  Release Notes for McAfee(R) GroupShield(TM)
         Version 5.2.1 for Lotus Domino
                    Patch 1
     Copyright (C) 2003 Networks Associates
                Technology, Inc.
              All Rights Reserved


=====================================================

Patch Release:    18th November 2003

This release was developed and tested with:

- GroupShield:         5.2.1 for Lotus Domino
- DAT Version:         N/A
- Engine Version:      N/A

Make sure you have installed this version
before using this release.

=====================================================


Thank you for using GroupShield (TM) software.
This file contains important information
regarding this release. We strongly recommend
that you read the entire document

The attached files are provided as is, and with
no warranty either expressed or implied as to
their suitability for any particular use or
purpose. Network Associates, Inc. assumes no
liability for damages incurred either directly
or indirectly as a result of the use of these
files, including but not limited to the loss or
damage of data or systems, loss of business or
revenue, or incidental damages arising from
their use. Patch files should be applied only
on the advice of McAfee Security Technical
Support, and only when you are actually
experiencing the issue being addressed by the
Patch. Patch files should not be proactively
applied in order to prevent potential product
issues. You are responsible for reading and
following all instructions for preparation,
configuration, and installation of Patch files.
Patch files are not a substitute or replacement
for product Service Packs which may be released
by Network Associates, Inc. It is a violation
of your software license agreement to
distribute or share these files with any other
person or entity without written permission
from Network Associates, Inc. Further, posting
of McAfee Security Patch files to publicly
available Internet sites is prohibited. Network
Associates, Inc. reserves the right to refuse
distribution of Patch files to any company or
person guilty of unlawful distribution of
McAfee software products. Questions or issues
with McAfee Patch files should be directed to
McAfee Security Technical Support.


_____________________________________________________
WHAT'S IN THIS FILE

-   About This Release
   -   Purpose
   -   Resolved Issues
   -   Files Included with This Release
-   Installation
   -   Installation Requirements
   -   Installation Steps
   -   Testing Your Installation
   -   Removing This Patch
-   Contacting McAfee Security and Network
    Associates
-   Copyright, Trademark Attributions &
    Patents
   -   Trademarks
   -   License Agreement and Attributions

____________________________________________________
ABOUT THIS RELEASE


PURPOSE

This Patch addresses the issues shown in the
RESOLVED ISSUES section below.


This Patch is for use with GroupShield Domino
5.2.1. The Patch comprises of one compressed
archive file

      GSD521P1EN.ZIP

This Patch also includes one file that replaces
the file GSD521.NAP on the McAfee ePolicy
Orchestrator server. This NAP file is the
interface between the ePO server and
GroupShield for Lotus Domino software


RESOLVED ISSUES

1.  An e-mail message that was already scanned
    and had a valid stamp was not being scanned
    again down-stream when banned content rules
    were set on the down-stream server.

2.  Releasing quarantined items from the
    Quarantine database. If multiple items were
    selected, an error message: "NSFNOTEUPDATE
    0 0ID Field!" was displayed. This Patch
    resolves this issue for any new quarantined
    items, but existing items will still
    display this error message.

3.  In certain circumstances, when scanning
    infected calendar items sent to an SMTP
    mail account, a spurious Non Delivery
    Report (NDR) would be generated.

4.  When a meeting request is sent from a Lotus
    Notes 6.x client to a Lotus Domino 6.x
    server, the infection may not be detected.
    The following variable can be added to
    NOTES.INI to allow for this type of
    detection.

    GSD_ADDITIONAL_SENT=1

5.  Where mail that is quarantined under the
    'Encrypted' exception list is moved to the
    'Denial of Service' exception list after
    the quarantined items are rescanned.  This
    Patch also resolves an issue where the
    'Exception Type' may be displayed as a nine
    digit number after Encrypted items are
    rescanned.

6.  In some circumstances, when an encrypted
    email was received, an alert was generated
    even when the Mailbox scanner for
    GroupShield for Lotus Domino was configured
    to Trust All. This issue is resolved with
    this Patch.

7.  In certain circumstances, the presence of
    3rd party extension manager addins could
    result in duplicate messages being
    received. This Patch incorporates a set of
    rules which, if followed by the 3rd party
    addin, will prevent these duplicate
    messages.

