<<<<<<<<<<<<<>>>>>>>>>>>>>>> Trend Micro, Inc. October 15th, 2013 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ InterScan(TM) Messaging Security Suite for Linux(TM) Version 7.1 Service Pack 1 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Note: This readme file was current as of the date above. However, all customers are advised to check the Trend Micro website for documentation updates at: http://docs.trendmicro.com/en-us/enterprise/ Register online with Trend Micro within 30 days of installation to continue downloading new pattern files and product updates from the Trend Micro website. Register during installation or online at: http://olr.trendmicro.com/ Contents =================================================================== 1. About InterScan(TM) Messaging Security Suite 1.1 Overview of This Release 1.2 Who Should Install This Release 2. What's New 2.1 Enhancements 2.2 Updated Components 2.3 Resolved Known Issues 3. Documentation Set 4. System Requirements 5. Installation 5.1 Install This Service Pack 5.2 Removing this Service Pack 6. Post-Installation Configuration 7. Known Issues 8. Limitation 9. Release History 10. Files Included in this Release 11. Contact Information 12. About Trend Micro 13. License Agreement =================================================================== 1. About InterScan Messaging Security Suite (IMSS) ======================================================================== InterScan Messaging Security Suite (IMSS) is a policy-based virus protection and content security solution for the SMTP gateway that helps prevent virus outbreaks and protect enterprise security integrity. Customizable routing and relay restriction features are easy to deploy and interoperate with existing messaging environments. InterScan eManager provides real-time content filtering, spam blocking, and reporting to help companies monitor and control the type of information that enters or leaves the network. 1.1 Overview of This Release ===================================================================== This service pack includes fixes to issues discovered after the release of IMSS 7.1. It also enhances some functions. For details, refer to Section 2, "What's New". 1.2 Who Should Install This Release ===================================================================== You should install this service pack if you are currently running InterScan Messaging Security Suite Version 7.1 Linux. 2. What's New ======================================================================== Note: Install the service pack before completing any procedure (see Section 5, "Installation"). This service pack includes the following enhancements and addresses the following issues: 2.1 Enhancements ===================================================================== Marketing Email Management ====================================================================== Administrators can manage marketing messages separately from common spam. Each marketing message rule takes action upon messages based on the email or IP address added to the exception list. Smart Scan ====================================================================== Smart Scan uses a more efficient scanning process by offloading a large number of threat signatures previously stored on the IMSS server to the cloud. IPv6 support ====================================================================== IMSS supports the following IPv6 features: - SMTP routing - WRS, PR, ActiveUpdate, Smart Feedback in IPv6 networks or a proxy in IPv6 networks - Importing and exporting of IP addresses in IPv6 format - Notifications - Logs and reports with relevant SMTP IPv6 information Display triggered keywords in log query ====================================================================== To improve visibility of triggered keywords and expressions, the entity name (where the keyword expression appears in a message) and the matched expressions now appear in the policy event log query details page. Description field for Keywords & Regular Expressions ====================================================================== To improve the understanding of the keywords and regular expressions, users can now add a description to explain the meaning of the keywords and regular expressions and how they are used. EUQ support for SMTP authentication ====================================================================== SMTP authentication provides users another option for enabling the End-User Quarantine feature. Retrieve quarantined email with alias email addresses ====================================================================== Allow end users to retrieve quarantined email messages with alias email addresses in the End-User Quarantine web page. User Interface Enhancement ====================================================================== Changes in the management console interface for more simplified configuration and navigation. 2.2 Updated Components ===================================================================== This service pack updates the following components: Antispam Engine 5.6.1016 -> 7.0.1014 URL Filtering Engine 3.0.1029 -> 3.5.1058 Apache 2.2.10 -> 2.2.24 Tomcat 5.5.33 -> 6.0.36 Java JRE 1.5.0_06 -> 1.6.0_43 Java JDK 1.5.0_06 -> 1.6.0_43 2.3 Resolved Known Issues ===================================================================== This service pack resolves the following issues: --------------------------------------------------------------------- Issue: Startup script S99IMSS can not match imssd processes exactly. When imssd processes are stopped or started by S99IMSS, it may also stop other processes that contain "imssd" or cannot start imssd process when there are processes that contain "imssd". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, S99IMSS will match imssd process exactly, so it can stop and start imssd processes correctly. --------------------------------------------------------------------- Issue: If "From" item for policy Notifications is not set, the notification sent by IMSS will not include the "From:" field in mail header. However, the "From:" field is required by RFC. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, IMSS will add the "From" field for this situation. --------------------------------------------------------------------- Issue: Messages with specific file attachments such as ".pdf" and ".xls" files may remain in the queue and cause abnormal CPU utilization issues on the server. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, when the eManager(TM) module encounters DMC-related issues, it triggers a scanning exception. The default action is set to "Quarantine and Notify" but users can configure the action through "Policy" > "Scanning Exceptions" > "Other scanning exceptions" > "Actions". If an email is quarantined, users can release the quarantined email from the administrator user interface and the released email message will not trigger the same scanning exception. --------------------------------------------------------------------- Issue: The keyword "%" can't be used to search logs or email from the web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack solves the issue. --------------------------------------------------------------------- Issue: Email messages with a sender's email address that is the same as the recipient's email address in one email session are considered as normal email messages and thus do not trigger any rule. A user requests for a way to block these messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds an option to enable such email messages to trigger the "Other scanning exceptions" rule. When triggered, the default action for the "Other scanning exceptions" rule is "Quarantine", which allows users to query the triggering email message from the quarantine folder at a later time. --------------------------------------------------------------------- Issue: If InterScan Messaging Security Suite cannot insert a stamp into the email body, it uses a disclaimer as the content of the email body and attaches the original email message. Some customers prefer that InterScan Messaging Security Suite use the disclaimer as an attachment the original content remians the email body if a stamp cannot be inserted into the email body. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds an option to enable InterScan Messaging Security Suite to use a disclaimer as an attachment and keep the original content of the email body if it cannot insert a stamp into the email body. --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite only adds the "X-imss-result" header to spam email messages but does not add X-headers to mark the priority level of spam email messages. A customer requests for a way to add customizable priority level X-headers to spam email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables InterScan Messaging Security Suite to insert the "X-Priority" and "X-MSMail-Priority" customizable headers in addition to the "X-imss-result" header to spam email messages. The default values for these two headers are: - X-Priority: 5(Lowest) - X-MSMail-Priority: Low --------------------------------------------------------------------- Issue: Changing the default paths of "Agent.log" and "EntityMain.log" in "Agent.ini" prevents InterScan Messaging Security Suite from automatically purging the files. