CounterSnipe APD v2.1 Released ------------------------------ Summary * Added functionality * What is fixed in this release * Upgrade instructions * Summary ------------------------------ CounterSnipe are pleased to announce the availability of version 2.1.5 of the APD product range. This release combines numerous feature enhancements with fixes for reported bugs. Added functionality ------------------------------ Upgraded detection engine to version 2.1.2. * Configuration is checked for possible errors before attempting deployment to a device. * Added support for UTC/GMT timezone. * Learning mode. * Signatures can now contain regular expressions. * Live Demonstration CDROM Released. * SSL encryption has been added to all communications between the APD and * Console. * Improved incident management. * New low level management menu. * What is fixed in this release: ------------------------------ Large number of events could cause problems with the dashboard. * Rule upgrades leaves deleted rules in the database. * Drop now raises an alert rather than logging. * All logging on all devices now happens in the same timezone (UTC). * Dashboard error that showed only 1 minute of data under the 5 minute interval. * Improved input validation on reports. * Under some circumstances deleting large numbers of events could hang the console. * User can now view administer then one console from the same web browser instance. * Fixed incompatibilities with Internet Explorer. * Forced preprocessor ordering to ensure validity of all configurations. * Fixed loss of local rule changes during upgrade. * Resolved reporting problem that returned unlimited UDP entries even when requested to limit. * Device deletion is now handled more gracefully * Resolved bug with downloading reports in Internet Explorer over SSL. * Fixed bug in reporting that ignored the end date of a report and used the current date instead. * Fixed corrected package dependencies between cs-apd and cs-apd-harden. * Fixed copy to local group malfunction. * Fixed false positive occurrence due to incorrect handling of multiple event generators. * Upgrade instructions: ------------------------------ Log into the each system as root either via a remote ssh client, direct access to the console or over a serial connection. * Execute apdupgrade * Execute apdupgrade a second time * * Ensure that you redeploy to all management consoles and APD's after the upgrade is done. * * To successfully upgrade every system to version 2.1.5 apdupgrade MUST be executed twice consecutively on every system. Assistance. ------------------------------ If the upgrade fails, or any problems are encountered, please contact your relevant support organisation or CounterSnipe Technical Support. supportatcountersnipedotcom