Symantec Updates Now Available for Norton and Enterprise Products

June 29, 2016, 2:19 pm

≫ Next: WIll SEPM and SEP auto Update Maintenance Pack?

≪ Previous: Symantec vulnerability - Google project zero

Blog Feature Image:

Twitter Card Style:

summary

At Symantec, we take our mission to protect the world’s information very seriously. To ensure that our products are as effective as possible, we rely on Symantec experts and the security research community to watch for potential product vulnerabilities so we can act swiftly to remediate and issue product updates accordingly. As part of our standard best practices, we continually improve the protection delivered in our products through regular updates and encourage both our Norton and enterprise customers to keep their products updated to get the best protection possible.

In this case, we were alerted by a researcher on Google’s Project Zero to eight vulnerabilities he discovered after reviewing our product portfolio. Symantec has not seen evidence of any of these vulnerabilities being exploited in the wild. More importantly, fixes are currently in place and updates are now available for customers to install. While many products update themselves automatically, we encourage all of our customers to review the full list of impacted products and installation instructions, which can be found here.

Staying ahead of the threats from attackers requires vigilance and industry-wide information sharing. We remain committed to ensuring our products address today’s most sophisticated threats and we thank the security community for their assistance.

↧

WIll SEPM and SEP auto Update Maintenance Pack?

June 29, 2016, 7:19 pm

≫ Next: cannot execute binary file for install agent for CCS

≪ Previous: Symantec Updates Now Available for Norton and Enterprise Products

Oui, j'ai besoin d'une solution

Hi,

I get to know that there is new release of 12.1.6 MP5. Can i know do SEPM and SEP can auto update to this latest version?

Are there any reference for me?

↧

cannot execute binary file for install agent for CCS

June 29, 2016, 7:37 pm

≫ Next: SEPM and SEP upgrade

≪ Previous: WIll SEPM and SEP auto Update Maintenance Pack?

Oui, j'ai besoin d'une solution

i get "cannot execute binary file" error when i run "./esmsetup" in order to install agent for CCS

my CentOS is 64 bit

any advice on this?

1467276927

↧

SEPM and SEP upgrade

June 29, 2016, 8:27 pm

≫ Next: ノートン製品とエンタープライズ製品のアップデートを公開

≪ Previous: cannot execute binary file for install agent for CCS

Oui, j'ai besoin d'une solution

We are now using SEPM 12.1.6 MP4 and SEP client 12.1.2015.2015

1. How to upgrade SEPM to 12.1.6 MP6 from MP4? Is there package for maintenance pack or we need to upgrade on line?

2. Can we deploy and upgrade SEP client 12.1.2015.2015 to 12.1.6 MP6 ?

If manually upgrade, do we have to uninstall the old SEP and install with the package generate from SEPM ? Thanks

↧

ノートン製品とエンタープライズ製品のアップデートを公開

June 29, 2016, 11:28 pm

≫ Next: Can I Change SEPM 12.x language?

≪ Previous: SEPM and SEP upgrade

Blog Feature Image:

commandcenterwide.jpg

世界中の情報を厳重に保護すること―それがシマンテックの掲げる使命です。シマンテックは、当社製品ができるだけ効果を発揮するように、社内の専門家とセキュリティ研究コミュニティの力を借りて、製品に潜む脆弱性を監視しています。また、修正に迅速に対応し、適切なタイミングで製品のアップデートを公開できるよう心がけています。標準的なベストプラクティスの一環として、シマンテックが製品の保護機能を強化するために常に行っているのが、定期的なアップデートです。ノートン製品とエンタープライズ製品どちらをお使いのお客様も、最大限の保護を得られるように、製品のアップデートを忘れないようにしてください。

このたび、Google 社のセキュリティ調査チームである Project Zero の研究者から、シマンテック製品をレビューした結果、8 件の脆弱性が見つかったという警告をいただきました。これらの脆弱性が実際に悪用されているという証拠を、シマンテックはまだ確認していません。修正はすでに実施されており、お客様にインストールしていただけるアップデートも公開されています。製品のアップデート自体はたいてい自動ですが、影響を受ける製品の詳しい一覧と、インストールの手順は必ず確認することをお勧めします。詳しくは、こちらをご覧ください。

攻撃者が繰り出してくる脅威の先手を取るには、厳重な警戒と、業界全体での情報共有が欠かせません。シマンテックはこれからも、きわめて高度な脅威に当社製品が間違いなく対処できるよう、尽力します。その一方で、セキュリティコミュニティのご助力には、心よりお礼を申し上げます。

【参考訳】

↧

Can I Change SEPM 12.x language?

June 30, 2016, 12:30 am

≫ Next: 501 Connection rejected by policy [7.7] 10802

≪ Previous: ノートン製品とエンタープライズ製品のアップデートを公開

Oui, j'ai besoin d'une solution

Hello guys, I have installed SEPM 12.1.7004.6500 in Spanish and I would like to change to English ver.