8.  In some circumstances, when Updating from a
    proxy server, the AutoUpdate process would
    not complete.

9.  When GroupShield Domino 5.2.1 and a 3rd
    party extension manager addin coexisted on
    an initial scanning server and a downstream
    server, both running Domino 6.0.x, some
    messages were marked dead on the downstream
    server which could result in dead mail on
    Domino 6.

10. When starting the On-Access scanner on a
    Japanese language version of Microsoft
    Windows NT 4.0 a Domino panic error could
    occur if an email containing specific
    Japanese characters was present in
    MAIL.BOX.

11. After deleting Banned Content Rules from
    the Content Scan Rules view, e-mail
    messages could continue to be blocked until
    GSDCONFIG is unloaded and reloaded.

12. When scanning a database formatted in a
    particular way, an error message saying
    "Unable to extract file from Note" could
    occur.

13. It was not possible to use ePO to configure
    GroupShield Engine updates from the FTP
    site. This option has now been added to the
    NAP file.

14. In some circumstances, when enabling
    Content Scanning using the NAP file the
    rules would disappear from the GroupShield
    database.


FILES INCLUDED WITH THIS PATCH

This Patch consists of a package called
GSD521P1EN.ZIP, which contains the following
files


      GSD521.NAP
      GSDPATCH.EXE
      GSDPATCH1.NSF
      PATCH.INI

_____________________________________________________
INSTALLATION

INSTALLATION REQUIREMENTS



    NOTE:

    This Patch only supports GroupShield for
    Lotus Domino 5.2.1 on Microsoft Windows.
    It does not work with earlier versions of
    GroupShield software.

    To check which version of GroupShield for
    Lotus Domino you have installed, at the
    Domino console, type:

    TELL GSDCONFIG VERSION

    If you have GroupShield for Lotus Domino
    5.2.1 installed, the console will show the
    product version as:

    5.2.xxx.0

    where xxx is a build number (978 or above)
    that will vary depending on whether you
    have any hotfixes applied.

    IMPORTANT:
    This Patch replaces existing database
    design in your GroupShield for Lotus Domino
    data directory, which is located within the
    Lotus Domino Data Directory under GSD5.
    McAfee recommends that you back up your
    existing GroupShield for Lotus Domino
    Configuration database before you install
    this Patch.



INSTALLATION STEPS

McAfee distributes this Patch in a compressed
format to reduce transmission time. To install
this Patch, follow these steps:


1.  Create a temporary directory on your hard
    disk, then copy GSD521P1EN.ZIP to this
    directory.

2.  Use a compression utility such as WinZip or
    PKZip to extract the Patch files from the
    GSD521P1EN.ZIP archive into your temporary
    directory.

3.  Make a backup copy of all databases.

4.  Shut down the Lotus Domino Server.

5.  Run GSDPATCH.EXE

    This will load the Patch Installer.

6.  Click the Patch button to begin the
    installation of the Patch.

7.  Once complete, click the Finish button.


For details about WinZip visit:
http://www.winzip.com/ddchomeb.htm

For details about PKZip visit:
    http://www.pkware.com/shareware


To use the GSD521.NAP file contained within
this Patch, you must have ePolicy Orchestrator
Version 2.5.1 or later already installed on the
computer you intend to update with this Patch.

Use this procedure to over write the existing
McAfee GroupShield Software Package in the ePO
Repository.

1.  Log on to the desired ePolicy Orchestrator
    server.

2.  In the console tree under ePolicy
    Orchestrator |<SERVER>, right-click
    Repository, then select Configure
    Repository. The Software Repository
    Configuration Wizard appears.

3.  Select Add new software to be managed, then
    click Next. The Select a Software Package
    dialog box appears

4.  Select the Software Package (.NAP) file for
    the GroupShield for Lotus Domino product,
    then click Open. The Software Package file
    is uncompressed, then the individual files
    are added to the Repository.

5.  The installation begins. If there is an
    existing version of this NAP file already
    loaded you will be asked to confirm that
    you wish to overwrite the existing file.

6.  When the files are successfully installed,
    a message confirms the installation has
    completed. Any settings previously entered
    for client servers using GroupShield for
    Lotus Domino version will remain unaltered



TESTING YOUR INSTALLATION

You can test the operation of the software by
running the EICAR Standard AntiVirus Test File
on any computer where you have installed the
software. The EICAR Standard AntiVirus Test
File is a combined effort by anti-virus vendors
throughout the world to implement one standard
by which customers can verify their anti-virus
installations.

