McAfee Host Intrusion Prevention 8.0.0 Patch 6 Software



Similar documents
McAfee Data Loss Prevention Endpoint

McAfee Threat Intelligence Exchange Software

McAfee Firewall for Linux 8.0.0

Release Notes McAfee Risk Advisor Software For use with epolicy Orchestrator and Software

Release Notes for McAfee epolicy Orchestrator 4.5

McAfee SiteAdvisor Enterprise 3.5 Patch 2

McAfee Public Cloud Server Security Suite

McAfee Data Loss Prevention Endpoint 9.4.0

McAfee Data Loss Prevention Endpoint

Installation Guide. McAfee epolicy Orchestrator Software

McAfee Client Proxy 2.0

McAfee Endpoint Security Software

Installation Guide. McAfee epolicy Orchestrator Software

McAfee Host Data Loss Prevention 9.1 Cluster Installation Guide

Installation Guide Revision B. McAfee epolicy Orchestrator Software

Desktop Release Notes. Desktop Release Notes 5.2.1

Upgrade Guide. McAfee Vulnerability Manager Microsoft Windows Server 2008 R2

POC Installation Guide for McAfee EEFF v4.1.x using McAfee epo 4.6. New Deployments Only Windows Deployment

Installation Guide. McAfee epolicy Orchestrator Software

McAfee VirusScan Enterprise for Linux Software

About Help Desk. McAfee Help Desk 2.0 Software. Product Guide. Functions of McAfee Help Desk software. Quarantine release.

McAfee Optimized Virtual Environments - Antivirus for VDI. Installation Guide

Installation Guide. McAfee Security for Microsoft Exchange Software

McAfee Database Activity Monitoring 5.0.0

Data Center Connector for OpenStack

Spector 360 Deployment Guide. Version 7.3 January 3, 2012

Product Guide. McAfee Endpoint Protection for Mac 2.1.0

McAfee Endpoint Encryption for PC 7.0

McAfee epolicy Orchestrator 4.5 Cluster Installation Guide

McAfee MOVE AntiVirus Multi-Platform 3.5.0

Sophos Enterprise Console server to server migration guide. Product version: 5.1 Document date: June 2012

Reconfiguring VMware vsphere Update Manager

Release Notes for McAfee(R) VirusScan(R) Enterprise for Linux Version Copyright (C) 2014 McAfee, Inc. All Rights Reserved.

Creating a Content Group and assigning the Encrypt action to the Group.

McAfee Policy Auditor software Installation Guide

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

Sophos Enterprise Console server to server migration guide. Product version: 5.2

Altiris Patch Management Solution for Windows 7.1 from Symantec Release Notes

Best Practices Guide Revision B. McAfee epolicy Orchestrator Software

McAfee Optimized Virtual Environments for Servers. Installation Guide

Data Center Connector for vsphere 3.0.0

McAfee MOVE AntiVirus (Agentless) 3.6.0

STATISTICA VERSION 10 STATISTICA ENTERPRISE SERVER INSTALLATION INSTRUCTIONS

Pearl Echo Installation Checklist

McAfee Client Proxy Software

For a list of supported environments for VirusScan Enterprise 8.7i on Microsoft Windows, see (McAfee) KnowledgeBase article KB51111.

McAfee Data Loss Prevention Endpoint

McAfee DAT Reputation Implementation Guide. Version 1.0 for Enterprise

Installation Guide. . All right reserved. For more information about Specops Inventory and other Specops products, visit

Global VPN Client Getting Started Guide

Configuring and Integrating Oracle

Spector 360 Deployment Guide. Version 7

BillQuick Assistant 2008 Start-Up Guide

Migrating MSDE to Microsoft SQL 2008 R2 Express

McAfee Content Security Reporter 2.0.0

Product Guide. McAfee Endpoint Security for Mac Threat Prevention

Product Guide Revision A. McAfee Web Reporter 5.2.1

Kaseya Server Instal ation User Guide June 6, 2008

Reconfiguring VMware vsphere Update Manager

Symantec AntiVirus Corporate Edition Patch Update

Product Guide Revision A. McAfee Data Loss Prevention Endpoint 9.3.0

McAfee Content Security Reporter Software

About this release. McAfee Application Control and Change Control Addendum. Content change tracking. Configure content change tracking rule

