 Release Notes for McAfee GroupShield* v5.2 for
            Microsoft Exchange 2000
                    HotFix 2

  Copyright (c) 1998-2002 Networks Associates
     Technology, Inc. All Rights Reserved.


===================================================

HotFix Release Date:        26th November 2002


This HotFix was developed and tested with:

- McAfee GroupShield v5.2 for Microsoft
Exchange 2000

- McAfee GroupShield v5.2 for Microsoft
Exchange 2000 HotFix 1

- DAT Version:                            4230

- Engine Version:                         4160

Make sure you have installed these versions or
later before using this HotFix.
===================================================


Thank you for using McAfee GroupShield v5.2 for
Microsoft Exchange 2000. This file contains
important information regarding this release.
We strongly recommend that you read the entire
document.

The attached files are provided as is, and with
no warranty either expressed or implied as to
their suitability for any particular use or
purpose. Network Associates, Inc. assumes no
liability for damages incurred either directly
or indirectly as a result of the use of these
files, including but not limited to the loss or
damage of data or systems, loss of business or
revenue, or incidental damages arising from
their use. HotFix files should be applied only
on the advice of McAfee Technical Support, and
only when you are actually experiencing the
issue being addressed by the HotFix. HotFix
files should not be proactively applied in
order to prevent potential product issues. You
are responsible for reading and following all
instructions for preparation, configuration,
and installation of HotFix files. HotFix files
are not a substitute nor replacement for
product Service Packs which may be released by
Network Associates, Inc. It is a violation of
your software license agreement to distribute
or share these files with any other person or
entity without written permission from Network
Associates, Inc. Further, posting of McAfee
HotFix files to publicly available Internet
sites is prohibited. Network Associates, Inc.
reserves the right to refuse distribution of
HotFix files to any company or person guilty of
unlawful distribution of McAfee software
products. Questions or issues with McAfee
HotFix files should be directed to McAfee
Technical Support.

___________________
WHAT'S IN THIS FILE

- About this HotFix
  - Purpose
  - Resolved Issues
  - Files Included with this HotFix
- Installation
  - Installation Requirements
  - Installation Steps
  - Testing Your Installation
  - Removing This HotFix
- Contacting McAfee and Network Associates
- Copyright and Trademark Attributions
  - Trademarks
  - License Agreement

________________________________________________
ABOUT THIS HOTFIX


PURPOSE

This HotFix includes one Microsoft Windows
Package file for use with McAfee GroupShield
v5.2 for Microsoft Exchange 2000. This HotFix
can also be used to update the standalone
GroupShield v5.2 Administration Console
(GSEMMC).

This new file resolves the issues described in
the section "Resolved Issues".

New issues resolved in this HotFix are issues 5
to 15.


RESOLVED ISSUES

1.  This HotFix resolves an issue with an
    infected message with more than 511
    characters in the recipient list causing
    the GroupShield Exchange service to 
    terminate.

2.  This HotFix resolves an issue with On Demand
    scans not running correctly when mailboxes
    are located in a different domain to the
    Exchange servers.

    Domain = Users.net
    Domain = Exchangeservers.net

3.  This HotFix resolves an issue with a message
    that has a long sender name in the "From"
    list that caused the GroupShield Exchange
    service to terminate.

4.  This HotFix resolves an issue with a memory
    leak in ePO when applying a policy to the
    GroupShield Exchange server.

5.  This HotFix resolves an issue where an 
    incremental DAT update may fail from a 
    Unix ftp server if the ftp server is 
    case sensitive. 

6.  This HotFix resolves an issue where an On 
    Demand Scan may fail to scan some mailboxes 
    if 'Scan all folders and mailboxes EXCEPT 
    those selected' is selected and the list of
    mailboxes to be excluded includes users
    from multiple domains.

7.  This HotFix resolves an issue where both 
    MAPI and HTML Notification messages may 
    not be sent correctly if the recipients
    Active Directory display name property is
    different from the Common Name (CN). 

8.  This HotFix resolves an issue where the 
    Outbreak Manager service failed during a 
    GroupShield or NetShield DAT update.

