assuria bulletin 39

assuriaONLINE Customer and Partner resources Logon / register

Subscribe via RSS

RSS 2.0

assuria bulletin

Title: AutoUpdate #62 available

Number: 39 Date: 5th June 2007

Title.

AutoUpdate #62

Contents

Security Content Updates
Standard ISO-17799
Improved Error Reporting
Textual Manifest

Introduction

AutoUpdate 62 is a security and feature content update. It contains updated console content including ISO-17799 standards based reporting and improved error reporting. New and updated checks and policies, and updated patch databases, policy navigators and console database content.

The update is compatible with, and suitable for application to, both Assuria Auditor and previous ISS System Scanner agents.

Regulatory and standards based reporting – ISO-17799 added.

Assuria AutoUpdate #61 introduced new regulatory and standards compliance reporting to Assuria Auditor.

With Assuria AutoUpdate #62 the Assuria Auditor Console database has been updated to additionally include, where appropriate, the mapping of each Assuria Auditor’s 2500 checks to a reference within the ISO-17799 standard.

Standards now supported by Assuria Auditor are ISO-27001, ISO-17799, Payment Card Industry (PCI) and Sarbanes Oxley (SOX).

Security Content Updates

Security content based on newly published vendor security bulletins (or similar) is included for the agents listed below

HP HP-UX 11 (PA-RISC)
Microsoft Windows 2000
Microsoft Windows Server 2003 (x86)
Red Hat Enterprise Linux 3 (x86), 4 (x86) and 4 (x64)
Sun Solaris 8 (SPARC)
Sun Solaris 9 (SPARC)
Sun Solaris 10 (SPARC)

Feature updates

Improved Error Reporting

Additional fields have been added to the database schema, in order to improve error reporting to customer applications which read the Assuria Auditor database. Both table Scans and ScanErrors now have an additional field ErrorHint which contains further information on the cause of any error. Data will be loaded into the ScanErrors table in more circumstances than formerly, allowing applications access to error information previously only available in the console status line or from errorlog.n files. As a consequence, more error information will be available in reports for incomplete sessions.

This change is the first stage of a two stage change, with a further stage expected to be made in the next AutoUpdate. More information on the hint values will be provided at that stage.

Console update

o Database update

- Updated information on new and existing checks

o Updated Policy Navigators

- IBM AIX

- HP HP-UX 11

- Red Hat Enterprise Linux

- Sun Solaris 8

- Sun Solaris 9

- Sun Solaris 10 on Sparc

- Sun Solaris 10 on X86

- Windows 2000

- Windows 2003

o Updated console files

- bin/tcl/Crystal.tbc

- bin/tcl/db.tdc

- bin/tcl/job.tbc

- bin/tcl/jobsh.tbc

Agent updates

Updates are included for the following agents:

o HP HP-UX 11 (PA-RISC)

o Microsoft Windows 2000

o Microsoft Windows Server 2003 (x86)

o Red Hat Enterprise Linux 3 and later (x86 and x64)

o Sun Solaris 8 (SPARC)

o Sun Solaris 9 (SPARC)

o Sun Solaris 10 (SPARC)

o Sun Solaris 10 (x86)

HP HP-UX 11 (PA-RISC)

o Updated Patch Database

- bin/patch_HP-UX.data

- bin/patch_HP-UX.ref

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Red Hat Enterprise Linux 3 (x86), 4 (x86) & 4 (x64)

o New Checks

- RHSA-2007-0123

- RHSA-2007-0150

- RHSA-2007-0153

- RHSA-2007-0155

- RHSA-2007-0157

- RHSA-2007-0158

- RHSA-2007-0162

- RHSA-2007-0166

- RHSA-2007-0167

- RHSA-2007-0169

- RHSA-2007-0203

- RHSA-2007-0208

- RHSA-2007-0220

- RHSA-2007-0229

- RHSA-2007-0235

- RHSA-2007-0244

- RHSA-2007-0245

- RHSA-2007-0252

- RHSA-2007-0257

- RHSA-2007-0276

- RHSA-2007-0286

- RHSA-2007-0310

- RHSA-2007-0322

- RHSA-2007-0337

o Updated Policies

- allusers

- Initial-1

- Initial-All

- Maintenance-1

- Maintenance-All

- rhsa

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Microsoft Windows 2000

o New Checks

- win-ms07kb931768-update

- win-ms07kb931832-update

- win-ms07kb931906-update

- win-ms07kb935966-update

o Updated Checks

- win-ms07kb928090-update

o Updated Policies

- Initial-1

- Initial-All

- Maintenance-1

- Maintenance-All

- versionChecks

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Microsoft Windows Server 2003 (x86)

o New Checks

- win-ms07kb931768-update

- win-ms07kb931832-update

- win-ms07kb931906-update

- win-ms07kb935966-update

o Updated Checks

- win-ms07kb928090-update

o Updated Policies

- Initial-1

- Initial-All

- Maintenance-1

- Maintenance-All

- versionChecks

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Sun Solaris 8 (SPARC)

o Updated Patch Database

- bin/patch_Solaris.data

- bin/patch_Solaris.ref

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Sun Solaris 9 (SPARC)

o Updated Patch Database

- bin/patch_Solaris.data

- bin/patch_Solaris.ref

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Sun Solaris 10 (SPARC)

o Updated Patch Database

- bin/patch_Solaris.data

- bin/patch_Solaris.ref

o X-Press Update Files

- rulesets/unarchivePolicy

- signatures/rulesets/unarchivePolicy.sgn

- lib/xpud3_62.zip

- lib/xpud3_62.sgn

- etc/update.ini

Assuria Limited, Science & Technology Centre, The University of Reading, Earley Gate, Reading, RG6 6BZ, UK.

Telephone +44 118 935 7395 Fax +44 118 926 7917 Web www.assuria.com

28/01/2008