|
Title. |
AutoUpdate 60 now available
|
|
Introduction |
Assuria AutoUpdate 60 is a security content update, containing updated
content in the form of new and updated checks and policies, and updated
patch databases, policy navigators and console database content.
The
update is compatible with, and suitable for application to, both Assuria
Auditor and ISS System Scanner agents.
|
|
Security
Content |
Security content based on newly published vendor security bulletins (or
similar) is included for the agents listed below:
Note: Microsoft did not release any security bulletins in March 2007,
therefore new content for Windows is not included.
The
console database and policy navigators are updated in line with the new
and updated security content.
This
AutoUpdate also contains a database update which adds the mapping of
Assuria Auditor checks to two standards – Sarbanes Oxley (SOX) and ISO
27001 in preparation for a new reporting option.
Updated functionality is also included.
The
standard reporting feature can be trialed at this AutoUpdate via the
Console CLI, please see
below for details.
The full manifest of new and changed files for this update can be seen
below.
|
|
Database Update – Applicable standard
|
This AutoUpdate contains a database update which adds the mapping of
Assuria Auditor checks to two standards – SOX and ISO 27001 in
preparation for a new reporting option. The new reporting option when
available will
report the results of a previously run and imported session, summarised
by the codes or sections of one of several different standards. The
output report is formatted in html.
User will see a small change in the standard HTML report for some
checks. The report section, “CVE references” has been re-named
“Applicable standards” and after this AutoUpdate 60 in addition to CVE
and BID references users will also see for some checks ISO27001 and SOX
(Sarbanes Oxley) references.
|
|
Standards Based Reporting
|
At this release, this reporting option can only be invoked through the
console CLI; a subsequent update will introduce invocation through the
GUI. Operating instructions for the CLI interface are provided below.
To invoke the new standards based reporting at this AutoUpdate, use the
script create_standards_report from the console CLI. This script
has the following usage:
-
create_standards_report {sessionName}
latest {stdName}
-
create_standards_report {sessionName}
{scanDateTime} {StdName}
Where {sessionName} is the name of the session run, {scanDateTime} is
the date and time of the run, and {stdName} is the name of the standard
to sort by. Note that {scanDateTime} should be in format "mm/dd/yyyy
hh:mm:ss", including the double quotes. Acceptable {stdName} values are
currently "SOX" and "ISO27001".
|
|
Console
update
|
o
Database update
-
Updated information on new and existing checks
o
Updated Policy Navigators
- AIX
4.3
- Red
Hat Enterprise Linux
-
Windows 2000
-
Windows 2003
o
Updated Console Files
-
bin/tcl/host.tbc
-
bin/tcl/htmlrep.tbc
-
bin/tcl/crystal.tbc
-
bin/tcl/IndexedResults.tbc
-
bin/tcl/job.tbc
-
bin/tcl/normrep.tbc
-
bin/tcl/report.tbc
-
bin/tcl/startdll.tbc
-
bin/tcl/startsh.tbc
-
bin/tcl/startup.tbc
-
bin/tcl/treeutils.tbc
o New
Console Files
-
bin/tcl/stdrep.tbc
-
scripts/create_standards_report
|
|
Agent
updates
|
Updates are
included for the following agents:
o HP
HP-UX 11 (PA-RISC)
o IBM
AIX 4.3.3 and later
o Red
Hat Enterprise Linux 3 (x86), 4 (x86) and 4 (x64)
o Sun
Solaris 8 (SPARC)
o Sun
Solaris 9 (SPARC)
o Sun
Solaris 10 (SPARC)
o Sun
Solaris 10 (x86)
|
|
HP HP-UX 11
(PA-RISC)
|
o
Updated Patch Database
-
bin/patch_HP-UX.data
-
bin/patch_HP-UX.ref
o
X-Press Update Files
-
rulesets/unarchivePolicy
-
signatures/rulesets/unarchivePolicy.sgn
-
lib/xpud3_60.zip
-
lib/xpud3_60.sgn
|
|
IBM AIX
4.3.3 or later
|
o New
Checks
-
aix-IY93084-fix
-
aix-IY94301-fix
-
aix-IY94368-fix
o
Updated Policies
-
Initial-1
-
Initial-All
-
Maintenance-1
-
Maintenance-All
- aix-fixes
o
X-Press Update Files
-
rulesets/unarchivePolicy
-
signatures/rulesets/unarchivePolicy.sgn
-
lib/xpud3_60.zip
-
lib/xpud3_60.sgn
|
|
Microsoft
Windows 2000 (x86) (Server and Professional)
|
No updates
this month |
|
Microsoft
Windows Server 2003 (x86)
|
No updates
this month |
|
Red Hat
Enterprise Linux 3 (x86), 4 (x86) & 4 (x64)
|
o
Updated Checks
-
RHSA-2005-835
-
RHSA-2006-0257
-
RHSA-2006-0268
o New
Checks
-
RHSA-2006-0674
-
RHSA-2006-0688
-
RHSA-2006-0731
-
RHSA-2006-0743
-
RHSA-2007-0009
-
RHSA-2007-0015
-
RHSA-2007-0017
-
RHSA-2007-0021
-
RHSA-2007-0060
-
RHSA-2007-0062
-
RHSA-2007-0067
-
RHSA-2007-0073
-
RHSA-2007-0074
-
RHSA-2007-0076
-
RHSA-2007-0077
-
RHSA-2007-0078
-
RHSA-2007-0079
-
RHSA-2007-0083
-
RHSA-2007-0085
-
RHSA-2007-0086
-
RHSA-2007-0088
-
RHSA-2007-0096
-
RHSA-2007-0106
o
Updated Policies
-
Initial-1
-
Initial-All
-
Maintenance-1
-
Maintenance-All
-
rhsa
o
X-Press Update Files
-
rulesets/unarchivePolicy
-
signatures/rulesets/unarchivePolicy.sgn
-
lib/xpud3_60.zip
-
lib/xpud3_60.sgn
|
|
Sun Solaris
8 (SPARC)
|
o
Updated Patch Database
-
bin/patch_Solaris.data
-
bin/patch_Solaris.ref
o
X-Press Update Files
-
rulesets/unarchivePolicy
-
signatures/rulesets/unarchivePolicy.sgn
-
lib/xpud3_60.zip
-
lib/xpud3_60.sgn
|
|
Sun Solaris
9 (SPARC)
|
o
Updated Patch Database
-
bin/patch_Solaris.data
-
bin/patch_Solaris.ref
o
X-Press Update Files
-
rulesets/unarchivePolicy
-
signatures/rulesets/unarchivePolicy.sgn
-
lib/xpud3_60.zip
-
lib/xpud3_60.sgn
|
|
Sun Solaris
10 (SPARC)
|
o
Updated Patch Database
-
bin/patch_Solaris.data
-
bin/patch_Solaris.ref
o
X-Press Update Files
-
rulesets/unarchivePolicy
-
signatures/rulesets/unarchivePolicy.sgn
-
lib/xpud3_60.zip
-
lib/xpud3_60.sgn |
RSS 2.0