Monday, October 31, 2016

Teiid 9.1.1 Released

Teiid 9.1.1 has been posted.  It addresses 7 issues:
  • [TEIID-3755] - Allow embedded to set the default authentication type
  • [TEIID-4499] - OData Kerberos cannot access VDB
  • [TEIID-4535] - Issues with EventDistributor
  • [TEIID-4541] - trustAllLocal works even for remote connections
  • [TEIID-4546] - On setting jboss-teiid cluster : throwing java.lang.IllegalArgumentException.
  • [TEIID-4547] - getQueryPlan fails in adminapi
  • [TEIID-4530] - Add semicolons to generated ddl
The most significant of which is a security issue - TEIID-4541.  If you are allowing remote JDBC connections, not using data roles, and have left trustAllLocal at the default setting, then remote connections that specify PassthroughAuthentication=true are also being allowed.  Please upgrade or alter your settings to prevent this.

The pace of fix releases for 9.0.x will now be much slower and end with the release of 9.2 Final.  The first alpha release of 9.2 should be available by the end of the week.

Thanks,
Steve

No comments:

Post a Comment