まっちゃだいふくの日記

セキュリティのこと、ITの気になった記事をリンクしています。

Trend Micro Deep Security 12.0 Update 3 公開のお知らせ:サポート情報 : トレンドマイクロ@ 累積変更、AgnetでCentOS8追加、CPU負荷増大対応

Trend Micro Deep Security 12.0 Update 3 公開のお知らせ:サポート情報 : トレンドマイクロ

Deep Security 12.0 Update 3 のモジュールを公開いたしました。
■ 公開開始日

2019 年 11 月 6 日 (火)

■ 対象モジュール

Deep Security Manager
Linux 版 Deep Security Agent
Unix 版 Deep Security Agent
Windows 版 Deep Security Agent
Windows 版 Deep Security Notifier
■ 追加機能/修正内容

追加機能や修正内容は付属の Readme をご覧ください。
※日本語のReadmeは一か月以内を目安に公開いたします。

サポート情報 : トレンドマイクロ

Deep Security Manager

Deep Security Manager - 12.0 update 3
**New features
-Added Oracle19c as a supported database. (DSSEG-4723)
-Improved the diagnostic logging options for features related to AWS connectors. (DSSEG-4615)
-Updated Deep Security Manager to allow signed agent installers to be exported from the Deep Security Manager or installed via deployment script.<BR>The file name of any signed agent installer with extension .rpm now starts with "Agent-PGPCore" instead of "Agent-Core". (DSSEG-4570)
**Resolved issues
-On Linux systems, the default maximum number of the concurrent opened files did not meet Deep Security Manager's needs, resulting the manager failing to acquire file handles. As a result, features in Deep Security Manager failed randomly and a "Too many open files" message appeared in logs. (DSSEG-4748/SEG-59895)
-When a custom Anti-Evasion posture was selected in a parent policy (in the policy editor > Settings > Advanced > Network Engine Settings > Anti-Evasion Posture > select Custom), that setting did not appear in the child policies. ( DSSEG-4676/02434648/SEG-60410)
-An incorrect log source identifier was sometimes sent for syslog events. (SF02422793/DSSEG-4665/SEG-59969 and SEG-60314)
-In the computer or policy editor, under Anti-Malware > General > Real-Time Scan > Schedule > Edit, the Assigned To tab was sometimes empty, even when the schedule was assigned correctly to computers and policies. (SF02374723/DSSEG-4613/SEG-58761)
-When an invalid or unresolvable SNMP server name was configured in Administration > System Settings > Event Forwarding > SNMP, it caused SIEM and SNS to also fail. (SF02339427/DSSEG-4554/SEG-57996)
-Deep Security Manager showed many Internal Software Error system events when Events Retrieved and Agent/Appliance Error were not recorded in System Settings > System Events. (DSSEG-4433/SEG-39714)
-When Deep Security Manager was deployed in an environment with a large number of hosts and protection rules, the manager would sometimes load data for all hosts, even if the user only requested data from some of the hosts. (SF02552257/SEG-62563/DSSEG-4812)
-Gave the Deep Security Administrator the ability to hide unresolved recommendation scan results from the Intrusion Prevention, Integrity Monitoring and Log Inspection tab in the policy pages. To hide the unresolved recommendation scan results, use the following commands:
-Intrusion Prevention:
>>
dsm_c -action changesetting -name com.trendmicro.ds.network:settings.configuration.showUnresolvedRecommendationsInfoInPolicyPage -value false
<<
-Integrity Monitoring:
>>
dsm_c -action changesetting -name com.trendmicro.ds.integrity:settings.configuration.showUnresolvedRecommendationsInfoInPolicyPage -value false
<<
-Log Inspection:
>>
dsm_c -action changesetting -name com.trendmicro.ds.loginspection:settings.configuration.showUnresolvedRecommendationsInfoInPolicyPage -value false
<<
(DSSEG-4391)

Linux 版 Deep Security Agent

**New features
-Added CentOS 8 as a supported platform. (DSSEG-4671)
**Resolved issues
-High CPU usage occurred when Application Control was enabled on an Apache Hadoop server that was creating a high volume of non-executable files in the Yarn user cache. (DSSEG-4631)
-A Trojan file was not quarantined. (DSSEG-4644)
-Virtual machines went offline after a vMotion because the database was locked. (DSSEG-4638)
-The operating system sometimes crashed when a RATT tool was used to collect driver logs. (DSSEG-4435)
-Deep Security failed to download security updates. (SF02043400/SEG-52069DSSEG-4431)

Unix 版 Deep Security Agent

**Resolved issues
-High CPU usage occurred when Application Control was enabled on an Apache Hadoop server that was creating a high volume of non-executable files in the Yarn user cache. (DSSEG-4631)
-Deep Security failed to download security updates. (SF02043400/SEG-52069DSSEG-4431)

Windows 版 Deep Security Agent
Windows 版 Deep Security Notifier

This build has been deprecated due to issues with high CPU. Use a more recent build or contact your support provider for assistance.
For more information, see Removal of Trend Micro Deep Security Agent 12.0 Update 3 for Windows (build:12.0.0-682).

著作権法〔第4版〕

著作権法〔第4版〕