To test your installation:

1.  Copy the following line into its own file,
    then save the file with the name
    EICAR.COM.

       X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*

    The file size will be approximately 70
    bytes.

2.  Start your anti-virus software and allow it
    to scan the directory that contains
    EICAR.COM.

    When your software scans this file, it will
    report finding the EICAR test file.

3.  Delete the file when you have finished
    testing your installation to avoid alarming
    unsuspecting users.

    IMPORTANT:
    Please note that this file is NOT A VIRUS.


For more information on the EICAR test file,
visit:

       www.eicar.org.



REMOVING THIS PATCH

To remove this Patch from your computer you
will be required to reinstall GroupShield 5.2.1
for Lotus Domino software

    NOTE:
    We recommend that you do NOT remove the
    Patch files from your GroupShield for Lotus
    Domino installation once you install them.
    If you reinstall your GroupShield for Lotus
    Domino 5.2.1 software, we recommend that
    you also reinstall the Patch.



_____________________________________________________
CONTACTING MCAFEE SECURITY & NETWORK
ASSOCIATES

Technical Support
    Home Page
       http://www.networkassociates.com/us/support/

    KnowledgeBase Search
       https://knowledgemap.nai.com/phpclient/homepage.aspx

    PrimeSupport Service Portal
       http://mysupport.nai.com

Login credentials required.


McAfee Security Beta Program
    Beta Web Site
       http://www.networkassociates.com/us/downloads/beta/

    E-mail
       avbeta@nai.com


Security Headquarters -- AVERT (Anti-Virus
Emergency Response Team)
    Home Page
       http://www.networkassociates.com/us/security/home.asp

    Virus Information Library
       http://vil.nai.com

    Submit a Virus Sample  AVERT WebImmune
       https://www.webimmune.net/default.asp

    AVERT DAT Notification Service
       http://vil.nai.com/vil/join-DAT-list.asp


Download Site
    Home Page
       http://www.networkassociates.com/us/downloads/

    DAT File and Engine Updates
       http://www.networkassociates.com/us/downloads/updates/

       ftp://ftp.nai.com/pub/antivirus/datfiles/4.x

    Product Upgrades
       https://secure.nai.com/us/forms/downloads/upgrades/login.asp

Valid grant number required.
Contact Network Associates Customer Service


Training
    McAfee Security University
       http://www.networkassociates.com/us/services/education/mcafee/university.htm



Network Associates Customer Service
    US, Canada, and Latin America toll-free:
   Phone:     +1-888-VIRUS NO or
              +1-888-847-8766
              Monday - Friday, 8 a.m. - 8 p.m.,
              Central Time

   E-mail:    services_corporate_division@nai.com
   Web:       http://www.nai.com/us/index.asp
              http://www.networkassociates.com/us/index.asp


For additional information on contacting
Network Associates and McAfee Security 
including toll-free numbers for other
geographic areas - see the CONTACT file that
accompanied your original product release.



_____________________________________________________
COPYRIGHT, TRADEMARK ATTRIBUTIONS & PATENTS

Copyright (C) 2003 Networks Associates
Technology, Inc. All Rights Reserved. No part
of this publication may be reproduced,
transmitted, transcribed, stored in a retrieval
system, or translated into any language in any
form or by any means without the written
permission of Networks Associates Technology,
Inc., or its suppliers or affiliate companies.
To obtain this permission, write to the
attention of the Network Associates legal
department at:
5000 Headquarters Drive, Plano, Texas 75024, or
call +1-972- 963-8000.


