4. Release Notes

Minimum OS versions for OPSWAT Client are Windows 7, Windows Server 2008, and macOS Mavericks (10.9). Prior OS versions are not supported

Windows 7 and Windows Server 2008 devices must install KB2533623 and KB3033929 in order to upgrade to the latest version

Upcoming Release: August 18, 2020

Console Version: 2.8.2

Agent Release Version:

  • Windows persistent agent: 7.6.330.0

  • Windows On-demand agent: 7.3.507.0

  • macOS persistent agent: 10.4.289.0

  • macOS on-demand agent: 10.5.217.0

  • Debian-based Linux persistent agent: 15.4.15.0

  • Readhat-based Linux persistent agent: 15.6.12.0

Release Updates

MetaAccess Cloud

1. Administrators can now indicate what privilege OPSWAT Client should run a custom script with. By default, OPSWAT Client runs custom script as system on Windows or user on macOS.

images/download/attachments/6437513/image2020-8-5_23-7-9.png

2. Allow admins to export selected devices only instead of all devices which match to search/filter criteria.

3. Bug fixes:

  • Device export file for macOS devices didn't have correct data for some fields

  • The system false alerted to users who log into MetaAccess through 3rd-party single sign-on service that their account runs out of license.

  • The remediation page showed all vulnerable applications instead of only vulnerable applications which violates a policy's criteria.

OPSWAT Client

Windows Persistent Client (7.6.330.0)

  1. Run custom script as a defined privilege in a policy which the device is assigned to.

  2. Custom script is now stored in a secure form instead of plain text.

  3. Add a signature to a cross-domain API's response to allow 3rd party validate the API response if it comes from OPSWAT Client

  4. Bug Fixed:

    • OPSWAT Client couldn't connect to the server if the device was removed due to unseen for a long time on the server.

    • Users couldn't open sanitized files OPSWAT Client copied due to the client created a new file with a system privilege.

    • The client didn't show Action Required even the device has issues and non-compliant sometimes

  5. Updated built-in SDK signature: 4.3.1416.0

Known issues:

- Windows 7 and Windows Server 2008 devices must install KB2533623 and KB3033929 in order to upgrade to the latest version

- If a user exits the agent tray icon, the agent can’t popup approved actions when a user inserts a portable media

- A user needs to enable Show Notifications on the agent tray icon to see notifications about portable media

- The agent has not supported portable media feature if user 2 logs into a device while user 1 is still logged in

- OPSWAT Client does not support iTunes drive. If a user inserts an iOS device on an endpoint which has iTunes installed, the user will still have access to the phone via iTunes

- OPSWAT Client can't detect mobile devices, the user needs to unplug and plug in the mobile device again

Windows On-demand Agent (7.3.507.0)

  1. Run custom script as a defined privilege in a policy which the device is assigned to. If the specified privilege in the policy is higher then privilege the client runs, it will try to run at highest privilege it can.

  2. Custom script is now stored in a secure form instead of plain text.

  3. Add a signature to a cross-domain API's response to allow 3rd party validate the API response if it comes from OPSWAT Client

  4. Bugs fixed

    • OPSWAT Client couldn't connect to the server if the device was removed due to unseen for a long time on the server.

    • The client didn't show Action Required even the device has issues and non-compliant sometimes

  5. Updated built-in SDK signature: 4.3.1416.0

macOS Persistent Agent (10.4.289.0)

  1. Run custom script as a defined privilege in a policy which the device is assigned to. If the specified privilege in the policy is higher then privilege the client runs, it will try to run at highest privilege it can.

  2. Custom script is now stored in a secure form instead of plain text.

  3. Add a signature to a cross-domain API's response to allow 3rd party validate the API response if it comes from OPSWAT Client

  4. Bugs fixed

    • The client couldn't upgrade sometimes

  5. Updated built-in SDK signature: 4.3.1301.0

macOS on-demand Agent (10.5.217.0)

  1. Run custom script as a defined privilege in a policy which the device is assigned to. If the specified privilege in the policy is higher then privilege the client runs, it will try to run at highest privilege it can.