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables InterScan Messaging Security Suite to automatically purge the "Agent.log" and "EntityMain.log" files even if users change the paths of these files in the "Agent.ini" file. --------------------------------------------------------------------- Issue: Log levels for the IMSS Policy Server cannot be controlled separately. They can only be controlled using the general log level setting. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds the key "log_level" under the [policy_server] section. This means administrators can set the log level for the Policy Server separately. --------------------------------------------------------------------- Issue: The data in "Top 10 Blocked IP Addresses by NRS" and "NRS IP Blocking Summary" reports is inconsistent. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack helps maintain consistency between the data in the "Top 10 Blocked IP Addresses by NRS" and "NRS IP Blocking Summary" reports. --------------------------------------------------------------------- Issue: The recipient addresses for system event notifications display incorrectly when multiple email addresses are added to the notification setting. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: IMSS encounters issues when scanning spam messages with password protected zip files, after the "Address Group" setting was modified. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: IMSS loses some End User Quarantine (EUQ) digest records if the scanner and the central control are installed in different time zones. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: When imssmgr's log importer thread detects non-UTF8 strings, it uses "Unsupported charset (non UTF-8)" instead of the original string. However,it cannot detect certain invalid UTF-8 strings, and the result is that the importer thread cannot upload the policy event log to the database. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack detects the invalid UTF-8 string and resolves this issue. --------------------------------------------------------------------- Issue: The "Message-ID" field in the "Log Query Details" page displays a formatting error when the corresponding message ID information contains leading spaces followed by a "<" character. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables the "Message-ID" field in the "Log Query Details" page to recognize leading spaces followed by a "<" character. This ensures that it can display the correct information. --------------------------------------------------------------------- Issue: In the "Administration > SMTP Routing > Message Rule" page, after users set the subnet mask to "0.0.0.0" under the "Permitted Senders of Relayed Mail" option, click "Save", and navigate away from the page, the subnet mask will be displayed as "0.0.00.0.0" when users check the "Administration > SMTP Routing > Message Rule" section again. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that the "Administration > SMTP Routing > Message Rule" page can save and display the specified subnet mask. --------------------------------------------------------------------- Issue: IMSS does not properly encode the email subject field of "POP3 Replacement Message" mail. The result is that garbled characters display in the email subject field. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, if the preferred charset is "iso-2022-jp" or "Shift_JIS", IMSS will use that charset to encode the email subject field of "POP3 Replacement Message". --------------------------------------------------------------------- Issue: When enableLogMsgUUID or enableSimpleLogMsgUUID are set email recipients appear in the imss.log. However, if an email has too many recipients, IMSS cannot log all recipient addresses because of the maximum log line length restriction. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack puts all recipient addresses in to multiple columns, so all addresses appear in the logs. --------------------------------------------------------------------- Issue: In some environments, imssmgr may stop running after generating notification messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: An exception error occurs when IMSS scans certain password protected zip files and WholeMailScan is enabled. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue. --------------------------------------------------------------------- Issue: When IMSS for Solaris scans an email message with a ZIP64 file attachment, IMSS returns a -65 error code without a detailed description of the error. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds a detailed description with the -65 error code and adds an option to enable IMSS for Solaris to skip scanning email messages with a ZIP64 file attachment. --------------------------------------------------------------------- Issue: IMSS changes the timeout value for the eManager(TM) Dynamic Multiplatform Converter (DMC) isolation process to 10 seconds if the specified number is higher than 99. This is because the default range for the eManager DMC isolation process is from "1-99". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack changes the DMC isolation process timeout range from "1-99" to "1-1000" seconds. If the value configured exceeds 1000 seconds, IMSS will use the default maximum value of 1000 seconds. --------------------------------------------------------------------- Issue: It may take a long time to display the "Text Exemption Rules" policy rule in the administrator user interface if the policy rule contains double-byte characters. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This serice pack improves double-byte character handling. --------------------------------------------------------------------- Issue: The message "foxhunter format error" appears on the log file even when no issue occurs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: When users configure the "Name or extension" attachment filter to filter Corel(R) Script files by checking the "CS*" option, ".csv" files will also trigger the filter. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack explicitly specifies that the "CS*" option in the "Name or extension" attachment filter is only for files with a ".csb", "csc", or ".csi" extension name and ensures that this setting does not affect ".csv" files. --------------------------------------------------------------------- Issue: Sometimes, IMSS cannot send status logs and security logs to Trend Micro Control Manager because the MCPAgent incorrectly calculates the size of the "temp" folder and considers it to be full. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue by upgrading the MCPAgent. --------------------------------------------------------------------- Issue: IMSS does not support regular expression character classes that are in Japanese Hiragana, Katakana, or Full-width Roman characters. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds an option to enable IMSS to support regular expression character classes that are in Japanese Hiragana, Katakana, or Full-width Roman characters. --------------------------------------------------------------------- Enhancement: This service pack adds an option to set IMSS 7.1 to check for new engine and pattern file versions every 10 minutes and perform an update when there are any. --------------------------------------------------------------------- Issue: The content of the "%DETECTED%" variable specified in policy notifications is difficult to understand if one of the following scanning conditions is triggered: - Message size restriction - Attachment size restriction - Number of attachments restriction - Number of recipients restriction ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: IMSS is unable to query Web Reputation for selected URLs with special formats, and reports "-2414 error" in logs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: On Red Hat(TM) Enterprise Linux version 6.x, an issue prevents IMSS from running the "postconf" utility. As a result, IMSS cannot apply changes on the Postfix settings or monitor the status of the Postfix queue. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that IMSS can run the "postconf" utility without issues. This enables IMSS to apply changes on the Postfix settings and monitor the status of the Postfix queue. --------------------------------------------------------------------- Issue: After enabling the "Synchronize all spam and email messages, that do not violate virus, phishing, or Web reputation rules, to the EUQ database (for this area only). This allows end users to view and manage the messages from the EUQ Web console." option, the email quarantined for violating Web reputation rules still appear on the EUQ Web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack prevents email that violate the Web reputation rules from showing up on the EUQ Web console. --------------------------------------------------------------------- Issue: A "cross-site request forgery" (known as CSRF or XSRF) security issue may allow attackers to create an unauthorized administrator account by sending a crafted request to the Trend Micro InterScan Messaging Security Suite (IMSS) web console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the security issue to prevent attackers from creating an unauthorized administrator account. --------------------------------------------------------------------- Issue: Some data in exported CSV files for Web Reputation policy events may appear under the wrong header. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that all the data in exported CSV files for Web Reputation policy events are displayed under the correct headers. --------------------------------------------------------------------- Issue: Sometimes "double free or corruption" or "segfault" error messages appear in "/var/log/messages" when the InterScan Messaging Security Suite (IMSS) scanner service stops. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack changes the method for terminating the IMSS scanner service processes to prevent the error messages from appearing in "/var/log/messages" when the IMSS scanner service stops. --------------------------------------------------------------------- Issue: After updating the scan engine to version 9.700.1001, password protected Microsoft(TM) Office(TM) file attachments trigger any rule that come after an antivirus rule and with the "Attachment contains password-protected zip files" scanning condition. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack prevents password protected Office file attachments from triggering rules with the "Attachment contains password-protected zip files" scanning condition. --------------------------------------------------------------------- Issue: Imssmgr encounters a timeout error while processing large email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack removes the maximum limit-checking feature for the timeout setting of the Imssmgr process to prevent the timeout error. --------------------------------------------------------------------- Issue: IMSS for Linux encounters an error while parsing malformed messages which prevents it from properly delivering or reprocessing some malformed messages that were quarantined by the "Malformed messages" scan exception from the Management Console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack prevents IMSS for Linux from parsing malformed messages to ensure that it can successfully deliver or reprocess quarantined malformed messages from the Management Console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Note: After applying this service pack, the "Quarantine & Archive Query > query" menu will still not be able to display some parts of malformed messages such as headers, messages, subjects, and message IDs because IMSS does not parse malformed messages and when IMSS delivers or reprocesses quarantined malformed messages, it processes the original malformed messages. --------------------------------------------------------------------- Issue: When users modify a rule, the rule's notes section and the corresponding system event log record the time the change was made but do not add any information about the specific user account that was used to modify the rule. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to record the specific user account that was used to modify a rule in the rule's notes section and in the corresponding system event log. --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite cannot export the query results to a ".CSV" file when the query time range is several days long. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, InterScan Messaging Security Suite divides the query time range into two-day intervals and combines the query results for each interval in a single report. This enables InterScan Messaging Security to support long query time ranges. --------------------------------------------------------------------- Issue: Sometimes, users cannot release some quarantined email messages from EUQ user interface and the following error message appears in the imssmgr log file: "getRefNum failed, no data found". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables users to release quarantined email messages from EUQ user interface successfully. --------------------------------------------------------------------- Issue: If ERS blocks millions of emails per day, the ERS logs can make the database too large. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack provides an option to allow users to disable the import of ERS logs onto the administrator database. --------------------------------------------------------------------- Issue: When the "content-transfer-encoding" information is missing from an email message with an attachment, InterScan Messaging Security Suite will not be able to retrieve the body information. As a result, when the system sends notifications, the email message's "FILENAME" token will be empty. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables InterScan Messaging Security Suite to retrieve the corresponding information from the file header when it cannot retrieve the body information. --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite allows users to use invalid login names to log on to End User Quarantine (EUQ). ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds a checking mechanism for when users log onto EUQ. --------------------------------------------------------------------- Issue: In InterScan Messaging Security Suite, when users configure a rule with the "Not the selected attachment types" option enabled under the "Attachment True File Type" filter, IMSS may not be able to detect the true file type of some attachments prompting it to delete the attachments. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables users to: - add more filename extensions to the list of true file types that IMSS can detect - add filename extensions from the list of true file types that the scanner can detect to the true file type list on the IMSS web console --------------------------------------------------------------------- Issue: Sometimes, email messages, sent by certain senders to an LDAP group, do not trigger the corresponding policy that should prompt IMSS to quarantine such email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack updates "Policyutility.dll" to enable such email messages to trigger the corresponding policy. --------------------------------------------------------------------- Issue: If the action of "Security settings violations" is set to "Log Only", and the mail containing multiple recipients is applied to different rule sets, IMSS will not be able to deliver the mail to some recipients. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite (IMSS) 7.1 sends a log to Trend Micro Control Manager when it receives an email message with an attachment that contains a virus. If the antivirus policy is set to "Intercept" such email messages and this action is configured to "Delete entire message" but the "Modify" action is not set in the antivirus policy, Control Manager will report the action as "file passed" and the result as "successful." ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that Control Manager receives the correct information in such cases to enable it to display the correct actions and results. --------------------------------------------------------------------- Issue: On the "Configuration Wizard" page, users may be asked to set the user name or password for the "Proxy Settings" again even after the password has been configured. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue by removing the checking mechanism for empty user names or passwords in the "Proxy Settings" on the "Configuration Wizard" page. This behaviour is the same as in the "Proxy Settings" on the "Updates" page. --------------------------------------------------------------------- Issue: In Mozilla(TM) Firefox(TM), some space characters may appear on the right side of the quarantine records table on the End User Quarantine (EUQ) console. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack prevents unnecessary space characters from appearing on the InterScan Messaging Security Suite (IMSS) console. --------------------------------------------------------------------- Issue: IMSS sends a log to Trend Micro Control Manager(TM) when it receives an email message that contains a virus. However, "N/A" appears under the "Subject" column on the query result page that appears when users query the "Email Virus/Malware Information" of IMSS. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that Control Manager receives the correct information in such cases to enable it to display the correct information under the subject column of the query result page. --------------------------------------------------------------------- Issue: Under rare conditions, IMSS tries to start two administration web console service instances simultaneously. In this case, one of instances will not start because the port is already occupied by another instance. Thus IMSS will keep retrying starting the service and the result will be unsuccessful. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, IMSS will further check whether there is another administration web console service instance running. If there is, it will stop the running instance and start a new one to make sure that only one instance is running. --------------------------------------------------------------------- Issue: If a user-specified stamp contains non-ASCII characters, it will be inserted twice into the body of "multipart/alternative" email messages that contain a "text/plain" part which uses the "us-ascii" character set. