Deep Security 10.0 Update 16 のモジュールを公開いたします。
■ 公開開始日
2018 年 12 月 19 日 (水)
■ 対象モジュール
Deep Security Manager
Linux 版 Deep Security Agent
Unix 版 Deep Security Agent
Windows 版 Deep Security Agent
Windows 版 Deep Security Notifier
■ 追加機能/修正内容
追加機能や修正内容は付属の Readme をご覧ください。
※日本語のReadmeは一か月以内を目安に公開いたします。
■ 入手方法
Deep Securityヘルプセンターからダウンロードできます。
「Deep Securityヘルプセンター」
サポート情報 : トレンドマイクロ
Deep Security Manager
2. What's New
========================================================================
2.1 Enhancements
=====================================================================
The following enhancements are included in this release:
Enhancement 1: [DSSEG-3147]
Added a system setting
(settings.configuration.enableStrongCiphers) that
allows users to enforce that all communication is
conducted using strong ciphers.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 2: [DSSEG-2994/SEG-28030/SF00852527]
In a multi-tenant Deep Security Manager environment,
alert emails now include the Tenant Name and Tenant
ID.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 3: [DSSEG-2989]
When generating a diagnostics package in Deep Security
Manager running on Windows, if you select the "System
Information" option, the diagnostics package will now
include the manager's msinfo file.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 4: [DSSEG-2783]
The versions of Apache Tomcat used in Deep Security
Manager have been upgraded to 8.5.34.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2.2 Resolved Known Issues
=====================================================================
This release resolves the following issues:
Issue 1: [DSSEG-3073/SEG-38539/01258057]
When Event Forwarding was configured to forward logs
from the Deep Security Agent directly to the Syslog
Server, the Deep Security Manager continued to send
the same logs to the Syslog Server.
Solution 1: This issue is fixed in this release.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Issue 2: [DSSEG-2967/SF01312959/SEG-38377]
UNC paths could not be added to Behavior Monitoring
Protection Exceptions.
Solution 2: This issue is fixed in this release.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Deep Security Agent Linux
2. What's New
========================================================================
2.1 Enhancements
=====================================================================
The following enhancements are included in this release:
Enhancement 1: [DSSEG-3022]
The version of zlib used by the Deep Security Agent
has been updated to zlib-1.2.11.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 2: [DSSEG-2970]
The version of curl used by the Deep Security Agent
has been updated to curl-7.61.1.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 3: [DSSEG-2966]
Deep Security Agent has been updated to support PFS
cipher suites.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2.2 Resolved Known Issues
=====================================================================
This release resolves the following issues:
Issue 1: [DSSEG-3105/SF01248774/SEG-37651]
When real-time Anti-Malware scans were enabled on
Linux, a lot of Linux Security Module logs were
generated.
Solution 1: This issue is fixed in this release.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Issue 2: [DSSEG-3076]
Packets were dropped due to an out of memory error
when skb_linearize was called to handle fragments.
Solution 2: This issue is fixed in this release.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Issue 3: [DSSEG-3004/SF01061186/SEG-33124]
The Anti-malware driver has a compatibility issue with
a GFS2/GFS cluster environment.
Solution 3: GFS2/GFS has been added to the Anti-malware hook
exclude list.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Issue 4: [DSSEG-2953/SEG-33407]
When Anti-malware real-time driver initialization
failed, the operating system sometimes crashed.
Solution 4: This issue is fixed in this release.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Issue 5: [DSSEG-2878/00461478/573707/00386295/SEG-5825/00487753]
Users who are not using a local Smart Protection
Server (SPS)Â reported many Dropped Retransmit
"rxjammed" events in the Firewall when using Web
Reputation Service, which caused the Firewall logs to
fill up.
Solution 5: Dropped Retransmit "rxjammed" events are no longer
recorded in the Firewall log.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Deep Security Agent Windows
2. What's New
========================================================================
2.1 Enhancements
=====================================================================
The following enhancements are included in this release:
Enhancement 1: [DSSEG-3022]
The version of zlib used by the Deep Security Agent
has been updated to zlib-1.2.11.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 2: [DSSEG-2970]
The version of curl used by the Deep Security Agent
has been updated to curl-7.61.1.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 3: [DSSEG-2966]
Deep Security Agent has been updated to support PFS
cipher suites.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 4: [DSSEG-2677]
The URL for the Trend Micro corporate site has changed
from http://www.trendmicro.co.jp/ to
https://www.trendmicro.com/. Deep Security has been
updated to point to the new URL where necessary.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 5: [DSSEG-3005/SEG-37605]
This release updates the Anti-Malware scan engine to
latest version.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2.2 Resolved Known Issues
=====================================================================
This release resolves the following issues:
Issue 1: [DSSEG-2878/00461478/573707/00386295/SEG-5825/00487753]
Users who are not using a local Smart Protection
Server (SPS) reported many Dropped Retransmit
"rxjammed" events in the Firewall when using Web
Reputation Service, which caused the Firewall logs to
fill up.
Solution 1: Dropped Retransmit "rxjammed" events are no longer
recorded in the Firewall log.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Deep Security Notifier
2. What's New
========================================================================
2.1 Enhancements
=====================================================================
The following enhancements are included in this release:
Enhancement 1: [DSSEG-3022]
The version of zlib used by the Deep Security Agent
has been updated to zlib-1.2.11.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 2: [DSSEG-2970]
The version of curl used by the Deep Security Agent
has been updated to curl-7.61.1.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 3: [DSSEG-2966]
Deep Security Agent has been updated to support PFS
cipher suites.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 4: [DSSEG-2677]
The URL for the Trend Micro corporate site has changed
from http://www.trendmicro.co.jp/ to
https://www.trendmicro.com/. Deep Security has been
updated to point to the new URL where necessary.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Enhancement 5: [DSSEG-3005/SEG-37605]
This release updates the Anti-Malware scan engine to
latest version.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
2.2 Resolved Known Issues
=====================================================================
This release resolves the following issues:
Issue 1: [DSSEG-2878/00461478/573707/00386295/SEG-5825/00487753]
Users who are not using a local Smart Protection
Server (SPS) reported many Dropped Retransmit
"rxjammed" events in the Firewall when using Web
Reputation Service, which caused the Firewall logs to
fill up.
Solution 1: Dropped Retransmit "rxjammed" events are no longer
recorded in the Firewall log.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~