Troubleshooting pcanywhere plug-in Deployment

SC-T35/SC-T45/SC-T46/SC-T47 ViewSonic Device Manager User Guide

How To Encrypt Files And Folders With A Password Protected By A Password Encrypted By A Safesafe (Mafee) (Eeff) 4

Deploying BitDefender Client Security and BitDefender Windows Server Solutions

PGP Universal Satellite Version 2.7 for Windows Release Notes

USER GUIDE. Snow Inventory Data Receiver Version 2.1 Release date Installation Configuration Document date

Pre-Installation Guide

McAfee Directory Services Connector extension

Deploying the Parallels Containers Update Server in a Local Network

McAfee Enterprise Security Manager 9.3.2

Copyright 2015 SolarWinds Worldwide, LLC. All rights reserved worldwide. No part of this document may be reproduced by any means nor modified,

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

Docufide Client Installation Guide for Windows

ACTIVE DIRECTORY DEPLOYMENT

Installation Guide. McAfee SaaS Endpoint Protection 6.0

Performance Optimizer Software

Installation Guide. McAfee SaaS Endpoint Protection 5.2.0

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

Installation Guide. McAfee VirusScan Enterprise for Linux Software

Setup Guide Revision B. McAfee SaaS Archiving for Microsoft Exchange Server 2010

Scholastic Reading Inventory Installation Guide

Getting Started. Symantec Client Security. About Symantec Client Security. How to get started

IBM Security QRadar Version (MR1) WinCollect User Guide

Deploying BitDefender Client Security and BitDefender Windows Server Solutions

BIGPOND ONLINE STORAGE USER GUIDE Issue August 2005

Sharpdesk V3.5. Push Installation Guide for system administrator Version

Sophos for Microsoft SharePoint startup guide

Installation Guide. . All right reserved. For more information about Specops Deploy and other Specops products, visit

Release Note Windows 7 SP1 64-bit for Community Connect 4

Ajera 7 Installation Guide

Best Practices & Deployment SurfControl Mobile Filter v

NETWRIX WINDOWS SERVER CHANGE REPORTER

WhatsUp Gold v16.1 Installation and Configuration Guide

Transcription:

Release Notes McAfee Host Intrusion Prevention 8.0.0 Patch 6 Software For Windows For use with McAfee epolicy Orchestrator Contents About this release New features Resolved issues Installation instructions Known issues Find product documentation About this release Thank you for using this McAfee product. This document contains important information about the current release. We strongly recommend that you read the entire document. The McAfee Host Intrusion Prevention 8.0.0 Patch 6 for Windows client package is for use on Windows platforms only. This is a change from previous McAfee Host IPS packages, which supported the Windows, Linux, and Solaris platforms. For Linux 64-bit platforms, use McAfee Host IPS 8.0.0 Patch 6 for Linux. For all other platforms (Solaris and 32-bit Linux), use McAfee Host IPS 8.0.0 Patch 5. We do not support the automatic upgrade of a pre-release software version. To upgrade to a production release of the software, you must first uninstall the existing version. Purpose This release of McAfee Host IPS contains various improvements and fixes. Although McAfee has thoroughly tested this release, we strongly recommend that you verify this update in test and pilot groups before mass deployment. Review the New features, Resolved issues, and Known issues sections for additional information. 1

For a list of supported environments, release versions, and latest information for Host Intrusion Prevention 8.0.0 on Microsoft Windows, see KnowledgeBase article KB70778. To install Host Intrusion Prevention on a server, you must purchase a license for Host Intrusion Prevention for Server or a server suite that includes Host Intrusion Prevention for Server (such as Total Protection for Server). You cannot install Host Intrusion Prevention for Desktop on a server. For additional information, contact your McAfee sales or support representative. Patch version This Host Intrusion Prevention 8.0.0 release includes two packages: Patch 6 Updates McAfee Host IPS 8.0.0 clients, with or without Patch 1, Patch 2, Patch 3, Patch 4, or Patch 5. Repost Patch 6 Includes the full McAfee Host IPS installation. Extension version This McAfee Host IPS 8.0.0 release includes extension packages for McAfee epolicy Orchestrator (McAfee epo ) : Firewall McAfee_HostFW_Extension_978.zip Intrusion Prevention System McAfee_HostIPS_Extension_978.zip Use this release of the extension to manage any version of the McAfee Host IPS client on any supported McAfee Host IPS platform, including Windows, Linux, and Solaris. This extension can also be used to manage McAfee Endpoint Protection for Mac and Firewall for Linux clients. This release supports the following McAfee epo versions: 5.1 (509) and later 4.6 (1029) and later Use this extension for both new installations and to update previous versions of Host Intrusion Prevention 8.0 Extension. Refer to KnowledgeBase article KB70778 for the most current Host Intrusion Prevention 8.0.0 details. Package date August 20, 2015 Release build Windows 8.0.0.3363 Rating High Priority McAfee rates this release as a high priority for all environments to avoid a potential business impact. This update should be applied as soon as possible. For more information about patch ratings, see McAfee KnowledgeBase article KB51560. New features This release of the product includes these new features. 2