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds an option for users to prevent the stamp from being inserted twice. --------------------------------------------------------------------- Issue: When deleting a one-time report manually, the event will be recorded in the system event log. The deleting of scheduled reports (daily, weekly, monthly) manually is not recorded in the system event logs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: After applying this service pack, the deleting of scheduled reports (daily, weekly, monthly) is recorded in system event logs. --------------------------------------------------------------------- Issue: When manually deleting scheduled reports (daily, weekly, monthly), the event log details are written in English. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack changes the log details from being in English to Japanese. --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite (IMSS) is using the wrong AUID for the TMASE engine. This prevents users from updating the TMASE engine to the latest version. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to use the correct AUID for the TMASE engine. --------------------------------------------------------------------- Issue: If users configure Microsoft(TM) Exchange(TM) servers to use alias addresses, they also have to manually set "mail_attr=proxyAddresses" to allow end users to retrieve quarantined email messages using alias email addresses. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds an option in the "User Quarantine Access" page to enable users to set "mail_attr=proxyAddresses" from the Web console. --------------------------------------------------------------------- Issue: When the "Advanced: using Kerberos authentication for Active Directory" option is enabled, End User Quarantine (EUQ) Digest email messages cannot be sent, preventing users from receiving them. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack exports the Kerberos configuration file path to the S99DIGEST script to resolve this issue. --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite (IMSS) cannot properly retrieve LDAP group names that contain a comma ",". This prevents policies that match such LDAP group names from working properly. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to successfully retrieve LDAP group names that contain a comma ",". --------------------------------------------------------------------- Issue: In certain time zones (such as GMT-04:00), The time user receiving the EUQ digest mail differs from the time configured in AdminUI. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue. --------------------------------------------------------------------- Issue: Trend Micro Control Manager(TM) 5.5 deploys Trend Micro Anti-Spam Engine (TMASE) engines that do not work for IMSS 7.1. This issue occurs because IMSS sends the wrong TMASE Allocation Unique Identifier (AUID) to Control Manager. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack changes the TMASE AUID to reflect the correct TMASE engines. --------------------------------------------------------------------- Issue: Users can import email addresses in the "*@domain*.com" or "*@inselec.com.*" format to the blocked sender list of the InterScan Messaging Security Suite (IMSS) 7.1 spam detection settings. However, users are not allowed to manually add such email addresses to the blocked sender list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue by enabling IMSS to skip email addresses in the "*@domain*.com" or "*@inselec.com.*" format when importing email addresses from a file to the IMSS spam detection setting blocked sender list. --------------------------------------------------------------------- Issue: Users can import email addresses in the "*@domain*.com" or "*@inselec.com.*" format to the approved sender list of the IMSS 7.1 spam detection settings. However, users are not allowed to manually add such email addresses to the approved sender list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue by enabling IMSS to skip email addresses in the "*@domain*.com" or "*@inselec.com.*" format when importing email addresses from a file to the IMSS spam detection setting approved sender list. --------------------------------------------------------------------- Issue: In InterScan Messaging Security Suite (IMSS), users cannot enable two or more Microsoft(TM) 2008 Active Directories (AD) if the authentication method is set to Kerberos(TM). This issue occurs because IMSS cannot retrieve the Service Principal Name (SPN) of a second Lightweight Directory Access Protocol (LDAP) server. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables users to specify the SPN for each LDAP server. --------------------------------------------------------------------- Issue: IMSS's ERS (QIL)RBL setting does not include some return codes, which can trigger IMSS to block normal email. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds all necessary return codes from the user settings of "imss.ini" into the ERS (QIL)RBL list. If no setting is specified, IMSS's default settings will be used. --------------------------------------------------------------------- Issue: Unable to update InterScan Messaging Security Suite (IMSS) 7.1 using the ISA proxy of the Microsoft(TM) Forefront Threat Management Gateway (TMG). The correct NT LAN Manager Security Support Provider (NTLMSSP) authorization is sent but the TMG ISA proxy still sends the "HTTP/1.1 407 Proxy Authentication Required (Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied.)" message to IMSS then locks the account. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack solves the issue. --------------------------------------------------------------------- Issue: The sender address field in reports that are generated by InterScan Messaging Security Suite (IMSS) is case-sensitive. This violates RFC 5321. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack makes the sender address field in generated reports case-insensitive to conform with RFC 5321. Note: The sender address field in reports generated before applying this service pack will still be case-sensitive after applying this service pack. --------------------------------------------------------------------- Enhancement: This service pack adds an option to enable IMSS to scan encrypted messages. --------------------------------------------------------------------- Issue: When the list of suspicious IPs from the IP filtering function in InterScan Messaging Security Suite (IMSS) is queried, the "Total Malicious %" column in the query results displays values smaller than 1 in the ".xx%" format instead of in the "0.xx%" format. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that the "Total Malicious %" column displays values smaller than 1% in the correct format. --------------------------------------------------------------------- Enhancement: By default, the address of the End-User Quarantine (EUQ) web console in the EUQ digest is the IP address of the parent IMSS device. This service pack adds an option to allow users to customize the address. --------------------------------------------------------------------- Issue: An InterScan Messaging Security Suite (IMSS) function exports reports to CSV files that users can download. However, a vulnerability may allow users to download restricted files through the same function. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures the users can download only exported CSV files through this function. --------------------------------------------------------------------- Issue: IMSS features a user portal logon screen where users can log on to End User Quarantine(EUQ) console. However, a vulnerability may allow some users to create filters to query information from the Active Directory which could indirectly leak some important information. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack improves the input validation process to resolve the vulnerability. --------------------------------------------------------------------- Issue: Sometimes, when users delete quarantined email messages from the admin console, the email messages are released before IMSS can synchronize the deleted information to EUQ. Under this situation, imssmgr encounters an error as it attempts to release the deleted email messages because it cannot find the email messages. This can prevent users from releasing new email messages from the EUQ console until after IMSS stops trying to handle the deleted email messages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures the IMSS can still handle new email messages while it attempts to handle the old deleted email messages. --------------------------------------------------------------------- Issue: Since the policy server is always forced to update policies from the database, all of the policies in its cache are erased when IMSS cannot connect to the database during an update. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to check if it can successfully connect to the database before forcing the policy server to update the policies. --------------------------------------------------------------------- Issue: A colon is missing from the information displayed after the "Internal ID" key on the "Mail Areas & Queues > Query > Quarantine" and "Mail Areas & Queues > Query > Archive" pages. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that the "Quarantine Query" and "Archive Query" pages display complete and accurate information. --------------------------------------------------------------------- Issue: The size of the "Permitted Senders of Relayed Mail" list cannot exceed 128KB. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that the size of the "Permitted Senders of Relayed Mail" list can exceed 128KB. --------------------------------------------------------------------- Issue: Some Activation Codes cannot activate IMSS during Daylight Savings Time (DST). ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves this issue. --------------------------------------------------------------------- Issue: The log purge function cannot purge expired quarantine or archive logs when the corresponding queue does not exist. This prevents IMSS from recycling the log tables which can eventually prevent users from querying logs from the admin user interface. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to purge all expired logs without issues. --------------------------------------------------------------------- Issue: Considering the performance impact, IMSS only vacuums and analyzes part of the database tables everyday; IMSS does not vacuum and analyze some tables. This situation may cause the database to eventually run out of transaction IDs. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack provides options to enable IMSS to vacuum and analyze the whole database at 3 A.M. during certain days of the week to prevent the database from running out of transaction IDs. The task of vacuuming and analyzing the whole database is enabled and performed at 3 A.M. on Saturday, by default. --------------------------------------------------------------------- Issue: The TmMsg module cannot insert a disclaimer in the body of multipart/alternative email messages that use the big5 character set because the disclaimer contains special characters that do not exist in big5 code. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack adds an option to enable the TmMsg module to convert both the email message and the disclaimer to the UTF-8 character set if it cannot convert the disclaimer to the character set of the email message. --------------------------------------------------------------------- Issue: When users query logs from the "Logs > Query > Policy events" page, an extra semicolon is added to the sender address in POP3 mail records. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack removes the extra semicolon so the logs display correctly. --------------------------------------------------------------------- Issue: In InterScan Messaging Security Suite (IMSS), users may receive different results in the End User Quarantine (EUQ) console using different log on name formats if the LDAP server type is "Active Directory". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures users receive the same results no matter which log on name format is used. --------------------------------------------------------------------- Issue: When IMSS takes a long time to reprocess an email message it may timeout while waiting for an SMTP End of Message (EOM) command and will not be able to reprocess the email message. When this happens, IMSS will keep retrying to reprocess the email message. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack directs IMSS to stop reprocessing the email message and move the email message to a folder specified by the user. --------------------------------------------------------------------- Issue: Mail transfer agent (MTA) events in rotated log files cannot be queried from the IMSS web console if IMSS is installed on Red Hat(TM) Enterprise Linux (RHEL) 6 because in RHEL 6, the "dateext" option is enabled by default in "/etc/logrotate.conf". ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack ensures that users can query MTA events in rotated log files when IMSS is installed on RHEL 6 under the default settings in "/etc/logrotate.conf". --------------------------------------------------------------------- Issue: After applying Patch 3, if the update schedule is set to hourly, daily, or weekly, InterScan Messaging Security Suite (IMSS) will attempt to update not only at the time configured by the user, but may also try to update 5 minutes and 10 minutes after the configured time. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to try updating only at the time configured by the user. --------------------------------------------------------------------- Issue: In the spam detection settings page of IMSS web console, users can add an email address that contains the quotation mark (") into the approved sender list or blocked sender list, but the email address cannot be removed from the list. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables users to remove email addresses that contain the quotation mark (") from the approved sender list or blocked sender list. --------------------------------------------------------------------- Issue: Some pages of the IMSS web management console are vulnerable to cross-site scripting (XSS) attacks. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack removes the XSS vulnerabilities from these pages. --------------------------------------------------------------------- Issue: IMSS takes a long time to import a configuration that contains very long blocking and approving lists for IP Filtering. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS to import such configurations faster. --------------------------------------------------------------------- Issue: eManager may consider some iCalendar files that contain unprintable characters, such as those used in the Thai language, as files that are in the DOS COM format. As a result, eManager will not extract the contents of these files preventing suspicious content from triggering the corresponding filters in InterScan Messaging Security Suite (IMSS) for Linux. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables users to configure eManager to treat iCalendar files as text files. This ensures that eManager extracts the contents of these files and match the file contents to the correct keywords. --------------------------------------------------------------------- Issue: The IMSS configuration replication task cannot update the quarantine and archive settings while the related data in the database are locked by other processes. When this happens, the configuration replication task fails. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack prevents the IMSS configuration replication task from updating the quarantine and archive settings if there are no changes to these settings. This can help ensure that the IMSS configuration can still be successfully replicated under the scenario described above when there are no changes to the quarantine and archive settings. --------------------------------------------------------------------- Issue: When users configure backslash ("\") on " Policy List > Rule Summary > Scanning Conditions > Name or extension ", and send an email with an attachment and the attachment name contains a backslash, the rule is not matched. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack resolves the issue. --------------------------------------------------------------------- Issue: InterScan Messaging Security Suite (IMSS) for Linux cannot block some email messages from email addresses that are in the blocked sender list of a spam rule. This occurs when an email message has multiple recipients and the local parts of two of these recipients are uppercase and lowercase variants of each other. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Solution: This service pack enables IMSS for Linux to correctly distinguish between uppercase and lowercase characters. 3. Documentation Set ======================================================================== In addition to this readme.txt, the documentation set for this product includes the improved documentations for IMSS7.1 GM build as follows: o Installation Guide (IG) -- Provides product overview, deployment plan, installation steps and basic information intended to help you deploy IMSS smoothly. o Administration Guide (AG) -- Provides post-installation instructions on how to configure the settings to help you get IMSS "up and running". Also includes instructions on performing other administrative tasks for the day-to-day maintenance of IMSS. o Readme.txt file -- version enhancements, basic installation, known issues, and release history. There is one readme for IMSS and one for Spam Prevention Solution, which includes IP Profiler. Electronic versions of the printed manuals are available at: http://docs.trendmicro.com/en-us/enterprise/ o Online help -- Context-sensitive help screens that provide guidance for performing a task. o Knowledge Base -- a searchable database of known product issues, including specific problem-solving and troubleshooting topics. 4. System Requirements ======================================================================== The system requirements are the same as those listed in the product readme.txt file. A copy of the original product readme is available from: http://www.trendmicro.com/download/product.asp?productid=12. 