  2. Custom script is now stored in a secure form instead of plain text.

  3. Add a signature to a cross-domain API's response to allow 3rd party validate the API response if it comes from OPSWAT Client

  4. Updated built-in SDK signature: 4.3.1301.0

Redhat-based Linux persistent Agent (15.6.12.0)

  1. Add a signature to a cross-domain API's response to allow 3rd party validate the API response if it comes from OPSWAT Client

  2. Built-in SDK signature: 4.3.1117.0

Known issues:

  • To upgrade to this version from version 15.x.y.1/14.x.y.0, a user needs to uninstall old Linux agent version and reinstall this version

  • The agent doesn't have UI/tray icon, the agent only supports command line

Debian-based Linux persistent Agent (15.4.15.0)

  1. Add a signature to a cross-domain API's response to allow 3rd party validate the API response if it comes from OPSWAT Client

  2. Built-in SDK signature: 4.3.1117.0

Known issues:

  • To upgrade to this version from version 15.x.y.1/14.x.y.0, a user needs to uninstall old Linux agent version and reinstall this version

  • The agent doesn't have UI/tray icon, the agent only supports command line

Release Date: July 07, 2020

Console Version: 2.8.1

Agent Release Version:

  • Windows persistent agent: 7.6.324.0

  • Windows On-demand agent: 7.3.503.0

  • macOS persistent agent: 10.4.284.0

  • macOS on-demand agent: 10.5.213.0

  • Debian-based Linux persistent agent: 15.4.14.0

  • Readhat-based Linux persistent agent: 15.6.11.0

Release Updates

MetaAccess Cloud

1. Administrators now can audit files a user copied from local drives to a removable media by enabling the Report a copy result when a user copies files from local drives to a removable media setting under Removable Media Protection.

images/download/attachments/6437513/image2020-7-2_12-21-57.png

2. MetaAccess customers can now leverage more commercial engines for Advanced Threat Detection with MetaDefender Cloud. New engines are available for both existing and new policies. They are un-selected by default for existing policies, administrators have to update policies manually.

3. Enhanced the access control workflow to support device compliance check when a user logs into G-suite via Azure single-sign on.

4. Bug fixes:

  • Missing authentication header in the callback.

OPSWAT Client

Windows Persistent Client (7.6.324.0)

1. Report what OPSWAT Client copied from local drives to a removable media if a policy the devices is assigned to enables that.

2. Bug Fixed:

- Memory leak on OPSWAT Client

- File path was shown incorrect if the file path includes Hebrew characters

3. Updated built-in SDK signature: 4.3.1366.0

Known issues:

- Windows 7 and Windows Server 2008 devices must install KB2533623 and KB3033929 in order to upgrade to the latest version

- If a user exits the agent tray icon, the agent can’t popup approved actions when a user inserts a portable media

- A user needs to enable Show Notifications on the agent tray icon to see notifications about portable media

- The agent has not supported portable media feature if user 2 logs into a device while user 1 is still logged in

- OPSWAT Client does not support iTunes drive. If a user inserts an iOS device on an endpoint which has iTunes installed, the user will still have access to the phone via iTunes

- OPSWAT Client can't detect mobile devices, the user needs to unplug and plug in the mobile device again

Windows On-demand Agent (7.3.503.0)

1. Updated built-in SDK signature: 4.3.1366.0

macOS Persistent Agent (10.4.284.0)

  1. Bugs fixed

    • The client didn't popup the remediation page when the device is non-compliant after the fresh installation

  2. Updated built-in SDK signature: 4.3.1249.0

macOS on-demand Agent (10.5.213.0)

  1. Bugs fixed

    • The client didn't popup the remediation page when the device is non-compliant after the fresh installation

  2. Updated built-in SDK signature: 4.3.1249.0

Redhat-based Linux persistent Agent (15.6.11.0)

  1. Bugs fixed

    • The agent could not connect to the server after it disconnected to the server for a long time

    • The client reports the same device ID on some devices

  2. Built-in SDK signature: 4.3.1089.0

Known issues:

  • To upgrade to this version from version 15.x.y.1/14.x.y.0, a user needs to uninstall old Linux agent version and reinstall this version

  • The agent doesn't have UI/tray icon, the agent only supports command line

Debian-based Linux persistent Agent (15.4.14.0)

  1. Bugs fixed

    • The agent could not connect to the server after it disconnected to the server for a long time

    • The client reports the same device ID on some devices

  2. Built-in SDK signature: 4.3.1089.0

Known issues:

  • To upgrade to this version from version 15.x.y.1/14.x.y.0, a user needs to uninstall old Linux agent version and reinstall this version

  • The agent doesn't have UI/tray icon, the agent only supports command line