New features Windows client This release of the Host Intrusion Prevention Windows client includes these new features. Support for Windows 10 This release adds support for Host Intrusion Prevention on Windows 10. Support for Windows 10 in-place upgrades Host Intrusion Prevention Patch 6 supports upgrading from Windows 7, 8, and 8.1 to Windows 10. Policy failover This release includes a new policy failover mechanism, which results in enhanced reliability. If the McAfee Host IPS LPC service receives invalid or incomplete policies from McAfee Agent, it now rejects and doesn't enforce these policies. When such anomalies occur, McAfee Host IPS sends events to McAfee epo. For more information, see KnowledgeBase article KB85187. McAfee Firewall Core Service startup type set to Manual For this release, the Startup type for the McAfee Firewall Core Service is set to Manual. The service is no longer started automatically. For more information, see KnowledgeBase article KB85374. Updated components This release of Host Intrusion Prevention includes an updated VSCore: version 15.4.0.560.8. New features Extension This release of the Host Intrusion Prevention Extension includes this new feature. Support for This release adds support for McAfee epo 5.1.3 and McAfee epo 5.3.1, as well as Java 8 compatibility. Ability to query the Files field This release adds support for querying the Files field in McAfee Host IPS events. This new field is available in McAfee epo under Queries & Reports Events Threat Events in the Host IPS 8.0 Event Info category. Data is visible only for events generated after upgrading the extension. No value is reported for older events reported before the extension upgrade the data will be empty for the Files field. 3

Resolved issues These issues are resolved in this release of the product. For a list of issues fixed in earlier releases, see the Release Notes for the specific release. Patch 5 PD25947 Patch 2 PD23957 Patch 4 PD25043 Patch 1 PD23514 Patch 3 PD24551 Windows client Reference Resolution 1026207 The mfefire.exe service now starts correctly. (Resolved in Patch 5.) 1028341 McAfee Host Intrusion Prevention service now preserves rule order when there are more than 100 rules in the Firewall policy. 1038207 Multicast traffic is now correctly matched within a location aware group. (Resolved in Patch 5.) 1039302 McAfee Host IPS LPC service no longer fails to start automatically on some Windows platforms. 1042273 If the McAfee Host IPS LPC service receives invalid or incomplete policies from McAfee Agent, it correctly rejects and doesn't enforce these policies. When such anomalies occur, McAfee Host IPS sends events to McAfee epo. Extension Reference Resolution 940706 The McAfee epo console no longer hangs. Open SQL connections no longer prevent the Property Translator task from running. 951746 The Automatic Response feature now functions properly. 991091 Email sent with Automatic Response feature no longer include HTML tags. 1019482 The Property Translator task no longer fails when run manually. Dash (-) characters in domain names are now considered valid. 1028156 McAfee Host IPS content versions now display correctly. Open SQL connections no longer prevent the Property Translator task from running. 1040082 The Event Parser no longer crashes. 1066687 The McAfee Host IPS Product Version property now correctly shows "Host Intrusion Prevention" rather than the incorrect "Product Version (McAfee Firewall for Linux)". Installation instructions Use these instructions to install, verify, and remove this Host Intrusion Prevention 8.0.0 Patch release. If you're running McAfee Host IPS on multiple operating system types, see the Patch 6 Known Issues article, available from KnowledgeBase article KB70778, for information about Patch 6 installation requirements in mixed-os environments. 4