TRADEMARKS

Active Firewall, Active Security, Active
Security (in Katakana), ActiveHelp,
ActiveShield, AntiVirus Anyware and design,
Appera, AVERT, Bomb Shelter, Certified Network
Expert, Clean-Up, CleanUp Wizard, ClickNet,
CNX, CNX Certification Certified Network Expert
and design, Covert, Design (stylized N), Disk
Minder, Distributed Sniffer System, Distributed
Sniffer System (in Katakana), Dr Solomons, Dr
Solomons label, E and Design, Entercept,
Enterprise SecureCast, Enterprise SecureCast
(in Katakana), ePolicy Orchestrator, Event
Orchestrator (in Katakana), EZ SetUp, First
Aid, ForceField, GMT, GroupShield, GroupShield
(in Katakana), Guard Dog, HelpDesk, HelpDesk
IQ, HomeGuard, Hunter, Impermia, InfiniStream,
Intrusion Prevention Through Innovation,
IntruShield, IntruVert Networks, LANGuru,
LANGuru (in Katakana), M and design, Magic
Solutions, Magic Solutions (in Katakana), Magic
University, MagicSpy, MagicTree, McAfee, McAfee
(in Katakana), McAfee and design, McAfee.com,
MultiMedia Cloaking, NA Network Associates, Net
Tools, Net Tools (in Katakana), NetAsyst,
NetCrypto, NetOctopus, NetScan, NetShield,
NetStalker, Network Associates, Network
Performance Orchestrator, NetXray, NotesGuard,
nPO, Nuts & Bolts, Oil Change, PC Medic,
PCNotary, PortalShield, Powered by
SpamAssassin, PrimeSupport, Recoverkey,
Recoverkey  International, Registry Wizard,
Remote Desktop, ReportMagic, RingFence, Router
PM, Safe & Sound, SalesMagic, SecureCast,
SecureSelect, SecurityShield, Service Level
Manager, ServiceMagic, SmartDesk, Sniffer,
Sniffer (in Hangul), SpamKiller, SpamAssassin,
Stalker, SupportMagic, ThreatScan, TIS, TMEG,
Total Network Security, Total Network
Visibility, Total Network Visibility (in
Katakana), Total Service Desk, Total Virus
Defense, Trusted Mail, UnInstaller, VIDS,
Virex, Virus Forum, ViruScan, VirusScan,
WebScan, WebShield, WebShield (in Katakana),
WebSniffer, WebStalker, WebWall, What's The
State Of Your IDS?, Whos Watching Your
Network, WinGauge, Your E-Business Defender,
ZAC 2000, Zip Manager are registered trademarks
or trademarks of Network Associates, Inc.
and/or its affiliates in the US and/or other
countries. Sniffer(R) brand products are made
only by Network Associates, Inc. All other
registered and unregistered trademarks herein
are the sole property of their respective
owners.


LICENSE INFORMATION

License Agreement

NOTICE TO ALL USERS: CAREFULLY READ THE
APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO
THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE
GENERAL TERMS AND CONDITIONS FOR THE USE OF THE
LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH
TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE
CONSULT THE SALES AND OTHER RELATED LICENSE
GRANT OR PURCHASE ORDER DOCUMENTS THAT
ACCOMPANIES YOUR SOFTWARE PACKAGING OR THAT YOU
HAVE RECEIVED SEPARATELY AS PART OF THE
PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT
CD, OR A FILE AVAILABLE ON THE WEB SITE FROM
WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF
YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH
IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE.
IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO
NETWORK ASSOCIATES, INC. OR THE PLACE OF
PURCHASE FOR A FULL REFUND.


Attributions

This product includes or may include:

-   Software developed by the OpenSSL Project
    for use in the OpenSSL Toolkit
    (http://www.openssl.org/).

-   Cryptographic software written by Eric
    Young and software written by Tim J.
    Hudson.

-   Some software programs that are licensed
    (or sublicensed) to the user under the GNU
    General Public License (GPL) or other
    similar Free Software licenses which, among
    other rights, permit the user to copy,
    modify and redistribute certain programs,
    or portions thereof, and have access to the
    source code.  The GPL requires that for any
    software covered under the GPL which is
    distributed to someone in an executable
    binary format, that the source code also be
    made available to those users.  For any
    such software covered under the GPL, the
    source code is made available on this CD.
    If any Free Software licenses require that
    Network Associates provide rights to use,
    copy or modify a software program that are
    broader than the rights granted in this
    agreement, then such rights shall take
    precedence over the rights and restrictions
    herein.

-   Software originally written by Henry
    Spencer, Copyright 1992, 1993, 1994, 1997
    Henry Spencer.

-   Software originally written by Robert
    Nordier, Copyright (C) 1996-7 Robert
    Nordier. All rights reserved.

-   Software written by Douglas W. Sauder.

-   Software developed by the Apache Software
    Foundation (http://www.apache.org/).

-   International Components for Unicode
    ("ICU") Copyright (C) 1995-2002
    International Business Machines Corporation
    and others. All rights reserved.

-   Software developed by CrystalClear
    Software, Inc., Copyright (C) 2000
    CrystalClear Software, Inc.

-   FEAD(R) Optimizer(R) technology, Copyright
    Netopsystems AG, Berlin, Germany.


V2.3.0