5. Installation ======================================================================== Although the installation program backs up the old IMSS settings, Trend Micro recommends that you manually back up your settings before performing the upgrade installation. For details information, refer to the Installation Guide. Upgrading to IMSS 7.1 SP1 varies depending on your IMSS deployment. Single server and distributed deployments require different installation procedures. 5.1 Install This Service Pack ===================================================================== Refer to the following steps for instructions on how to install this Service Pack: 1) Extract the file for Service Pack 1 and go to the package directory. 2) Type the command "./imssinst". 3) Follow the on-screen prompts to complete the installation. If you deploy IMSS7.1 GM/Patch1/Patch2/Patch3 build under a distributed scenario, observe the following sequence when applying this Service Pack: Step 1: Install Service Pack 1 on the computer where you installed the Central Controller. Step 2: Stop the upstream MTA. Step 3: Install Service Pack 1 on all the computers where you installed scanner services, policy services and EUQ service. Step 4: Start the upstream MTA. Note: 1) If the installation cannot complete, perform the following to roll back the installation: a) Type the command "./manual_rollback". b) Follow the on-screen prompts to roll the system back. 2) To avoid inconsistency issues, use IMSS 7.1 SP1 after all components successfully install. 5.2 Removing This Service Pack ===================================================================== This section only explains removing the successfully installed Service Pack. Refer to the note at the end of section 5.1 for instructions on rolling back a partially installed Service Pack. Refer to the following steps for instructions to remove this Service Pack and roll back to the previous IMSS build: 1) Go to the Service Pack package directory 2) Type the command "./imssinst" 3) Follow the on-screen prompts to complete the uninstallation. If you want to roll back the Service Pack under a distributed scenario, observe the sequence below to avoid inconsistent issues: Step 1: Stop the upstream MTA first. Step 2: Roll back the Service Pack for all IMSS components. Step 3: Start the upstream MTA. 6. Post-Installation Configuration ======================================================================== Note: Trend Micro recommends that you update your scan engine and virus pattern files immediately after installing the product. 7. Known Issues ======================================================================== The following describes known issues in this release: 7.1 IMSS attempts to convert characters to UTF8 when the subject line of an email message has no character set information, uses special characters (such as the copyright symbol), or uses double-byte characters. If the conversion to UTF8 is not successful: - The logs contain garbled characters. - IMSS quarantines the email message and the subject field displays the message "Unsupported charset non-UTF-8" if you attempt to view the message through the web console. 7.2 To view the IMSS 7.1 web console with Internet Explorer on a computer running Windows 2003, do the following: 1. From the Internet Explorer menu, select "Tools > Internet Options > Security > Trusted Sites > Sites". 2. Add the IP address of the computer that IMSS is installed on. 7.3 To prevent IMSS from scanning messages, you can create a new rule to hand off the messages you do not want scanned. However, IMSS may still trap these messages if they trigger email scanning exceptions. This is because the mail scanning exception has a higher priority than spam filters and content filters. 7.4 IMSS cannot install on SeLinux (Security-Enhanced Linux) on Red Hat. 7.5 IMSS cannot install on Red Hat if virtualization technology is enabled. 7.6 When installing the database for IMSS, do not use double-byte characters when specifying the database password. IMSS cannot connect to the database if double-byte characters are used in the password. 7.7 IMSS provides limited support for 64-bit environments. Trend Micro addresses only issues that occur in both 32-bit and 64-bit environments. 7.8 IMSS is not fully functional in 64-bit Red Hat environments. To use IMSS, install the following 32-bit packages. Red Hat Enterprise Linux 4 (both AS and ES) - Compatibility Arch Support Red Hat Enterprise Linux 5 - Legacy Software Support - Legacy Software Development Red Hat Enterprise Linux 6 - Compatibility 2.96-RH standard C++ libraries (compat-libstdc++-296-2.96-~.rpm) - An XML parser library (expat-~.rpm) - The GNU libc libraries (glibc-~.rpm) - Dynamic library for extended attribute support (libattr-~.rpm) - Library for getting and setting POSIX.1e capabilities (libcap-~.rpm) - GNU Standard C++ Library (libstdc++-~.rpm) - GCC version 4.4 shared support library (libgcc-~.rpm) - Universally unique ID library (libuuid-~.rpm) - Library providing XML and HTML support (libxml2-~.rpm) - Freebl library for the Network Security Services (nss-softokn-freebl-~.rpm) - The zlib compression and decompression library (zlib-~.rpm) Note: "~" represents a release version, which may vary among different Linux distributions. 7.9 IP Profiler supports 32-bit MTAs only. When IP Profiler is enabled in 64-bit environments, IMSS displays the following error message whenever Postfix is started or stopped. # ERROR: ld.so: object '/opt/trend/ipprofiler/lib/ libTmFoxSocketLib.so' from LD_PRELOAD cannot be preloaded: ignored. Note: This error does not affect the functionality of IP Profiler. IMSS displays the error message because "libTmFoxSocketLib.so" is a 32-bit library, which cannot be loaded by certain external applications called by Postfix in 64-bit environments. 7.10 EUQ cannot be started on Red Hat Enterprise Linux 6. To use EUQ, execute the following command. # ln -s /lib/libexpat.so.1.5.2 /lib/libexpat.so.0 7.11 BIND bundled with IMSS cannot be started on Red Hat Enterprise Linux 6. To start BIND, execute the following command. # ln -s /lib/libcap.so.2.16 /lib/libcap.so.1 Note: You do not need to execute this command if you have applied Patch 1 or later patches. 7.12 MTA events query on the Management Console does not function correctly in Red Hat Enterprise Linux 6 environments. To resolve this issue, create "syslog.conf" by executing the following command. # cp /etc/rsyslog.conf /etc/syslog.conf 7.13 You must install the telnet package (telnet-~.rpm) to use IMSS on Red Hat Enterprise Linux 6. Note: "~" represents a release version, which may vary among Linux distributions. 8. Limitation ======================================================================== 8.1 Some keyword expressions use "\s" (without the quotes) at the beginning and ending. IMSS will drop "\s" and change "|" to ".OR." (without the quotes) in policy event logs when this keyword is matched in the rule. If you want to display complete expressions, modify "\s" to "\b" (without the quotes) in these expressions. If it just uses "\s" at the beginning or ending of the keyword expressions, it will not be affected. Example: Keyword expression is "\s(keyword1)|(keyword2)|(keyword3)\s" (without the quotes), when it matches in the policy event log the Keyword/Regular Expressions column only displays "keyword1 .OR. keyword2 .OR. keyword3" (without the quotes). You can change this expression to "\b(keyword1)|(keyword2)| (keyword3)\b" (without the quotes). 9. Release History ======================================================================== See the following website for more information about updates to this product. http://www.trendmicro.com/download/product.asp?productid=12 10. Files Included in this Release ======================================================================== Filename Build No. -------------------------------------------------------------------- ReportGenerator.class 7.1.0.1576 BarLineChart.class 7.1.0.1576 PieChart.class 7.1.0.1576 Log.class 7.1.0.1576 ChartDataHolder.class 7.1.0.1576 AddBlockIPFromCacheAction.class 7.1.0.1576 MoveBlockIPAction.class 7.1.0.1576 DHASettingAction.class 7.1.0.1576 SpamSettingAction.class 7.1.0.1576 OverviewAction.class 7.1.0.1576 QueryBlockIPAction.class 7.1.0.1576 ApplyWhiteList.class 7.1.0.1576 DelBlockIPAction.class 7.1.0.1576 AddBlockIPAction.class 7.1.0.1576 UpdateWhitelistAction.class 7.1.0.1576 CachedIPAction.class 7.1.0.1576 BlocklistAction.class 7.1.0.1576 DelWhiteIPAction.class 7.1.0.1576 WhitelistAction.class 7.1.0.1576 IPFilterBaseAction.class 7.1.0.1576 VirusSettingAction.class 7.1.0.1576 AddWhiteIPAction.class 7.1.0.1576 BouncedSettingAction.class 7.1.0.1576 UpdateBlockIPAction.class 7.1.0.1576 NRSSettingAction.class 7.1.0.1576 QueryWhiteIPAction.class 7.1.0.1576 ReportGenerator\$FileReportWriter.class 7.1.0.1576 ReportGenerator.class 7.1.0.1576 SummaryPageAction.class 7.1.0.1576 BarLineChart.class 7.1.0.1576 ReportGenerator\$SessionReportWriter.class 7.1.0.1576 SummaryBaseAction.class 7.1.0.1576 PieChart.class 7.1.0.1576 SummaryActivityAction.class 7.1.0.1576 Log.class 7.1.0.1576 ReportWriter.class 7.1.0.1576 ChartDataHolder.class 7.1.0.1576 ReportGenerator\$CompositeReportWriter.class 7.1.0.1576 ReportGenerator\$1.class 7.1.0.1576 QtQueryForm.class 7.1.0.1576 QtSettingsAction.class 7.1.0.1576 QtQueryAction.class 