Install the product directly to a client system Follow these steps to install the package directly to a target client system. The installation does not require a restart but might cause a brief interruption in network traffic. For more information, see the Host Intrusion Prevention Installation Guide. We don't support non-mcafee epo-managed systems. Task 1 Download the package: HIP80LMLRPx.Zip. Patch HIP80Px.Zip Repost Patch HIP80LMLRPx.Zip 2 Extract the patch files to a temporary folder on your hard drive. 3 Disable Host Intrusion Prevention protection with an McAfee epo delivered policy or in the local client interface. 4 Double-click the setup file in the temporary folder created in Step 2: Patch McAfeeHIP_ClientPatchx.exe Repost Patch McAfeeHIP_ClientSetup.exe 5 Follow the installation wizard instructions. 6 Enable Host Intrusion Prevention protection. Install the extensions into McAfee epo Install the Host Intrusion Prevention extensions into McAfee epo. See the topic on bringing products under management in the McAfee epo Help. Task For option definitions, click? in the interface. 1 In McAfee epo, select Menu Software Extensions. 2 Click Install Extension. 3 Browse to and select the extension.zip file, then click OK. This process might take several minutes to complete. 4 Repeat steps 2 and 3 for each extension.zip file, then click OK. 5 Verify that the product name appears in the Extensions list. 5

Deploy the product from McAfee epo Follow these steps to deploy this release to managed systems using McAfee epo. Before you begin This release requires McAfee Agent 4.8 or later. For more information, see the Host Intrusion Prevention Installation Guide. Task For option definitions, click? in the interface. 1 Check the package into the McAfee epo Master Repository: a b c Select Menu Software Master Repository, then click Check In Package. Select the Product or Update (.ZIP) package type. Click Choose File and select the Host Intrusion Prevention HIP80LMLRPx.Zip file. This process might take several minutes to complete. For more information, see the topic on checking in packages manually in the McAfee epo Help. 2 Deploy the package to the client systems: use a McAfee Agent Product Deployment client task. Verify the client installation After installing the Host Intrusion Prevention Patch 6 package, verify that the product installed correctly on the client systems. Releases are not displayed or do not report installed if an error occurred during installation, or if a file did not install correctly. Task 1 In McAfee epo, run the Host IPS: Client Versions query. For systems with Patch 6 installed, the Client Version (Host IPS) is 8.0.0.3363. 2 Click the version number to display the system names. 3 Verify the installation on the client: in the Host Intrusion Prevention client, select Help About. The Build Version shows 3363. File inventory This release of the software includes these files. Table 4-1 McAfee Host IPS files Folder name File name Version 32-bit 64-bit C:\Program Files\McAfee\Host Intrusion Prevention ClientControl.exe 8.0.0.3363 X X DebugLog.dll 8.0.0.3363 X X FireCL.dll 8.0.0.3363 X X FireCNL.dll 8.0.0.3363 X X FireComm.dll 8.0.0.3363 X X 6

Table 4-1 McAfee Host IPS files (continued) Folder name File name Version 32-bit 64-bit FireCore.dll 8.0.0.3363 X X FireEpo.dll 8.0.0.3363 X X FireSvc.exe 8.0.0.3363 X X FireTray.exe 8.0.0.3363 X X HcApi.dll 8.0.0.3363 X X HcCode.dll 8.0.0.3363 X X HcSql.dll 8.0.0.3363 X X HcSvc.dll 8.0.0.3363 X X HcThe.dll 8.0.0.3363 X X Helper.exe 8.0.0.3363 X X HipIISEngine.dll 8.5.64.0 X X HipIISEngineStub.dll 8.4.64.0 X X HipMgtPlugin.dll 8.0.0.3363 X X HipRc.dll 8.0.0.3363 X X HipShield.dll 8.0.0.3363 X X HpmRegistry.dll 8.0.0.3363 X X McAfeeFire.exe 8.0.0.3363 X X mcafeewin32guisupportdll.dll 8.0.0.3363 X X MngFirecore.dll 8.0.0.3363 X X nailite.dll 1.0.0.937 X X SecCtrFw.exe 8.0.0.3363 X X ts.dll 2.1.0.3 X X WinToast.dll 8.0.0.3363 X X 3rdParty.txt X C:\Program Files (x86)\mcafee\host Intrusion Prevention DebugLog.dll 8.0.0.3363 X FireCL.dll 8.0.0.3363 X FireCNL.dll 8.0.0.3363 X FireComm.dll 8.0.0.3363 X FireCore.dll 8.0.0.3363 X FireEpo.dll 8.0.0.3363 X HcApi.dll 8.0.0.3363 X HcCode.dll 8.0.0.3363 X HcSql.dll 8.0.0.3363 X HcThe.dll 8.0.0.3363 X Helper.exe 8.0.0.3363 X HipIISEngine.dll 8.0.0.3363 X HipIISEngineStub.dll 8.0.0.3363 X HipMgmt.exe 8.0.0.3363 X 7

