This upgrade addresses a number of security issues and adds a number of new features. We strongly recommend that you upgrade as soon as possible to ensure that you are fully protected.
There are a number of new features included in this release:
Ability to add multiple route selectors to a single
For more detail on these new features and how you can use them, see What's New in 4.5.0 in the online help.
There are also a number of changes to the user interface included in this release:
Shockwave Flash removed
New centralized management of HTTP Proxy Server
Proxy Settings are now managed by the Server Console. These settings are displayed as read-only on the HTTP Proxy Settings page. If you had previously configured a proxy server in the Gateway but not in the Server Console, you will need to manually add the proxy settings to the Console following upgrade.
|
We strongly recommend that you follow the installation steps outlined in the Clearswift |
If you are migrating from a previous version of
1. Apply any pending configuration.
2. Back up your system and latest configurations before installing.
Detailed instructions on backup and restore are available in the Clearswift
You can install
Full installation instructions are provided in the Clearswift
Perform the following steps to download and apply software updates when you upgrade to
Open an SSH session and access the Clearswift Server Console. Log in using your cs-admin access credentials.
|
Online or Offline mode? Offline mode is designed for installations that operate in a closed environment, disconnected from the Internet. Unless this is a specific requirement for your system, you should install To perform an offline upgrade you require a copy of the latest release ISO mounted to suitable media (DVD/USB). Please contact Clearswift Technical Support if you need additional guidance on how to complete this step. |
If you have online repositories enabled, updates will be downloaded overnight (automatically). You can apply them immediately. You can also use the Check for New Updates button if you believe that there has been a recent security fix issued.
To apply software updates:
Select Yes to confirm that you want to apply the updates.
All downloaded updates will now be installed. This process can take several minutes. A rolling progress log will be displayed.
At the end of the upgrade process, the system will prompt you to either reboot or log out. Follow the instructions on-screen.
This update includes the following fixes, which have been implemented since version
PDF processing improvements
Enhancements to the content engine have improved processing of PDF documents containing inline images. Errors which occurred when viewing sanitized PDF documents in Adobe Reader XI have also been resolved.
Sanitize Document Content removes content from PDF
The Sanitize Document Content rule was observed removing all the content from PDF documents, instead of meta-data content detected by policy. Updates to the processing engine have resolved this issue in this release.
XSS Vulnerability exposed in Message Tracking
A vulnerability was detected in Message Tracking using the Show Log button, enabling the execution of arbitrary Javascript or HTML. While searching for SMTP logs, the
This issue has been resolved in this release.
ImageMagick version update
The current version of ImageMagick used by the
Cannot detect PPT header and footer
PowerPoint header and footer information was not correctly detected in PPT files. This release includes an update to the
Message attachment not detected as encrypted
Encrypted message attachments were not detected by the
SPFDNS spam checks running on internal email servers
IP addresses listed as internal email servers were erroneously subject to SPFDNS spam checks. These checks should not be applied to internal servers. This issue has been resolved by this release.
Outbound messages failing BATV checks
BATVBounce Address Tag Validation checks were being run on outbound messages and were failing if the sender was NULL. An error: '550.5.5.0 batv validation failure' was observed. BATV checks should only be performed on inbound messages.
This issue has been resolved. BATV checks are applied to inbound mail correctly.
Cannot validate S/MIME detached signatures
Messages signed by the
The result was an openssl smime verification failure.
This issue has been resolved by this release.
SharePoint files stuck in analysis queue
When a SharePoint file is received, the analysis process used 100% of CPU resources. After remaining in the policy engine queue until the configured timeout, messages were transferred to Problem Messages. This also caused a spike of CPU activity.
This issue has been resolved.
Reputation update service unavailable alarm displayed, after disabling SpamLogic
The alarm Reputation update service is unavailable was displayed when all spam components were disabled on the Gateway. This alarm should not be visible if the Gateway is operating with no spam detection features.
This issue has been resolved by this release.
Updates to online help
Various updates, corrections and improvements to the online help have been applied in this release.
See
Note the following end of life information:
For more details, see the
For contact details, information on product updates and other products, see the Clearswift Website.
Revision 1.0 November 2017
Published by Clearswift Ltd.
© 1995-2017 Clearswift Ltd
All rights reserved
The materials contained herein are the sole property of Clearswift Ltd. No part of this publication may be reproduced or disseminated or transmitted in any form or by any means electronic, mechanical, photocopying, recording, or otherwise stored in any retrievable system or otherwise used in any manner whatsoever, in part or in whole, without the express permission of Clearswift Ltd.
Information in this document may contain references to fictional persons, companies, products and events for illustrative purposes. Any similarities to real persons, companies, products and events are coincidental and Clearswift shall not be liable for any loss suffered as a result of such similarities.
The Clearswift Logo and Clearswift product names are trademarks of Clearswift Ltd.
All other trademarks are the property of their respective owners. Clearswift Ltd. (registered number 3367495) is registered in Britain with registered offices at 1310 Waterside, Arlington Business Park, Theale, Reading, Berkshire RG7 4SA, England. Users should ensure that they comply with all national legislation regarding the export, import, and use of cryptography.
Clearswift reserves the right to change any part of this document at any time.
Copyright © 1997-2017 Kaspersky Labs, 10 Geroyev Panfilovtsev St., 125365 - Moscow, Russian Federation. The Kaspersky Logo and Kaspersky product names are trademarks of Kaspersky Labs.
Copyright © 2000-2017 Sophos Limited. All rights reserved. Sophos is a registered trademark of Sophos Limited and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
Licensed under US Patent No:5,623,600
Protected by UK Patent 2,366,706
The software allows Clearswift to collect certain data from you regarding spam and other unwanted emails. Clearswift will use this information to improve its service to you (defined as the "Support Service") in the license agreement. Clearswift will use all information provided in accordance with the license agreement and Clearswift's stated privacy policy which can be found at http://www.clearswift.com/about-us/legal-information .
Click here to read Copyright and Acknowledgments in full.
