Release Notes CSG 7.0.26

Collax Security Gateway
06.06.2018

Installation Notes

Update Instructions

To install this update please follow the following steps:

Procedure

  1. It is highly recommended to backup of all server data with the Collax backup system before proceeding. Check that the backup was successful before proceeding with the update (this can be done within the backup information email).
  2. In the administration interface go to System → System Operation → Software → System Update and press Get Package List. This will download the listed update packages. If successful the message Done! will be displayed on the screen.
  3. Click Get Packages to download the update packages.
  4. Click Install. This installs the update. The end of this process is indicated by the message Done!.
  5. A new kernel will now be installed. The system will reboot automatically after installing the update. An appropriate note will be shown if the update process is completed.

New in this Version

E-Mail: GDPR: Log analysis - delete statistics

In the dialog “Mail and Messaging -> SMTP reception” the log analysis for the SMTP server can be activated within the options. In this case, statistics about the utilization of the mail server are available under “Monitoring/Analysis”. To comply with legal defaults the additional field “delete statistics if older than” can be set with this release. It controls how many old statistics should be kept.

Web Proxy: GDPR: Log analysis - delete statistics

In the dialog “Web-Proxy -> Web-Proxy-Server” the log analysis for the web-proxy can be activated within the options. In this case, statistics about the utilization of the web-proxy are available under “Monitoring/Analysis”. To comply with legal defaults the additional field “delete statistics if older than” can be set with this release. It controls how many old statistics should be kept.

System Management: GDPR: Privacy notice in the registration wizard

To comply with legal requirements, this update modifies the registration wizard. During the wizard, an e-mail address for the administration newsletter can be specified. The administration newsletter can provide important information about product updates, new features or security information. To be able to send you the admin newsletter, we need your acknowledgment and your agreement that Collax GmbH stores and processes personal contact data.

System Management: Linux Kernel 4.9.102

This update installs Linux kernel 4.9.102.

Changelog

Issues Fixed in this Version

Security: Spectre-v4 Speculative Store Bypass

Assigned Common Vulnerabilities and Exposures (CVE) numbers:

CVE-2018-3639 CVE-2018-3640

Security researchers have discovered massive security holes in processors that were developed by security experts These holes were published under the name Meltdown or Spectre. Meltdown is the vulnerability, that allowed unprivileged processes the reading of kernel memory. Spectre is the security hole that exploits that CPUs execute many commands speculatively in advance, resulting in memory areas, that can be tapped. This update installs a feature against Spectre Variant 4 called “Speculative Store Bypass”. This protection relies on microcode updates from the processor manufacturer.

Notes

E-Mail: Collax Virus Protection powered by Kaspersky prior Version 7

Version 7 of the Collax C servers has updated the anti-virus engine and the format of the patterns. This was done to respond to new threats with the best possible protection. Patterns for versions prior to 7.0.0 will be available until December 31, 2017. From 01.01.2018 Kaspersky will not update the patterns for Collax version 5 and older. All installations using the Collax Virus Protection module should therefore, be brought up to date.

E-Mail: Collax Avira AntiVir prior Version 7.0.24

Version 7.0.24 of the Collax C servers has updated the anti-virus engine and the format of the patterns. This was done to respond to new threats with the best possible protection. Patterns for versions prior to 7.0.24 will be available until December 31, 2018. From 01.01.2019 Avira will not update the patterns for Collax version 7.0.22 and older. All installations using the Collax Avira AntiVir module should therefore, be brought up to date.