Release Notes for RAV AntiVirus for Mail Servers Version 8.4.2 //////////////////////////////////////////////////////////////////// / Release Date: February 19, 2003 / / Document last updated on: March 25, 2003 / / Version: 8.4.2 / //////////////////////////////////////////////////////////////////// Thank you for using version 8.4.2 of RAV AntiVirus for Mail Servers. These Release Notes contain important information regarding the release of the product. We strongly advise you to read the entire document and the related documentation available for this product (please read section Documentation of this file for more information). CONTENTS: ========= 1. Description 2. Availability 3. New features in version 8.4.2 of ravmd 4. Fixed bugs 5. Upgrading to version 8.4.2 of ravmd 6. Documentation 7. Copyright notice 8. Feedback & Technical support 1.DESCRIPTION = =========== RAV AntiVirus for Mail Servers scans and cleans e-mail messages and all types of attachments including archives, exe files, embedded files, etc. It helps you avoid Internet malwares (viruses, worms, Trojans, hoaxes, etc.), bulk mail and information leaks. RAV AntiVirus for Mail Servers is scanning, detecting and removing any electronic threat from the messages flowing to/from your mail server, no matter what operating system the message is originating from, protecting important data for your company and preventing your computers from being infected by viruses, worms, Trojans and other malwares. RAV AntiVirus for Mail Servers and all the other products included in RAV AntiVirus family are based on RAV Engine, now at version 8.11. RAV Engine combines the operational strength, the extensibility, the scalability, the scanning speed and the robustness needed in the fight against viruses and other malicious software (Trojans, worms, hoaxes, etc.). At this writing, RAV Engine includes in its database about 79,160 distinct malware signatures and the RAV Antivirus Research Team daily adds new signatures to the RAV Engine's database. RAV Engine includes modules for scanning inside 17 different types of common archives, detecting infected files in archives inside archives for up to 64 levels. RAV Engine scans inside packed executables (i.e. lzexe, pklite, cryptcom, wwpack, aspack, pepack, vgcrypt, upx). Our Engine is also scanning and cleaning plain mail files (MIME), mail databases (DBX, MBX, PST), supporting various encoding methods (Base64, UUE, Binhex, Tnef). RAV Engine can also scan processes in memory and IFS chains, because RAV Engine is working with Virtual File Systems, thus detecting and cleaning memory-resident viruses. Starting with March 1st, 2002, RAV AntiVirus for Mail Servers (Linux) is awarded the West Coast Labs’ Checkmark Certificate Level 1 (for detecting all "In the Wild" viruses) and Level 2 (cleaning all the "In the Wild" viruses). RAV AntiVirus for Mail Servers is the first (and so far the only) antivirus product winning both certificates for Linux-based mail servers. 2.AVAILABILITY = ============ RAV AntiVirus for Mail Servers version 8.4.2 is currently available for the following platforms: operating system: Linux processor: i386 MTAs: CommunigatePro, Courier, Dmail, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: Linux processor: sparc MTAs: CommunigatePro, Courier, Dmail, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: Linux processor: ppc MTAs: CommunigatePro, Courier, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: Mac OS X processor: ppc MTAs: CommunigatePro, Courier, Dmail, Postfix operating system: FreeBSD processor: i386 MTAs: CommunigatePro, Courier, Dmail, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: OpenBSD 3.x processor: i386 MTAs: CommunigatePro, Courier, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: OpenBSD 2.9 processor: i386 MTAs: CommunigatePro, Courier, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: BSDI processor: i386 MTAs: CommunigatePro, Dmail, Exim, Postfix, Qmail, Sendmail, Sendmail milter The products for the following platforms are currently at version 8.4.1: operating system: Linux processor: s390 MTAs: CommunigatePro, Courier, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: Solaris processor: sparc MTAs: CommunigatePro, Courier, Dmail, Exim, Postfix, Qmail, Sendmail, Sendmail milter operating system: Solaris processor: i386 MTAs: CommunigatePro, Courier, Dmail, Exim, Postfix, Qmail, Sendmail, Sendmail milter We estimate that all our products currently on version 8.4.1 will be upgraded to version 8.4.2 in a couple of weeks, so please subscribe to our discussion lists or visit http://www.ravantivirus.com in order to be informed on the new releases. Earlier versions of RAV AntiVirus for Mail Servers are available for OpenBSD 2.8, for NetBSD, Win32 (CommunigatePro and Dmail) and Unixware 7.1 on i386 platforms. The cross-table presenting the currently supported platforms and MTAs can be found on the manufacturer's website (www.ravantivirus.com) or in the User Guide for RAV AntiVirus for Mail Servers (see the Documentation section below). 