9.  This HotFix resolves an issue where a 
    Dr. Watson error may occur if GroupShield 
    and ePolicy Orchestrator were both modifying
    the Outbreak Manager rules list 
    simultaneously.

10. This HotFix resolves an issue where multiple
    Notification messages may be sent with the
    same Ticket number for the same infected or
    blocked item.

11. This HotFix resolves an issue with Outbreak 
    Manager where some text may not be visible 
    if the Microsoft Windows 2000 colour scheme
    was set to "High Contrast Black".

12. This HotFix resolves an issue with ePO 
    management of GroupShield, where the ePO 
    servers Internet Proxy settings may be 
    applied to the GroupShield AutoUpdate proxy
    settings.

13. This HotFix resolves an issue with ePO 
    management of GroupShield, where ePolicy 
    Orchestrator did not allow the GroupShield 
    Quarantine or Log directories to be located
    on a remote server.

14. This HotFix resolves an issue where an 
    On Demand scan would fail if Microsoft 
    Windows 2000 Service Pack 3 was installed
    on the Global Catalog server(s) servicing
    MAPI queries for the GroupShield for 
    Exchange 2000 server.

15. This HotFix resolves an issue where 
    incremental On Demand scans were failing
    to run correctly under certain circumstances.

FILES INCLUDED WITH THIS HOTFIX

This HotFix consists of a MSP package, which
contains the following files:

GSE52KH2.TXT
GSE52KP2.MSP
TNGSE52KREGISTRY.RTF
VALIDATE.TXT

________________________________________________
INSTALLATION


INSTALLATION REQUIREMENTS

To install this HotFix, you must have already
installed McAfee GroupShield v5.2 for
Microsoft Exchange 2000.

This HotFix can also be used to upgrade a
server with GroupShield v5.2 with or without a
Field Patch or any HotFix combinations already
installed, or to upgrade a standalone
GroupShield v5.2 Administration Console.

NOTE:
This HotFix does not work with earlier versions
of McAfee GroupShield software.

To get more information about the system
requirements for McAfee GroupShield v5.2 for
Microsoft Exchange 2000, either refer to your
README.RTF file that came with the software, or
the GroupShield Exchange v5.2 Install Guide,
GSE52KIG.PDF, which can be obtained from the
McAfee website.


INSTALLATION STEPS

To install this HotFix, follow these steps:

1. Create a temporary directory on your hard
   disk, then download the file GSE52KH2.ZIP
   from the McAfee website to this directory.

2. Use a compression utility such as WinZip or
   PKZip to extract the HotFix files from the
   GSE52KH2.ZIP archive into your temporary
   directory. Be sure to extract all the files.
   If using WinZip, select the Use Folder Names
   and the All Files options.

   You can download the necessary software from
   most shareware archives, or directly from
   these websites:

   WinZip
   http://www.winzip.com/ddchomeb.htm

   PKZip
   http://www.pkware.com/shareware/

   The codes in the VALIDATE.TXT file can be
   used to ensure the files are the correct
   versions.

   If you plan to use the GSE52KH2.ZIP archive
   file again, keep it available on your
   computer. Otherwise, delete the file.

NOTE:
You may be prompted to reboot the server once 
the HotFix is installed.

3. Close all GroupShield Administration
   consoles that are running on the server or
   the management console. It is further
   recommended that you stop the ePO agent if
   ePO is being used to manage GroupShield. If
   the ePO agent is not stopped the server may
   require a reboot after installing the
   HotFix.

NOTE:
The installation of the HotFix requires that
the original GroupShield Exchange v5.2
installation file, SETUP.MSI, is available in
its original location. If this file is not in
the same location that GroupShield v5.2 was
originally installed from, you may be prompted
to specify the directory containing SETUP.MSI.

NOTE:
If required, this HotFix can be installed
silently (without any on screen prompts) from
the command line.

4. To install the HotFix use the following 
   command, either with the /q option to apply
   the patch silently, or without the /q for a 
   prompted install.

