Showing posts from October, 2019

MeshCentral2 - Multi-Language Support

MeshCentral is already widely used and some from the GitHub community has already taken the step to translate MeshCentral into other languages. Until now MeshCentral did not support multiple languages but this is changing today as an updated version was just published that has multi-language support. As one can imagine, with about 1400 different strings (not including duplicates) the work required make MeshCentral support a different language is significant. We have come up with a new system that makes the process fairly painless. Here are the details: First, the MeshCentral web pages including the main web application and mobile application have been changed so that all JavaScript strings that need to be translated are double-quoted “” and non-translatable strings are single quoted ‘’. This makes is possible to automatically parse and extract all strings that need translation. Next, a new string extractor is packaged in MeshCentral that parses the HTML and JavaScript of all web

MeshCentral2 - Security, DB Record Encryption, Vault support

Because MeshCentral is a web site that has control over a lot of devices, security is super important. MeshCentral already implements two-factor authentication, FIDO2 hardware keys support and much more. In the last few months, we added even more security features to insure that compute assets are as protected as possible. Here are some of the security features that were added recently: Database Partial Record Encryption . When saving data in the database, some of the fields will need to be indexed for fast retrieval, but some of the data is sensitive such as account two-factor keys and Intel® AMT credentials. For these values, MeshCentral now offers an optional additional encryption layer using AES256-GCM. Fields that are marked as sensitive are encrypted and encoded in a special _CRYPT value in the database. When reading the record back, MeshCentral decodes and places the sensitive fields back transparently to the rest of the server code. This feature can be used on top of encrypti

MeshCentral2 - Added MQTT Support

In the last week MQTT support was added to MeshCentral. The Message Queuing Telemetry Transport (MQTT) is a simple protocol often used for Internet Of Thing (IoT) devices. By making MeshCentral fully capable of handling MQTT connections, this opens many more opportunities for developers to attach their own devices and usages to MeshCentral. MeshCentral does require a few added lines in the server’s configuration file you can enable built-in MQTT support. Here are a few details: MQTT Login Credentials. When enabled, a new “MQTT Login” link will show up at the bottom of a device “General” tab. Clicking on this will give the user a JSON document will all of the information needed to authenticate and login to the server. The document includes a username, password, URL’s and certificate hashes making it easy to cut and paste this into a device for a successful and secure connection. MQTT Console. The agent console tab was modified to support both agent commands and MQTT commands. In MQT