Can you tell me how to I do?

↧

501 Connection rejected by policy [7.7] 10802

June 30, 2016, 1:12 am

≫ Next: SEP ADC add publisher as argument

≪ Previous: Can I Change SEPM 12.x language?

Oui, j'ai besoin d'une solution

Hello

We are permission-based email marketing provider and we only allowed client to send opt-in emails.

We have this error when sending to some domains.

But we just received this report

501 Connection rejected by policy [7.7] 10802, please visit www.messagelabs.com/support for more details about this error message.

And it is not send IP address.

So that we don't know which IP address on the Symantec blacklist and how to eliminate this blockade.

Please help!

THANK YOU!

↧

SEP ADC add publisher as argument

June 30, 2016, 1:40 am

≫ Next: Mail security for exchange 6.5 to Endpoint security

≪ Previous: 501 Connection rejected by policy [7.7] 10802

Hi,

it would be great, if it was possible to define the software (cert) publisher as an argument to block or permit applications in ADC.
You can do so in DCS and it's very helpful, i.e. to allow all signed Citrix software on a client without having to list every application or to peermit a whole directory.

Thank you,
Caroline

↧

Mail security for exchange 6.5 to Endpoint security

June 30, 2016, 3:12 am

≫ Next: boot issue

≪ Previous: SEP ADC add publisher as argument

Oui, j'ai besoin d'une solution

Hi all,

I currently have a 2003 SBS server running Mail security for exchange 6.5. The antispam has come up for renewal and on trying to apply the new license and it failing I realised I had been given a license for Endpoint Protection SBE 2013 instead. On querying this I was told that Mail security has been incorperated into Endpoint security now and that is what I require. I have now installed endpoint security but it does not appear to have mail security for exchange in it. Can anybody shed some light on this for me please. Endpoint secuirity does not look like the correct product to me.

thanks

Gav

↧

boot issue

June 30, 2016, 4:14 am

≫ Next: Has anyone installed 12.1.6 MP5 yet. Any problems encountered?

≪ Previous: Mail security for exchange 6.5 to Endpoint security

Oui, j'ai besoin d'une solution

I have had Symantec Full Disk Encryption installed on my laptop which is dual boot with linux and windows. My hard drive was fully encrypted. I have deleted the drive with linux on it resulting in boot MBR corruption. Now when i run windows recovery and try to repair startup it dosnt find the hard drive as it is encrypted. Screenshot attached. Need help.

↧

Has anyone installed 12.1.6 MP5 yet. Any problems encountered?

June 30, 2016, 5:36 am

≫ Next: Install Packages Admin Notification

≪ Previous: boot issue

Non, je n'ai pas besoin d'une solution (je partage des informations seulement)

Has anyone updated to 12.1.6 MP5 yet. If so have you encountered any problems? Also is this a minor or major update.

↧

Install Packages Admin Notification

June 30, 2016, 6:25 am

≫ Next: BUG IN DLP

≪ Previous: Has anyone installed 12.1.6 MP5 yet. Any problems encountered?

In SEPM 12.1.x under CLIENTS, INSTALL PACKAGES tab, EDIT.

When you right click a package to edit the GENERAL and NOTIFICATION tabs, under NOTIFICATION it would be nice if there was an option to notify admin when a client downloads new version. Currently there is only an option to notify the users before the upgrade. As an admin I would like to know which client downloaded the update and when.

Maybe a simple email with the client name or maybe a button on the NOTIFICATION tab to generate a list of client names and downloaded version and date?

Regards,

Semper Fi.

EditClientInstallPackage.jpg

↧

BUG IN DLP

June 30, 2016, 8:08 am

≫ Next: Issue installing Symantec Encryption Desktop

≪ Previous: Install Packages Admin Notification

Hello

Symantec dlp agent, cant control chanel Drag and Drop. i am not about copy/ paste DRAG & DROP.

if you resulate this problem , it will be great. becoust there is not any dlp solution wich can control this channel

↧

Issue installing Symantec Encryption Desktop

June 30, 2016, 8:48 am

≫ Next: Auto-upgrade pending reboots - AV still working while in pending state?

≪ Previous: BUG IN DLP

Oui, j'ai besoin d'une solution

I installed Symantec Encryption Desktop 10.3.2, but never finished as I had not yet received an activation key.

NOTE: during this install the Setup Assistent (PGP Tray) did start after reboot.

Once I had the key I decided that I should go with the new version of Symantec Encryption Desktop 10.4:

I uninstalled 10.3.2
I then installed 10.4
During installation, after the initial reboot the Setup Assistent did not start.
I attempted to start the PGP Tray program (as I found I should do on-line), but it will not start.

What can I do so that the Setup Assisten (PGP Tray) starts?

thank you

↧

Auto-upgrade pending reboots - AV still working while in pending state?