3.NEW FEATURES IN VERSION 8.4.2 OF RAVMD = ====================================== Version 8.4.2 of ravmd has been released because some users of RAV AntiVirus for Mail Servers have required, for legal reasons, that the warning mails issued by our product to be sent as Bcc copies. Here are the main changes in this version: a.supervisor_addr: Warning mails are automatically sent to the mail addresses specified in the supervisor_addr parameter from the [global] group and to postmaster@hostname and root@hostname, where hostname is the value for the on_host parameter in the [global] group or the host name, as returned by the gethostbyname() function: - in case a ravmd malfunction is recorded; or - with 14 days before your license will expire; or - on each ravmd reload in the last 14 days before your license expires, until you extend your subscription period. b.disclose_supervisor: New parameter in ravmd used for specifying if the address of the supervisor will or will not be disclosed in the warning mail’s To: header. c. disclose_sender, disclose_receivers, disclose_admin: New parameters in ravmd used for specifying if the addresses of the corresponding sender/receivers/administrators will or will not be disclosed in the warning mail’s To: header and body. d. Before version 8.4.2 of ravmd, the warning mails were sent having all their receivers listed in the To: header. Now all the warning mails are sent by default as Bcc messages. e. Changed the default options for the following ravav parameters: --smart: Use smart scan mode (enabled by default). -A, --archive=on|off: Scan inside archives. Default value: On. -M, --mail=on|off: Scan mail files. Default value: On. -H, --heuristics=on|off: Boolean controlling heuristic scanning. Default value: On. Attention: A new version of WebConfig (2.1) that works only with RAV AntiVirus for Mail Servers version 8.4.2 is also available. If you are currently using RAVMD WebConfig 2.0 with RAV AntiVirus for Mail Servers version 8.4.1 and you want to upgrade to RAV AntiVirus for Mail Servers 8.4.2 without loosing your current configuration, you should NOT install WebConfig 2.1, but a patch for RAVMD WebConfig 2.0 available on http://www.ravantivirus.com/pages/showproduct.php?p=166. For more info please read the corresponding Release Notes (please refer to section Documentation below). 4.FIXED BUGS = ========== a.Fixed the reload function when the protected server is under pressure. b.No more disfunctionalities with 14 days remaining until the activation deadline. c.String comparisons executed by WBL library for domain names and e-mail addresses are not case sensitive. d.Fixed bug in parsing the mail header for obtaining the IP addresses used by WBL and RBL. 5.UPGRADING TO VERSION 8.4.2 OF RAVMD = =================================== The upgrade procedure to version 8.4.2 is different, according to the platform your product is running on. Upgrading to 8.4.2 on Linux i386 -------------------------------- To upgrade to version 8.4.2 of ravmd from version 8.4.x on Linux i386 platforms, all you have to do is to run the install.sh script that you can find in the tar.gz file containing the installation package for your MTA. Your configuration will be automatically saved. If you want to upgrade manually to version 8.4.2 of ravmd, please follow the instructions provided in the Install file that you can find in the tar.gz file containing the installation package for your MTA. To upgrade to version 8.4.2 of ravmd from versions prior to 8.4.0, you will have to uninstall this version (read the Uninstall file that you can find in the tar.gz file containing the installation package for your MTA. Your configuration will NOT be saved automatically). Upgrading to 8.4.2 on FreeBSD and MacOS X ----------------------------------------- To upgrade to version 8.4.2 of ravmd from whatever prior version of RAV AntiVirus for Mail Servers running on FreeBSD and MacOS X, you will have to UNINSTALL the prior version and install the new one. Your configuration will NOT be saved automatically. Please refer to the corresponding (Install and Uninstall) files that you can find in the installation package for your products (see section Documentation below). 6.DOCUMENTATION = ============= Here is a list of documents that should be read in connection with this file: · RAV AntiVirus for Mail Servers – User Guide for version 8.4.2 (available at http://www.ravantivirus.com/rav/mailservers/documentation/pdf/ravmailservers842-usersguide.pdf); · RAV AntiVirus for Mail Servers – User Guide for version 8.4.1 (available at http://www.ravantivirus.com/rav/mailservers/documentation/pdf/ravmailservers841-usersguide.pdf). · RAVMD WebConfig - Technical Note for version 2.1 (available at http://www.ravantivirus.com/rav/mailservers/documentation/pdf/webconfig21-technote.pdf); · RAVMD WebConfig - Technical Note for version 2.0 (available at http://www.ravantivirus.com/rav/mailservers/documentation/pdf/webconfig20-technote.pdf); · RAVMD WebConfig - Release Notes for version 2.1 (available at http://www.ravantivirus.com/rav/mailservers/documentation/notes/webconfig21.txt); · RAVMD WebConfig - Release Notes for version 2.0 (available at http://www.ravantivirus.com/rav/mailservers/documentation/notes/webconfig20.txt); · RAVMD WebConfig page (available at http://www.ravantivirus.com/pages/showproduct.php?p=166). · the INSTALL file coming with the installation program. This file contains installing instructions for installing the product as a module under Webmin. · The configuration manuals for ravmd filter clients included in the installation packages for the RAV AntiVirus for Mail Servers products you are using. 