March 31, 2009
Description
Description
The Symantec Enterprise Security Manager™ Security Update 2009.03.01 has been enhanced to support AIX 6.1 on AIX Workload Partition (WPAR) and Support for Red Hat Enterprise Linux Server 5 on PPC e-Server.
Security Update 2009.03.01 introduces 19 new checks across several modules.
Install Security Update 2009.03.01 to upgrade UNIX and Windows security modules on Symantec ESM 6.5 and later agents. For detailed descriptions of new features and enhancements, download the Security Update 2009.03.01 Release Notes. Enhancements
Security Update 2009.03.01 provides the following enhancements:
- Support for the following operating systems on ESM 6.5.3 and later versions:
- AIX 6.1 on AIX Workload Partition (WPAR)
- Red Hat Enterprise Linux Server 5 on PPC e-server
- One new check in the Windows Account Integrity module
- One new check in the Unix Account Integrity module
- Integrity of password and group files
- One new check in the Windows Agent Information module
- One new check in the Windows File Attributes module
- Two new checks in the UNIX File Attributes module
- Prohibited user ownership
- Prohibited group ownership
- One new check in the Windows and UNIX File Watch module
- Maximum reported messages
o
- Three new checks in the UNIX Login Parameters module
- Maximum logins allowed
- Multiline warning banners
- Warning banners (Check service running)
- One new check in the Windows Network Integrity module
- One new check in the Windows Startup Files module
- Six new checks in the Windows Symantec Product Information module
- LiveUpdate frequency
- Scan frequency
- Maximum virus definition file age
- File system auto-protected
- Internet email auto-protected
- Outlook Auto-Protected
- One new check in the Windows System Auditing module
- Granular system audit setting
- One new template in the Windows System Auditing module
- Granular System Audit Setting
Note: : On the LiveUpdate wizard, the SU version is now visible in the following format: SU<YYYY>.<MM>.<Release_Version>. ... Where, YYYY is the year of release, MM is the month of release, and Release_Version is the release version of the SU. For example, SU 37 displays as SU 2009.03.01 on the LiveUpdate wizard.
Linux Platforms include:
- Red Hat Enterprise Server (x86, Opteron and EM64T)
- SUSE Linux Enterprise Server 9/10 (x86)
- SUSE Linux Enterprise Server 9/10 (Opteron and EM64T)
- ESX Server (x86, Opteron)
For these platforms, continue to use Security Update 18:
For these platforms, continue to use Security Update 17:
Extended Support
The Extended Support TPK includes the following enhancements:
- Large file support
- Extended unprintable characters in filenames support (Solaris only)
- Full promiscuous mode detection (Solaris only)
The non-extended TPK installers of AIX RS/6000, HP-UX, and Solaris SPARC are no longer shipped with the Security Updates. However, you can download the extended support TPK installers.
Agent Installs
Refer the following Security Response Web page for information on downloading the ESM 6.0/6.5.x agents:
Documentation
The SU Release Notes contain the details of all module enhancements. Continue using your Security Update 17 User’s Guides until the updated guides are released.
Last modified on: March 31, 2009