   MSIEXEC /q /p <location>GSE52KP2.MSP
   REINSTALL=all REINSTALLMODE=os

   The meaning of the MSIEXEC switches are as
   follows:

   /q = Silent install
   /p = Apply Patch
   <location> = Location of the Patch file
   GSE52KP2.MSP = Patch file

   The meaning of the REINSTALLMODE switches
   are as follows:

   o = overwrite missing or older files.
   m = re-write registry (HKLM)
   u = re-write registry (HKCU)
   s = update shortcuts.

5. Once the patch is installed, a dialog box
   stating that the patch has been successfully
   installed will appear. Select Finish to
   complete the installation.

6. Start the ePO Agent if it was stopped in 
   Step 3.

7. Once the installation is completed, you may
   check that the HotFix is applied correctly
   by verifying the AVEXCH32.EXE file version
   information as follows:

   <INSTALL PATH>\GROUPSHIELD EXCHANGE\I386

   AVEXCH32.EXE 5.20.677.0

NOTE:
You may be prompted to reboot the server once 
the HotFix is installed.


TESTING YOUR INSTALLATION

You can test the operation of the software by
sending the EICAR Standard AntiVirus Test File
to any computer where you have installed the
software. The EICAR Standard AntiVirus Test
File is a combined effort by anti-virus vendors
throughout the world to implement one standard
by which customers can verify their anti-virus
installations.

To test your installation:

1. Using a Text Editor, copy the following line
   into its own file, without any spaces,
   carriage returns or other characters, then
   save the file with the name EICAR.COM.

X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

The file size will be 68 or 70 bytes.

2. To test the GroupShield Exchange On-Access
   scanner, start your e-mail client software
   and insert the EICAR.COM file attachment
   into a new e-mail and send it to a mailbox
   on the GroupShield Exchange server.

The On-Access scanner reports finding the EICAR
test file.

3. To test the GroupShield Exchange On-Demand
   scanner, make a note of the current
   On-Access settings, then select the "Log
   Infection And Continue Without Attempting To
   Disinfect" action option on the On-Access
   property page. Next, send a message that
   contains the EICAR test file to a mailbox on
   the GroupShield Exchange server, then start
   an On-Demand scan operation. The software
   reports finding the EICAR test file. Once
   you have completed testing the On-Demand
   scanner, return to the On-Access property
   page and revert the settings back to their
   original values.

NOTE:
To learn how to exclude and include selected
mailboxes in an On-Demand scan operation, see
the On-Demand property page online help.

IMPORTANT:
Note that this file is NOT A VIRUS. Delete the
file when you have finished testing your
installation to avoid alarming unsuspecting
users.


REMOVING THIS HOTFIX

McAfee recommends that you do NOT remove the
HotFix files from your GroupShield Exchange
installation once you install them. If you
reinstall your McAfee GroupShield v5.2 for
Microsoft Exchange 2000 software, McAfee
recommends that you also re-apply this HotFix.

_________________________________________________
CONTACTING MCAFEE AND NETWORK ASSOCIATES


Technical Support
http://knowledge.nai.com

McAfee Beta Program
Beta Web Site
www.mcafeeb2b.com/beta/

E-mail
avbeta@nai.com


AVERT Anti-Virus Research Site
www.mcafeeb2b.com/naicommon/avert/default.asp


Download Site
www.mcafeeb2b.com/naicommon/download/

DAT File Updates
www.mcafeeb2b.com/naicommon/download/dats/find.asp

Product Upgrades
www.mcafeeb2b.com/naicommon/download/upgrade/login.asp

A valid grant number is required.
Please contact Network Associates Customer Service.


On-Site Training Information
www.mcafeeb2b.com/services/mcafee-training/default.asp


Finding a Reseller
www.mcafeeb2b.com/partners/default.asp

Network Associates Customer Service
US, Canada, and Latin America toll-free:
Phone:  +1-888-VIRUS NO or +1-888-847-8766
Monday - Friday, 8 a.m. - 8 p.m.,
Central Time

E-mail: services_corporate_division@nai.com
Web: www.nai.com
www.mcafeeb2b.com


For additional information on contacting
Network Associates and McAfee - including
toll-free numbers for other geographic areas -
see the CONTACT.TXT file that accompanied your
original product release.