7.1.0.1576 QtEditAreaAction.class 7.1.0.1576 QtBaseAction.class 7.1.0.1576 ProductRegAction.class 7.1.0.1576 EuqMgrAction.class 7.1.0.1576 AdminAccountAction.class 7.1.0.1576 AdminBaseAction.class 7.1.0.1576 AdminListAction.class 7.1.0.1576 AdminPwdAction.class 7.1.0.1576 EUQAccessAction.class 7.1.0.1576 GlobalSettingAction.class 7.1.0.1576 UnitTestAction.class 7.1.0.1576 Constants.class 7.1.0.1576 SessionKeys.class 7.1.0.1576 IMSSUIDate.class 7.1.0.1576 ImssActionServlet.class 7.1.0.1576 LoginAction.class 7.1.0.1576 TimeoutAction.class 7.1.0.1576 PermissionDeniedAction.class 7.1.0.1576 ImssBasicDataSource.class 7.1.0.1576 UIStates.class 7.1.0.1576 GlobalAccess.class 7.1.0.1576 SessionFilter.class 7.1.0.1576 LogoffAction.class 7.1.0.1576 BaseAction.class 7.1.0.1576 LogQueryMsgForm.class 7.1.0.1576 LogQueryIpFilterForm.class 7.1.0.1576 LogQuerySysForm.class 7.1.0.1576 LogQueryMsgAction.class 7.1.0.1576 LogQueryMTAAction.class 7.1.0.1576 LogQueryPolicyForm.class 7.1.0.1576 LogSettingAction.class 7.1.0.1576 LogBaseAction.class 7.1.0.1576 LogQueryVirusAction.class 7.1.0.1576 LogQueryMTAForm.class 7.1.0.1576 LogQueryPolicyAction.class 7.1.0.1576 LogQuerySysAction.class 7.1.0.1576 LogQueryVirusForm.class 7.1.0.1576 LogQueryIpFilterAction.class 7.1.0.1576 RptScheduleAction.class 7.1.0.1576 RptResultAction.class 7.1.0.1576 DetailReportAction.class 7.1.0.1576 RptBaseAction.class 7.1.0.1576 ShowChartAction.class 7.1.0.1576 RptSettingAction.class 7.1.0.1576 DownloadReportCSVAction.class 7.1.0.1576 OverviewItem.class 7.1.0.1576 orderbyStatusASC.class 7.1.0.1576 orderbyStatusDESC.class 7.1.0.1576 NRSSetting.class 7.1.0.1576 DHARuleSetting.class 7.1.0.1576 BlockIPItem.class 7.1.0.1576 OverviewList.class 7.1.0.1576 orderbyCreatetimeASC.class 7.1.0.1576 WhiteList.class 7.1.0.1576 BlockIPList.class 7.1.0.1576 WhiteListChange.class 7.1.0.1576 orderbyCreatetimeDESC.class 7.1.0.1576 RuleSetting.class 7.1.0.1576 IPFilterDAO.class 7.1.0.1576 TypeDefine.class 7.1.0.1576 orderbyIPASC.class 7.1.0.1576 orderbyDomainDESC.class 7.1.0.1576 WhiteListItem.class 7.1.0.1576 CachedIPItem.class 7.1.0.1576 BaseList.class 7.1.0.1576 orderbyIPDESC.class 7.1.0.1576 orderbyDomainASC.class 7.1.0.1576 CachedIPList.class 7.1.0.1576 VerInfo.class 7.1.0.1576 VersionInfo.class 7.1.0.1576 ServerStatus.class 7.1.0.1576 TrafficSummInfo.class 7.1.0.1576 SysMonitorDAO.class 7.1.0.1576 SummaryDAO.class 7.1.0.1576 RetrieveThrad.class 7.1.0.1576 QtLogs.class 7.1.0.1576 QtSettingAreaRec.class 7.1.0.1576 QtLogrec.class 7.1.0.1576 QtSettingDAO.class 7.1.0.1576 QtQueryDAO.class 7.1.0.1576 EUQLdapDAO.class 7.1.0.1576 TmLicense.class 7.1.0.1576 AdminList.class 7.1.0.1576 SmtpAuth.class 7.1.0.1576 AdminDAO.class 7.1.0.1576 ImssPr.class 7.1.0.1576 AdminSummary.class 7.1.0.1576 ImssPrDAO.class 7.1.0.1576 SmtpAuthDAO.class 7.1.0.1576 AdminUser.class 7.1.0.1576 GlobalSettingDAO.class 7.1.0.1576 GlobalSettingItem.class 7.1.0.1576 ReversedFileReader.class 7.1.0.1576 LogQueryIpDAO.class 7.1.0.1576 SpamCategory.class 7.1.0.1576 LogsBase.class 7.1.0.1576 SysLogrec.class 7.1.0.1576 KeywordComparator.class 7.1.0.1576 Component.class 7.1.0.1576 MtaLogs.class 7.1.0.1576 SysLogs.class 7.1.0.1576 IpLogs.class 7.1.0.1576 LogRecBase.class 7.1.0.1576 IpLogRec.class 7.1.0.1576 LogQuerySysDAO.class 7.1.0.1576 PageListGenerate.class 7.1.0.1576 LogSetting.class 7.1.0.1576 MsgLogrec.class 7.1.0.1576 LogQueryMsgDAO.class 7.1.0.1576 LogConst.class 7.1.0.1576 MsgActionEntry.class 7.1.0.1576 LogQueryPolDAO.class 7.1.0.1576 MtaLogRec.class 7.1.0.1576 MsgLogs.class 7.1.0.1576 PolicyLogs.class 7.1.0.1576 LogQueryMTADAO.class 7.1.0.1576 PolicyLogrec.class 7.1.0.1576 TriggeredKeyword.class 7.1.0.1576 RptOneTime.class 7.1.0.1576 RptSetting.class 7.1.0.1576 RptResultEntry.class 7.1.0.1576 RptBaseSetting.class 7.1.0.1576 RptMonthlySetting.class 7.1.0.1576 RptResultDAO.class 7.1.0.1576 RptResult.class 7.1.0.1576 RptOneTimeEntry.class 7.1.0.1576 RptDailySetting.class 7.1.0.1576 RptSettingDAO.class 7.1.0.1576 RptWeeklySetting.class 7.1.0.1576 RptOneTimeDAO.class 7.1.0.1576 UIEvtLogDAO.class 7.1.0.1576 DAOResult.class 7.1.0.1576 SplitTableRecordInfo.class 7.1.0.1576 SplitTableDAO.class 7.1.0.1576 BaseObject.class 7.1.0.1576 Utility.class 7.1.0.1576 GlobalSettingDAO.class 7.1.0.1576 INIFile.class 7.1.0.1576 IPv6Utility.class 7.1.0.1576 JniResult.class 7.1.0.1576 PrJNI.class 7.1.0.1576 JniInit.class 7.1.0.1576 JniConstant.class 7.1.0.1576 PostfixJNI.class 7.1.0.1576 PolicyJNI.class 7.1.0.1576 TmcmJNI.class 7.1.0.1576 BackupJNI.class 7.1.0.1576 IPv6JNI.class 7.1.0.1576 ICRCJNI.class 7.1.0.1576 SystemMonitorJNI.class 7.1.0.1576 LdapJNI.class 7.1.0.1576 QuarantineJNI.class 7.1.0.1576 UpdateJNI.class 7.1.0.1576 LDAPAccess.class 7.1.0.1576 ConnTMCM.class 7.1.0.1576 ScanMethod.class 7.1.0.1576 TransportDomain.class 7.1.0.1576 PostfixDAO.class 7.1.0.1576 UpdateInfoDAO.class 7.1.0.1576 Pop3Svr.class 7.1.0.1576 NotiMsg.class 7.1.0.1576 NotiSetting.class 7.1.0.1576 UpdateInfo.class 7.1.0.1576 Postfix.class 7.1.0.1576 RuleOrderDAO.class 7.1.0.1576 NotiEvent.class 7.1.0.1576 ConnBasic.class 7.1.0.1576 ConnLDAP.class 7.1.0.1576 SmtpRouting.class 7.1.0.1576 ConnEuqDBDAO.class 7.1.0.1576 ConnPop3.class 7.1.0.1576 ConnEuqDB.class 7.1.0.1576 WizardDAO.class 7.1.0.1576 ConnDB.class 7.1.0.1576 ConnPop3DAO.class 7.1.0.1576 MtaDAO.class 7.1.0.1576 NotiEUQ.class 7.1.0.1576 RuleVirus.class 7.1.0.1576 InterAddress.class 7.1.0.1576 BATVDomain.class 7.1.0.1576 AddressGroupDAO.class 7.1.0.1576 Entity.class 7.1.0.1576 InterAddrDAO.class 7.1.0.1576 KeywordDAO.class 7.1.0.1576 RuleDAO.class 7.1.0.1576 Stamp.class 7.1.0.1576 RuleList.class 7.1.0.1576 DKIMSettingDAO.class 7.1.0.1576 Keyword.class 7.1.0.1576 Rule.class 7.1.0.1576 WrsApproveUrlDAO.class 7.1.0.1576 AddressGroup.class 7.1.0.1576 RuleFilter.class 7.1.0.1576 SpamFilterObj.class 7.1.0.1576 Notification.class 7.1.0.1576 AddrShowObj.class 7.1.0.1576 BATVSetting.class 7.1.0.1576 KeywordItem.class 7.1.0.1576 SecSettings.class 7.1.0.1576 TimeRange.class 7.1.0.1576 ScanExcptsDAO.class 7.1.0.1576 ExceptionPair.class 7.1.0.1576 RuleAttribute.class 7.1.0.1576 TextExemption.class 7.1.0.1576 RuleAction.class 7.1.0.1576 WrsApproveUrlSettings.class 7.1.0.1576 ScanExcpts.class 7.1.0.1576 NotificationDAO.class 7.1.0.1576 StampDAO.class 7.1.0.1576 RuleSummary.class 7.1.0.1576 ConnDBAction.class 7.1.0.1576 ScanMethodAction.class 7.1.0.1576 MTASettingAction.class 7.1.0.1576 NotiSettingsAction.class 7.1.0.1576 EventAction.class 7.1.0.1576 ConnTMCMAction.class 7.1.0.1576 BackupAction\$ConfigFileNameFilter.class 7.1.0.1576 NotiEventAction.class 7.1.0.1576 BackupAction.class 7.1.0.1576 UpdSchAction.class 7.1.0.1576 SystemBaseAction.class 7.1.0.1576 SmtpRoutingAction.class 7.1.0.1576 ConnPop3Action.class 7.1.0.1576 ConnLDAPAction.class 7.1.0.1576 ConnBasicAction.class 7.1.0.1576 RuleOrderAction.class 7.1.0.1576 WizardAction.class 7.1.0.1576 Pop3Form.class 7.1.0.1576 NotiEUQAction.class 7.1.0.1576 RuleActionNamedObjAction.class 7.1.0.1576 SecViolateForm.class 7.1.0.1576 RuleAttrNameAction.class 7.1.0.1576 RuleActionTagAction.class 7.1.0.1576 EditRuleAction.class 7.1.0.1576 SelectAddrAction.class 7.1.0.1576 RuleAttrDKIMEnforcementAction.class 7.1.0.1576 PwdProtectAction.class 7.1.0.1576 RuleAttrKeywordAction.class 7.1.0.1576 ScanExcpAction.class 7.1.0.1576 PwdProtectForm.class 7.1.0.1576 RuleAttrTrueFileAction.class 7.1.0.1576 RuleAttrWrsAction.class 7.1.0.1576 RuleAttrMIMEAction.class 7.1.0.1576 DKIMWhiteListSettingAction.class 7.1.0.1576 VirusRuleAction.class 7.1.0.1576 RuleAttrBATVAction.class 7.1.0.1576 AddrGroupAction.class 7.1.0.1576 RuleActionStampAction.class 7.1.0.1576 InterAddrSubAction.class 7.1.0.1576 AddRuleAction.class 7.1.0.1576 RuleAttrMmlAction.class 7.1.0.1576 RuleAttrSpamAction.class 7.1.0.1576 RuleDetailAction.class 7.1.0.1576 RuleListAction.class 7.1.0.1576 RuleAttrTimeRangeAction.class 7.1.0.1576 SecViolateAction.class 7.1.0.1576 RuleActionNotifyAction.class 7.1.0.1576 InterAddrAction.class 7.1.0.1576 PolicyBaseAction.class 7.1.0.1576 EuqViewMessageForm.class 7.1.0.1576 EuqMessagesForm.class 7.1.0.1576 EuqApprovedSenderForm.class 7.1.0.1576 EuqApprovedSenderAction\$1.class 7.1.0.1576 EuqApprovedSenderAction.class 7.1.0.1576 EuqViewMessageAction.class 7.1.0.1576 EuqMessagesAction.class 7.1.0.1576 LogoffAction.class 7.1.0.1576 Constants.class 7.1.0.1576 IMSSUIDate.class 7.1.0.1576 ImssActionServlet.class 7.1.0.1576 TimeoutAction.class 7.1.0.1576 UIStates.class 7.1.0.1576 SessionFilter.class 7.1.0.1576 ImssRequestProcessor.class 7.1.0.1576 BaseAction.class 7.1.0.1576 LoginForm.class 7.1.0.1576 LoginAction.class 7.1.0.1576 JniConst.class 7.1.0.1576 RtnStr.class 7.1.0.1576 JniInitBE.class 7.1.0.1576 RtnFloat.class 7.1.0.1576 RtnBool.class 7.1.0.1576 RtnLong.class 7.1.0.1576 RtnInt.class 7.1.0.1576 JniBEConst.class 7.1.0.1576 EuqGlobalSetting.class 7.1.0.1576 EuqBE.class 7.1.0.1576 EuqSummary.class 7.1.0.1576 EuqSelectedLdapGroup.class 7.1.0.1576 ListEuqSpamParam.class 7.1.0.1576 EuqMsg.class 7.1.0.1576 EuqApprovedSender.class 7.1.0.1576 EndUserBE.class 7.1.0.1576 EndUser.class 7.1.0.1576 logs_query_messageevent.jsp 7.1.0.1576 logs_query_filtering.jsp 7.1.0.1576 dkim_enforcement_domain.jsp 7.1.0.1576 tooltip.js 7.1.0.1576 imssdump 7.1.0.1576 ExInterface_IMSS_7.ini 7.1.0.1576 ip_blocked.jsp 7.1.0.1576 rule_action_notify.jsp 7.1.0.1576 rule_attr_spam.jsp 7.1.0.1576 wrs_setting_home.jsp 7.1.0.1576 add_white_list.jsp 7.1.0.1576 