Table 4-1 McAfee Host IPS files (continued) Folder name File name Version 32-bit 64-bit HipMgmtHpr.dll 8.0.0.3363 X HipMgtPlugin.dll 8.0.0.3363 X HpmRegistry.dll 8.0.0.3363 X McTrayHipPlugin.dll 8.0.0.3363 X MngFirecore.dll 8.0.0.3363 X msvcp71.dll 7.10.3077.0 X msvcr71.dll 7.10.3052.4 X nailite.dll 1.0.0.937 X ts.dll 2.1.0.3 X WinToast.dll 8.0.0.3363 X C:\Windows\System32\Drivers HipShieldK.sys 8.0.0.3353 X X Table 4-2 SysCore files Folder name File name Version 32-bit 64-bit C:\Program Files\Common Files\McAfee\SystemCore cacheinfo.exe * 15.4.0.651 X X fwinfo.exe 15.4.0.651 X X mfeapfa.dll 15.4.0.651 X X mfeavfa.dll 15.4.0.651 X X mfefire.exe 15.4.0.651 X X mfecana.dll * 15.4.0.651 X X mfecanary.exe * 15.4.0.651 X X mfefwctl.dll 15.4.0.651 X X mfehida.dll 15.4.0.651 X X mfehidk_messages.dll 15.4.0.651 X X mfenlfk.inf X X mfevtpa.dll 15.4.0.651 X X mfemms.exe 15.4.0.651 X X mfemms_messages.dll 15.4.0.651 X X mfemmsa.dll 15.4.0.651 X X mmsinfo.exe 15.4.0.651 X X vtpinfo.exe 15.4.0.651 X X vtp_catcache X X C:\Program Files (x86)\common Files\McAfee\SystemCore mfeavfa.dll 15.4.0.651 X mfecana.dll * 15.4.0.651 X mfecanary.exe * 15.4.0.651 X mfefwctl.dll 15.4.0.651 X 8

Table 4-2 SysCore files (continued) Folder name File name Version 32-bit 64-bit mfehida.dll 15.4.0.651 X mfemmsa.dll 15.4.0.651 X C:\Windows\System32\Drivers mfeapfk.sys 15.4.0.651 X X mfeavfk.sys 15.4.0.651 X X mfefirek.sys 15.4.0.651 X X mfehidk.sys 15.4.0.651 X X mfenlfk.sys 15.4.0.651 X X mfewfpk.sys 15.4.0.651 X X mfetdi2k.sys 15.4.0.651 X X mfendisk.sys 15.4.0.651 X X C:\Windows\System32 mfevtps.exe 15.4.0.651 X X * New with this release. All operating systems except Windows XP and Windows 2003. Only Windows XP and Windows 2003 operating system. Remove installation files You can remove the Host Intrusion Prevention patch from McAfee epo or directly from the client computer. For information, see the McAfee Host Intrusion Prevention Installation Guide. Known issues For a list of known issues in this product release, see this McAfee KnowledgeBase article: KB70778 and search for the Patch 6 Known Issues link. Find product documentation After a product is released, information about the product is entered into the McAfee online Knowledge Center. Task 1 Go to the Knowledge Center tab of the McAfee ServicePortal at http://support.mcafee.com. 2 In the Knowledge Base pane, click a content source: Product Documentation to find user documentation Technical Articles to find KnowledgeBase articles 9

3 Select Do not clear my filters. 4 Enter a product, select a version, then click Search to display a list of documents. Copyright 2015 McAfee, Inc. www.intelsecurity.com Intel and the Intel logo are trademarks/registered trademarks of Intel Corporation. McAfee and the McAfee logo are trademarks/ registered trademarks of McAfee, Inc. Other names and brands may be claimed as the property of others. 0-00

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information