.20.2 (May 2020)

MySQL 8.X support.
Bug fixes and enhancements.

7.20.1 (April 2020)

Bug fixes and enhancements.

7.20.0 (March 2020)

Enable CSRF, Content Security Policy etc. on web panel for improved security.
Bug fixes and enhancements.

7.19.0 (February 2020)

Update libraries to the latest versions
Fix MySQL SSL on MySQL 5.7 and above and MariaDB
Support for the latest encryption algorithms and keys
Dropped the support for installation on 32 bit systems
Dropped the support for installation on FreeBSD system
Remove the WHM APIs v1 deprecated by Cpanel.
Bug fixes and improvements

7.18.0 (December 2019)

ACL for scp, sftp and mosh to the gateway (aka bastion host)

7.17.8 (November 2019)

ACL for controlling ssh gateway users actions such as scp, sftp and mosh.

7.17.4 (November 2019)

Bug fixes

7.17.3 (November 2019)

Bug fixes

7.17.2 (November 2019)

Bug fix in enable mode for switches and routers.

7.17.1 (November 2019)

Improved MySQL SSL connection.

7.17.0 (October 2019)

Updated jQuery to the latest 3.x
Removed bundled user manual.

7.16.0 (September 2019)

Reverse proxy support for web portals. Supports accessing web portals which are behind the bastion host gateway, complete request and response audit logs, and also more secure since the credentials don’t travel through the user browser.
Chroot environment for SCP and SFTP.
Removed deprecated ezapi script.
MySQL server dependency changed to 5.5 and above.

7.15.9 (July 2019)

Saml bug fix

7.15.8 (July 2019)

Security updates

7.15.7 (July 2019)

Security enhancement

7.15.6 (July 2019)

Usergroup-Servergroup ACL bug fixed

7.15.5 (July 2019)

Default theme change
Finer access control to ACLs.
Global setting to always delete remote users home directory when deleting managed Sub SSH User

7.15.4 (June 2019)

Bug fixes and enhancements

7.15.3 (June 2019)

Enforce 2FA on usergroup.
Bug fixes and enhancements

7.15.2 (May 2019)

Added ACL for restricting ezsh shell access

7.15.1 (May 2019)

Remote system user group for sub-ssh users.
Bug fixes and enhancements

7.15.0 (May 2019)

Supports cluster on AWS EC2 instance with RDS database
Message of the day (MOTD) on SSH gateway
Ability to view own SSH and RDP recordings
SSH as non privileged user on per user basis
Bug fixes and enhancements

7.14.0 (April 2019)

Support to add remote servers that has OTP prompts on SSH
User pass through support for RDP
Option to include custom fields in server listing
Bug fixes and enhancements

7.13.0 (February 2019)

Multiple LDAP support for user import and authentication

7.11.0 (January 2019)

Radius authentication support
Privilege escalation support in parallel and virtual shells
Enable/disable specific two factor authentication mechanisms for the user
Minimum requirements settings for auto generated passwords
Improved server details display in web panel
ACL for deleting SSH session logs and RDP recordings
General settings reorganised with separate tab for two factor authentication
Password policy enforcement
Bug fixes and enhancements

7.10.0 (December 2018)

RDP session recording and playback.
Reorganized global settings.
New global default settings for server prompts.
Custom default theme.
Updated Web SSH.
Updated Yubikey 2FA library.
Show all details with better formatting when expanding a server in web panel server list.
Updated web panel framework.
Improved house keeping script for log deletion
Bug fixes

7.9.2 (November 2018)

Bug fixes.

7.9.1 (November 2018)

Bug fixes.

7.9.0 (October 2018)

Support new license server.

7.8.0 (September 2018)

Improved saving SSH keys.

7.7.1 (August 2018)

Bug fix in Server clone feature during server additions.

7.7.0 (August 2018)

User pass through now lets you ssh to remote server as the same gateway user itself.
Envionment variables transfer to remote servers
Bug fixes.

7.6.0

IPv6 support.
Support for adding multiple server entries with the same IP address.
Bug fixes.

7.5.0

reCAPTCHA v2 and Invisibe reCAPTCHA support.
Change Notifications.
Enhancements and bug fixes.

7.4.0

Browser based terminal for SSH
SAML Authentication
Four eyes authorization
Tunnel host support for RDP
Several bug fixes

7.2.3

Several bug fixes
Changed Ezeelogin cluster key from DSA to RSA

7.1.6

Windows server support (RDP - Remote Desktop Protocol).
Contol panel auto login using Chrome extension (support for login forms with CSRF token).
Option to set a webportals as private.
Provision to import and export webportals.
Access control option for viewing super groups.
More control panels included by default.

7.0.1

Bug fix release

7.0.0

SSH User - Ezeelogin user can login to a server as a different user other than root. Admin can configure this
Duo Security - Now you can use Duo Security two-factor authentication to login to Ezeelogin
IPMI auto login for servers
Clone server - Auto fill details from already added server
Key management - Store SSH private key so that it can be used for adding server with private key
Easy to configure MySQL SSL support for encrypting master-slave communication
Several bug fixes

6.6.0

Support for adding server with SSH private key
Several bug fixes

6.5.2

Bug fix release

6.5.1

WHM functions directly from web panel with fine grained access control. No need to login to WHM any more for most of the activities
Expire user password after configured number of days forcing the user to change to a password which has not been used recently (for PCI compliance)
Support web proxy for fetching license from ezeelogin license server on servers behind firewall not having the option to allow direct access
Support for dual YubiKey per account
Improved security by avoiding the need for url_fopen to be enabled in PHP configuration
Several bug fixes

6.4.5

Bug fix release

6.4.4

Bug fix release

6.4.3

Bug fix release

6.4.2

Bug fix release

6.4.1

Bug fix release

6.4.0

Secure auto-login to WHM with pre-authenticated URL using CPanel LogMeIn facility. Supports redirection to account cpanel.
Clone web portals to quickly add same or similar portals with different username and password
Support login to server control panel running on another host
Separate Use DNS setting for control panel auto-login and SSH login
Bug fixes

6.3.1

Bug fix release

6.3.0

Custom fields with encryption support for servers
Domain lookup from server list in web panel
CSV header for server import/export
HMAC for sessions instead of MD5 for improved security
Fixed bug in automatic password setup when a server is initially added
Fixed errors in some input validation rules
Fixed an error in content pane rendering in web panel
Fixed cluster license verification

6.2.1

Bug fix release

6.2.0

Login to any web portal at the click of a button
Per user access control to web portals
Fixed some input validation issues in web panel
Fixed internal commands parameter issue in shell
Fixed display of data center in shell

6.1.0

YubiKey two factor authentication
Auto refresh screen in ezeelogin shell on window resize
Keep advanced section expanded on server edit
Fixed server group display when using ezinfo internal command with server hostname as parameter
Fixed hostname validation

6.0.3

Fixed bug in setting up 2-factor authentication key when it is not already set for a user

6.0.2

Fixed bug in user password reset
Fixed license and help pages viewing on slave node
Stronger password hashing algorithms for user password and security code when available
Option for background color with out background image in theme
Expand server groups to view list of accessible servers in the group

6.0.1

Lock out user after specified number of days of inactivity (for PCI compliance)
Fixed bug in server import
Fixed bug in server edit - cannot disable sudo
Fixed user add on latest Debian based servers
Fixed control panel and datacenter login on nginx web servers
Russian language support for web panel