rule_attr_keyword.jsp 7.1.0.1576 smtp_auth_detail.jsp 7.1.0.1576 admin_euq.jsp 7.1.0.1576 imsa7adminEuq.properties 7.1.0.1576 imss6Common.properties 7.1.0.1576 imss6Errors.properties 7.1.0.1576 imss6Logs.properties 7.1.0.1576 imss6Policy.properties 7.1.0.1576 imss6Reports.properties 7.1.0.1576 imss6Summary.properties 7.1.0.1576 imssOLH.properties 7.1.0.1576 imss6Sql.properties 7.1.0.1576 imss6UIEvtLogs.properties 7.1.0.1576 imss6System.properties 7.1.0.1576 struts-config-summary.xml 7.1.0.1576 struts-config-policy.xml 7.1.0.1576 struts-config-reports.xml 7.1.0.1576 struts-config-system.xml 7.1.0.1576 web.xml 7.1.0.1576 trend-style.css 7.1.0.1576 validation.jsp 7.1.0.1576 validation.js 7.1.0.1576 mml_exceptionlist_import.jsp 7.1.0.1576 mml_exceptionlist_import_close.jsp 7.1.0.1576 policy_home.jsp 7.1.0.1576 rule_attr_mml.jsp 7.1.0.1576 rule_detail_attribute.jsp 7.1.0.1576 rule_attr_keyword_item.jsp 7.1.0.1576 rule_attr_keyword_detail.jsp 7.1.0.1576 quarantines_archive.jsp 7.1.0.1576 quarantines_query.jsp 7.1.0.1576 reports_daily.jsp 7.1.0.1576 reports_monthly.jsp 7.1.0.1576 reports_onetime_add.jsp 7.1.0.1576 reports_weekly.jsp 7.1.0.1576 sys_updates_sched.jsp 7.1.0.1576 sys_noti_events.jsp 7.1.0.1576 smtp_rule.jsp 7.1.0.1576 smtp_delivery.jsp 7.1.0.1576 close_page.jsp 7.1.0.1576 smtp_conn.jsp 7.1.0.1576 c2_proxy.jsp 7.1.0.1576 c3_ldap.jsp 7.1.0.1576 c1_notification.jsp 7.1.0.1576 c5a_tmcm.jsp 7.1.0.1576 c6_confirm.jsp 7.1.0.1576 c6_confirm_review.jsp 7.1.0.1576 sys_noti_settings.jsp 7.1.0.1576 sys_connect_pop3_detail_add.jsp 7.1.0.1576 sys_updates_source.jsp 7.1.0.1576 sys_connect_tmcm.jsp 7.1.0.1576 sys_connect_ldap.jsp 7.1.0.1576 smtp_delivery_detail.jsp 7.1.0.1576 sys_scan_method.jsp 7.1.0.1576 sys_noti_msg.jsp 7.1.0.1576 left_0530.jsp 7.1.0.1576 summ_availver.jsp 7.1.0.1576 summ_activity.jsp 7.1.0.1576 summ_system.jsp 7.1.0.1576 logs_query_policyevent.jsp 7.1.0.1576 logs_query_details.jsp 7.1.0.1576 logs_query_sysevent.jsp 7.1.0.1576 imss_smtp_incoming.jpg 7.1.0.1576 imss_smtp_delivery.jpg 7.1.0.1576 imsscmagent 7.1.0.1576 imssd 7.1.0.1576 imssmgr 7.1.0.1576 imp_exp 7.1.0.1576 log.ini 7.1.0.1576 dblog_janitor 7.1.0.1576 predata_gen 7.1.0.1576 graph_template.xml 7.1.0.1576 report_csv_template.csv 7.1.0.1576 sched_report_template.htm 7.1.0.1576 smart_reporter 7.1.0.1576 traffic_summary_gen 7.1.0.1576 cgiCmdNotify 7.1.0.1576 imssmgrmon 7.1.0.1576 forceUpdate 7.1.0.1576 aucmd 7.1.0.1576 imssausched 7.1.0.1576 soapclient 7.1.0.1576 root.res 7.1.0.1576 dbscript.conf 7.1.0.1576 libEn_Utility.so.1 7.1.0.1576 libTrendAprWrapper.so.1 7.1.0.1576 libapr-1.so.0 7.1.0.1576 libcurl.so.4 7.1.0.1576 libSSO_PKIHelper.so.1.0.0 7.1.0.1576 libFilterMML.so 7.1.0.1576 libFilterSpsTmase.so 7.1.0.1576 libFilterWrs.so 7.1.0.1576 libFilterVirus.so 7.1.0.1576 libFilterAction.so 7.1.0.1576 libImssRule.so 7.1.0.1576 libtmau.so 7.1.0.1576 libImssCommon.so 7.1.0.1576 libIMSSjni.so 7.1.0.1576 libFilterEmgrPlugin.so 7.1.0.1576 libProductLibrary.so 7.1.0.1576 crcz.ptn 7.1.0.1576 icrc$oth.295 7.1.0.1576 libGsoapClient.so 7.1.0.1576 libPolicyCaller.so 7.1.0.1576 libGuid.so 7.1.0.1576 aucfg.ini 7.1.0.1576 aumsg.0 7.1.0.1576 aumsg.932 7.1.0.1576 AuPatch 7.1.0.1576 cert5.db 7.1.0.1576 libciuas32.so 7.1.0.1576 libpatch.so 7.1.0.1576 libtmactupdate.so 7.1.0.1576 x500.db 7.1.0.1576 libtmprapi.so 7.1.0.1576 libtmprapid.so 7.1.0.1576 libtmmsg.so 7.1.0.1576 libcom_err.so 7.1.0.1576 libcom_err.so.3 7.1.0.1576 libcom_err.so.3.0 7.1.0.1576 libgssapi_krb5.so 7.1.0.1576 libgssapi_krb5.so.2 7.1.0.1576 libgssapi_krb5.so.2.2 7.1.0.1576 libgssrpc.so 7.1.0.1576 libgssrpc.so.4 7.1.0.1576 libgssrpc.so.4.1 7.1.0.1576 libk5crypto.so 7.1.0.1576 libk5crypto.so.3 7.1.0.1576 libk5crypto.so.3.1 7.1.0.1576 libkadm5clnt.so 7.1.0.1576 libkadm5clnt_mit.so 7.1.0.1576 libkadm5clnt_mit.so.8 7.1.0.1576 libkadm5clnt_mit.so.8.0 7.1.0.1576 libkadm5srv.so 7.1.0.1576 libkadm5srv_mit.so 7.1.0.1576 libkadm5srv_mit.so.8 7.1.0.1576 libkadm5srv_mit.so.8.0 7.1.0.1576 libkdb5.so 7.1.0.1576 libkdb5.so.7 7.1.0.1576 libkdb5.so.7.0 7.1.0.1576 libkrb5.so 7.1.0.1576 libkrb5.so.3 7.1.0.1576 libkrb5.so.3.3 7.1.0.1576 libkrb5support.so 7.1.0.1576 libkrb5support.so.0 7.1.0.1576 libkrb5support.so.0.1 7.1.0.1576 libverto.so 7.1.0.1576 libverto.so.0 7.1.0.1576 libverto.so.0.0 7.1.0.1576 libICRCHdler.so 7.1.0.1576 libICRCHdler.so.1 7.1.0.1576 libxerces-c-3.1.so 7.1.0.1576 libcrypto.so 7.1.0.1576 libcrypto.so.0.9.8 7.1.0.1576 libcrypto.so.4 7.1.0.1576 libssl.so.0.9.8 7.1.0.1576 libssl.so.4 7.1.0.1576 libssl.so 7.1.0.1576 bindctl.sh 7.1.0.1576 dig 7.1.0.1576 dig.sh 7.1.0.1576 named 7.1.0.1576 named.conf 7.1.0.1576 rndc 7.1.0.1576 rndc.key 7.1.0.1576 rndc.sh 7.1.0.1576 imp_exp.sh 7.1.0.1576 S99IMSS 7.1.0.1576 S99DIGEST 7.1.0.1576 imss.dat 7.1.0.1576 imssps 7.1.0.1576 euqutil 7.1.0.1576 imsstasks 7.1.0.1576 wrsagent 7.1.0.1576 db_maintain 7.1.0.1576 libEUQjni.so 7.1.0.1576 libImssDAO.so 7.1.0.1576 libem_helpr.so 7.1.0.1576 libEmExpression.so 7.1.0.1576 libdmc_ooxProperty.a 7.1.0.1576 libdmc_pdfexploremp.so.4.2 7.1.0.1576 libdmc_pdfresmp.so.4.2 7.1.0.1576 libdmc_txif.a 7.1.0.1576 libdmc_txpdf.so.4.2 7.1.0.1576 libdmc_txzip.so.4.2 7.1.0.1576 libOoxDrawingML.a 7.1.0.1576 libFoxParser.so 7.1.0.1576 libPolicyUtility.so 7.1.0.1576 libFilterDkimEF.so 7.1.0.1576 libImssPolicy.so 7.1.0.1576 imss6Admin.properties 7.1.0.1576 imss6UIEvtLogs.properties 7.1.0.1576 imss6UIEvtLogs.properties 7.1.0.1576 imss6Policy.properties 7.1.0.1576 imss6Sql.properties 7.1.0.1576 imss6Reports_en.properties 7.1.0.1576 imss6Summary_en.properties 7.1.0.1576 imssOLH_en.properties 7.1.0.1576 imss6System_en.properties 7.1.0.1576 imss6Common_en.properties 7.1.0.1576 imss6Errors_en.properties 7.1.0.1576 imss6Logs_en.properties 7.1.0.1576 imss6Policy_en.properties 7.1.0.1576 imss6UIEvtLogs_en.properties 7.1.0.1576 imss6Admin_en.properties 7.1.0.1576 imsa7adminEuq_en.properties 7.1.0.1576 imss6Backup_en.properties 7.1.0.1576 imss6Errors_de_en.properties 7.1.0.1576 imss6Errors_de.properties 7.1.0.1576 imss6Errors_en.properties 7.1.0.1576 imss6Errors_es_en.properties 7.1.0.1576 imss6Errors_es.properties 7.1.0.1576 imss6Errors_fr_en.properties 7.1.0.1576 imss6Errors_fr.properties 7.1.0.1576 imss6Errors_it_en.properties 7.1.0.1576 imss6Errors_it.properties 7.1.0.1576 imss6Errors_ko_en.properties 7.1.0.1576 imss6Errors_ko.properties 7.1.0.1576 imss6Errors_zh_en.properties 7.1.0.1576 imss6Errors_zh.properties 7.1.0.1576 imss6Errors_zh_TW_en.properties 7.1.0.1576 imss6Errors_zh_TW.properties 7.1.0.1576 ProductUI.zip 7.1.0.1576 rule_attr_name.jsp 7.1.0.1576 c2_proxy.jsp 7.1.0.1576 euq_access_search.jsp 7.1.0.1576 quarantines_query_detail.jsp 7.1.0.1576 Tomcat.sh 7.1.0.1576 struts-config-admin.xml 7.1.0.1576 logs_query_mtaevent.jsp 7.1.0.1576 struts-config-common.xml 7.1.0.1576 struts-config-platform.xml 7.1.0.1576 left_admin.jsp 7.1.0.1576 euquarantine_home.jsp 7.1.0.1576 imss6Errors.properties 7.1.0.1576 db_maintain.sh 7.1.0.1576 11. Contact Information ======================================================================== A license to the Trend Micro software usually includes the right to product updates, pattern file updates, and basic technical support for one (1) year from the date of purchase only. After the first year, Maintenance must be renewed on an annual basis at the Trend Micro then-current Maintenance fees. You can contact Trend Micro via fax, phone, and email, or visit us at: http://www.trendmicro.com Evaluation copies of Trend Micro products can be downloaded from our web site. Global Mailing Address/Telephone Numbers ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ For global contact information in the Asia/Pacific region, Australia and New Zealand, Europe, Latin America, and Canada, refer to: http://www.trendmicro.com/en/about/overview.htm The Trend Micro "About Us" screen displays. Click the appropriate link in the "Contact Us" section of the screen. Note: This information is subject to change without notice. 12. About Trend Micro ======================================================================== Trend Micro Incorporated, a global leader in Internet content security and threat management, aims to create a world safe for the exchange of digital information for businesses and consumers. A pioneer in server-based antivirus with over 20 years experience, we deliver top-ranked security that fits our customers' needs, stops new threats faster, and protects data in physical, virtualized and cloud environments. Powered by the Trend Micro Smart Protection Network(TM) infrastructure, our industry-leading cloud-computing security technology and products stop threats where they emerge, on the Internet, and are supported by 1,000+ threat intelligence experts around the globe. For additional information, visit www.trendmicro.com. Copyright 2013, Trend Micro Incorporated. All rights reserved. Trend Micro, the t-ball logo, Smart Protection Network, InterScan, and Control Manager are trademarks of Trend Micro Incorporated and are registered in some jurisdictions. All other marks are the trademarks or registered trademarks of their respective companies. 13. License Agreement ======================================================================== Information about your license agreement with Trend Micro can be viewed at: http://www.trendmicro.com/en/purchase/license/ Third-party licensing agreements can be viewed: - By selecting the "About" option in the application user interface