________________________________________________
COPYRIGHT AND TRADEMARK ATTRIBUTIONS

Copyright (c) 1998-2002 Networks Associates
Technology, Inc. All Rights Reserved. No part
of this publication may be reproduced,
transmitted, transcribed, stored in a retrieval
system, or translated into any language in any
form or by any means without the written
permission of Networks Associates Technology,
Inc., or its suppliers or affiliate companies.
To obtain this permission, write to the
attention of the Network Associates legal
department at:
3965 Freedom Circle,
Santa Clara,
California
95054,

Or call +1-972-308-9960.

TRADEMARKS

Active Security, Active Security (in
Katakana),
ActiveHelp, ActiveShield, AntiVirus Anyware
and
design, Bomb Shelter, Certified Network
Expert,
Clean-Up, CleanUp Wizard, CNX, CNX
Certification Certified Network Expert and
design, CyberCop, CyberCop (in Katakana),
CyberMedia, CyberMedia UnInstaller, Design
(stylized N), Disk Minder, Distributed Sniffer
System, Distributed Sniffer System (in
Katakana), Dr Solomons, Dr Solomons label,
Enterprise SecureCast, Enterprise SecureCast
(in Katakana), EZ SetUp, First Aid,
ForceField,
GMT, GroupShield, GroupShield (in Katakana),
Guard Dog, HelpDesk, HomeGuard, Hunter, ISDN
TEL/SCOPE, LANGuru, LANGuru (in Katakana), M
and design, Magic Solutions, Magic Solutions
(in Katakana), Magic University, MagicSpy,
MagicTree, McAfee, McAfee (in Katakana),
McAfee
and design, MultiMedia Cloaking, Net Tools,
Net
Tools (in Katakana), NetCrypto, NetOctupus,
NetScan, NetShield, NetStalker, Network
Associates, NetXray, NotesGuard, Nuts & Bolts,
Oil Change, PC Medic, PC Medic 97, PCNotary,
PGP, PGP (Pretty Good Privacy), Pretty Good
Privacy, PrimeSupport, Recoverkey, Recoverkey
International, Registry Wizard, ReportMagic,
RingFence, Router PM, SalesMagic, SecureCast,
Service Level Manager, ServiceMagic,
SmartDesk,
Sniffer, Sniffer (in Hangul), SniffMaster,
SniffMaster (in Hangul), SniffMaster (in
Katakana), SniffNet, Stalker, SupportMagic,
TIS, TMEG, TNV, TVD, TNS, Total Network
Security, Total Network Visibility, Total
Network Visibility (in Katakana), Total
Service
Desk, Total Virus Defense, Trusted Mail,
UnInstaller, Virex, Virus Forum, ViruScan,
VirusScan, WebScan, WebShield, WebShield (in
Katakana), WebSniffer, WebStalker, WebWall,
Whos Watching Your Network, WinGauge, Your
E-Business Defender, ZAC 2000, Zip Manager are
registered trademarks of Network Associates,
Inc. and/or its affiliates in the US and/or
other countries.  All other registered and
unregistered trademarks in this document are
the sole property of their respective owners.


LICENSE AGREEMENT

NOTICE TO ALL USERS: CAREFULLY READ THE
APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO
THE LICENSE YOU PURCHASED, WHICH SETS FORTH
THE
GENERAL TERMS AND CONDITIONS FOR THE USE OF
THE
LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH
TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE
CONSULT THE SALES AND OTHER RELATED LICENSE
GRANT OR PURCHASE ORDER DOCUMENTS THAT
ACCOMPANIES YOUR SOFTWARE PACKAGING OR THAT YOU
HAVE RECEIVED SEPARATELY AS PART OF THE
PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT
CD, OR A FILE AVAILABLE ON THE WEB SITE FROM
WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF
YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH
IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE.
IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO
NETWORK ASSOCIATES, INC. OR THE PLACE OF
PURCHASE FOR A FULL REFUND.