June 30, 2016, 6:24 am

≫ Next: Email Security.cloud Approve/Blocked senders enhancement

≪ Previous: Issue installing Symantec Encryption Desktop

Oui, j'ai besoin d'une solution

When SEP says it requires a restart and has the exclamation mark, is it still functioning or is the software not actively scanning or scanning for viruses? We have systems that may be a while before we can reboot them and I'm hoping the AV is still doing its job until I can reboot although its in this restart state.

1467312225

↧

Email Security.cloud Approve/Blocked senders enhancement

June 30, 2016, 7:31 am

≫ Next: Is it possible to turn off Auto-Upgrade?

≪ Previous: Auto-upgrade pending reboots - AV still working while in pending state?

We have many customers who use your Newsletter filtering, one of their biggest complaints is that they can only whitelist using the envelope sender.

This causes an issue because newsletters are normally sent through marketing companies such as sendgrid.net or cmail.com and are made up of randomstring@cmail.com

The random string normally changes between newsletter runs, as it's used to trace bouncebacks, and this makes it impossible to whitelist the sender.

Equally whitelisting the domain means that you will allow that newsletter, but also the newsletters of any other company who use that marketing sender.

If they were able to whitelist the body from address, which relates to the company sending it, rather than the newsletter provider then there would be no issue.

For example:

Env From: {fjef=2494ff=mermaid-marine=co=uk@cmail2.com}
Bdy From: {noreply@mermaid-marine.co.uk

whitelisting cmail2.com would allow any newsletters from any company who relays trhough cmail2.com not just the mermaid marine newsltter, whereas if whitelisting the bodyfrom this would prevent the issue.

↧

Is it possible to turn off Auto-Upgrade?

June 30, 2016, 7:41 am

≫ Next: Upgrading SEPM to 12.1.6 MP5 failing -

≪ Previous: Email Security.cloud Approve/Blocked senders enhancement

Oui, j'ai besoin d'une solution

I applied auto-upgrade for a container for my servers but need to turn off--is this possible? I see how you can enable this, but not how to disable it.

1467312257

↧

Upgrading SEPM to 12.1.6 MP5 failing -

June 30, 2016, 11:39 am

≫ Next: Trouble with 32 SEP

≪ Previous: Is it possible to turn off Auto-Upgrade?

Oui, j'ai besoin d'une solution

I keep getting the following error when trying to upgrade to 12.1.6 MP5 for my SEPM

*Note* Domain\Account is my domain account used.

The server principal "Domain\Account" is not able to access the database "DBAUseOnly" under the current security context.

No information from Symantec is available on how I can correct this--my environment is HOSED. I would appreciate any help.

↧

Trouble with 32 SEP

June 30, 2016, 2:57 pm

≫ Next: Start a manual Full Scan on a SEP Client directly from the ATP Console

≪ Previous: Upgrading SEPM to 12.1.6 MP5 failing -

Non, je n'ai pas besoin d'une solution (je partage des informations seulement)

Hello,

Our small company was bought out by a large company who is requiring us to install SEP 12.1.5. They sent me a 32bit and 64 bit MSI to install and am having issues on some of our 32 bit PC's. The 64 bit installs and runs fine.

I first tested on a spare 32 bit windows 7 PC and it installed just fine. So I went to an end user, removed the antivirus we were using and installed the 32 bit. The install seemed to install fine and completed, so I rebooted the PC. However when I try to launch the Control Panel I get the Circle spin for a bit and then Nothing.. I looked in the system tray and nothing there and Notifcation Area Icons indicates a reboot is required. After the reboot the same message appears. I launced Services as Admin and tried to restart Endpoint but got the following error. "Windows could not start the Symantec Endpoint Protection service on Local Computer. Error 1053: The service did not respond to the start or control request" I on this forum and found quite a few things to try ( I did not list them as I tried them so don't recall everything I did) but nothing worked. And when I compared to working PC none of the "fixes" were applied to it...

I did try the install on 4 other PC's and it was successful on one of the 3, so I feel the installer is OK. They are all Dell Optiplex 7010 and up with Windows 7 Pro, pretty much the same on OS fixes as they are pushed via WSUS server. They all have pretty much the same apps, MS Office, Adobe, Papervision, and a few other benign apps.

Looking for a better way to trouble shoot this problem and any help would be appreciated.

I have attached the log file from C:\windows\temp.

thanks in Advance

David

↧

Start a manual Full Scan on a SEP Client directly from the ATP Console

June 30, 2016, 4:18 pm

≫ Next: SEP Console System Registration

≪ Previous: Trouble with 32 SEP

Hi,

it would be very nice to have an additional button in the ATP console to start a Full Scan on an (infected) SEP Client.
Sometimes it's not nessesary to isolate the client. In this case the SEP console must be openend to search the client which takes extra time for the administrators.

Thanks.

↧