7.COPYRIGHT = ========= Copyright © since 2002 GeCAD Software® S.R.L. All rights reserved. No part of this material can be reproduced, in any way, by any means. The product and the documentation coming with the product are protected by GeCAD Software’s copyright. GeCAD Software reserves itself the right to revise and modify its products according to its own necessities. This material describes the product as it was at this writing and may not accurately describe the latest developments. For this reason, we recommend you to periodically check our website, available at http://www.ravantivirus.com, for the latest versions of product documentation. GeCAD Software cannot be hold responsible for any special, collateral or accidental damages, related in any way to the use of this document. 8.FEEDBACK & TECHNICAL SUPPORT = ============================ GeCAD Software SRL welcomes your comments and/or suggestions. If you have any problems, please contact us at: GeCAD Software S.R.L. --------------------- Address: 223, Mihai Bravu Blvd 3rd district Bucharest, ROMANIA Phone: +40-21-321 78 03 Hotline: +40-21-321 78 59 Fax: +40-21-321 78 03 Email: Sales: international.sales@ravantivirus.com Technical support: support@ravantivirus.com Website: http://www.ravantivirus.com RAV Discussion Lists -------------------- Interesting ideas and insights, installation and configuration scenarios, troubleshooting solutions and other information are also available via specialized discussion lists for RAV Antivirus products: · rav-cgate – RAV AntiVirus for CommuniGate Pro; · rav-courier – RAV AntiVirus for Courier; · rav-desktop-unices – RAV AntiVirus Desktop for Unices; · rav-desktop-windows – RAV AntiVirus Desktop for Windows; · rav-dmail – RAV AntiVirus for DMail; · rav-enterprise – RAV AntiVirus Enterprise; · rav-exchange – RAV AntiVirus for MS Exchange Server; · rav-exim – RAV AntiVirus for Exim; · rav-mailfilter – RAV AntiVirus MailFilter for POP3, IMAP, SMTP; · rav-novell – RAV AntiVirus for Novell Networks; · rav-postfix – RAV AntiVirus for Postfix; · rav-qmail – RAV AntiVirus for Qmail; · rav-sendmail – RAV AntiVirus for Sendmail; · rav-fileservers – RAV AntiVirus for File Servers (Win32); · rav-samba – RAV AntiVirus for File Server (Samba). You can subscribe to these discussion lists by visiting our website (http://www.ravantivirus.com/pages/discussions.php) or by sending an empty e-mail message to the following e-mail address: listname-subscribe@lists.ravantivirus.com (replace “listname” with the adequate discussion list's name you want to subscribe to). Knowledge Base -------------- The Knowledge Base is a new service offered to you by the producer of RAV AntiVirus. You can access the Knowledge Base at the following address: http://www.ravantivirus.com/kb. Here you can find technical information regarding the configuration and usage of all the products included in RAV AntiVirus family (RAV AntiVirus Desktop, RAV AntiVirus for Mail Servers and RAV AntiVirus for File Servers). RAV Newsletter -------------- A free newsletter, containing virus alerts, advisories and other useful advices for avoiding virus disasters, as well as information regarding updates, tips and tricks and insights on RAV AntiVirus products, is also available from GeCAD Software. You can subscribe to this newsletter using this link: http://www.ravantivirus.com/pages/newsletter.php. Virus Encyclopaedia ------------------- RAV Virus Encyclopedia is a professional knowledge resource, specially designed to allow you to be always up-to-date with the latest virus information and threats. RAV Virus Encyclopedia includes information on the most important and interesting viruses, including details on such as technical description, payload, likelihood, removal instructions and so on. RAV Virus Encyclopedia is available at the following address: http://www.ravantivirus.com/pages/virus.php RAV Outbreak Security Service ----------------------------- RAV Outbreak Security Service is a free service offered as first-hand information putting users en-garde in case of virus outbreaks. To subscribe to RAV Outbreak Security Service, please visit http://www.ravantivirus.com/pages/outbreak.php and just enter your e-mail address in the Subscribe field and press the Subscribe button. You will receive real-time customized notifications on the most recent and dangerous threats to your system’s security.