Nowa wersja oprogramowania dla ochrony poczty producenta Fortinet. W dniu 21.12.2017 producent dostarczył najnowszą wersję aktualizacji dla rodziny produktów FortiMail oznaczoną numerem 5.4.3
Producent zadbał o poprawki. Pełna lista zmian oraz poprawek poniżej:
Content disarm and reconstruction (License required)
MS Office and PDF attachments may contain potentially hazardous macros, active scripts, and other active contents. Starting from 5.4.3, FortiMail provides the capability to remove or neutralize the potentially hazardous contents and reconstruct the email messages and attachment files.
Minimal DNS TTL
The following CLI command has been added to overwrite the TTL of cached DNS records in case the TTL of the records is very short: config system dns set cache-min-ttl <time_in_seconds> end For details, see the FortiMail CLI Reference.
Enhancement to system quarantine folder admin access
In the admin access profiles, different admin users can be assigned to access different system quarantine folders.
SMTP delivery preference for IPv4 or IPv6 addresses
When FortiMail delivers email to a host name, it does DNS AAAA and A record lookup. However, if the AAAA record does not exist, the extra AAAA DNS lookup for IPv6 addresses will potentially cause email delivery delay. New CLI commands are added to control whether the IPv4 or IPv6 addresses should be used first. For details, see the FortiMail CLI Reference.
Antivirus/Antispam/Content / Bug ID Description
460499 DKIM check causes mailfilterd crashes.
462226 When clicking to delete all spam email on a quarantine report, on the popup window, all the deleted email are displayed with the same subject name.
448879 Unable to release quarantined email using the search function.
461557 Quickly deleting a released email from multiple recipients may cause some recipients fail to received the released email.
461176 The block lists are checked first, instead of the safe lists.
461131 Domain part in <user>@<domain> in email body should not be included for URI scanning with “strict” settings (that is, to scan for absolute URIs only). Only the aggressive settings scan for both absolute and reference URIs.
457624 RCPT To checking in a recipient policy does not differentiate between main domains and associated domains.
455950 Wildcard in banned words does not work for Japanese words.
457291 Access control rules with reverse DNS lookup do not work for email with attachments.
465528 PDF content scan triggers PDF embedded file check.
461719 Non-final actions in the action profile for URI filters fall back to “personal quarantine”.
457655 Some HTML contents fail to trigger dictionary profiles.
System / Bug ID Description
461987 Webmail language cannot be customized.
460419 Port2 IP address is changed from 0.0.0.0/0 to 192.168.2.99/24 after upgrading from 5.3.11 to 5.4.2.
463208 Unable to import users in .csv files in server mode.
459590 Unable to back up configurations using SCP.
457236 Unable to create sender address rate control exempt list on the admin GUI.
457290 Generated local certificates miss some fields such as Country, City, and OU fields.
463568 FortiMail-3000E RAID beep alarm does not stop in some situations even though the rebuild has completed. The following diagnose command has been added to temporarily silence the alarm. The alarm should clear once the failure event has be rectified. diag system raid-silence-alarm
461160 FortiMail needs to send protected domain names to FortiSandbox, which uses this information for submission limitation purpose.
Pełna lista zmian:
Bezpieczeństwo w biznesie