  Release Notes for McAfee(R) Anti-Virus Engine
          for NetShield(R) for NetWare
                 Version 4.4.00
     Copyright (C) 2004 Networks Associates 
                Technology, Inc.
              All Rights Reserved


=====================================================

- DAT Version:       4415
- Engine Version:    4400

=====================================================


Thank you for using McAfee anti-virus software.
This file contains important information
regarding this release. We strongly recommend
that you read the entire document.

Please ensure that you update the DAT files on your 
computer to the latest version.

    IMPORTANT:
    McAfee does not support automatic upgrading of a
    pre-release version of the software. To upgrade
    to a production release of the software, you
    must first uninstall the existing version of the
    software.


_____________________________________________________
WHAT'S IN THIS FILE

-   New Features
-   System Requirements
-   Installation
   -  List of Files 
-   Known Issues
-   Documentation
-   Engine End-of-Life (EOL) Program
   -   The Problem
   -   The Solution
   -   The Engine End-Of-Life Program
-   Participating in the McAfee Beta Program
-   Contact Information
-   Copyright & Trademark Attributions
-   License & Patent Information


_____________________________________________________
NEW FEATURES

-   Includes technology to combat the latest and 
    future threats.

-   Improved detection and cleaning.

-   Support for many more Packed Executable formats 
    in which known malware is often re-packaged 
    for obfuscation purposes.

-   Specific detection and reporting of compressed 
    files.

-   Enhancements to the emergency DAT file (EXTRA.DAT)
    structure allowing a larger DAT file size.

-   Enhancements to enable scanning of non-standard 
    ZIP archives.


_______________________________________________
SYSTEM REQUIREMENTS

This software installs and runs on a computer
equipped with these versions of NetWare:

-  Version 4.11 with the latest Service Pack.

-  Versions 4.2, 5.0 and 5.1 with McAfee
   Netshield for NetWare 4.5 and 4.6.

-  Versions 6.0 and 6.5 with McAfee Netshield 
   for NetWare 4.6 only.


_______________________________________________
INSTALLATION

1. Download the NetWare .ZIP file from our
   web site or from other electronic services.

2. Create a temporary folder on your hard disk,
   then extract the new files from their .ZIP
   archive.

3. Log on to the NetWare server that hosts the
   NetShield NLM you want to unload, either at
   the server itself, or from elsewhere on your
   network.

4. At the NetWare console prompt, enter the
   following command:

   unload netshld

   The NetShield software begins to shut down.

5. Copy the extracted files from the temporary
   directory to the NetShield directory on your
   NetWare server. If you installed the
   NetShield NetWare server application in its
   default location, copy the files to:

   SYS:MCAFEE\NETSHLD

6. Restart the NetShield NetWare server by
   entering the following command at the
   NetWare console prompt:

   netshld

   The NetShield NetWare application uses the
   new files immediately.


LIST OF FILES

The Engine and DAT file update package includes
the following files, all of which should be
installed into the NetShield NetWare
installation directory on your NetWare server.

   MCSCAN32.NLM         Scanning engine.

   CLEAN.DAT            Virus definition file.
   NAMES.DAT            Virus definition file.
   SCAN.DAT             Virus definition file.

   CONTACT.TXT          Contact information.
   README.TXT           This file.
   LICENSE.TXT          License information.
   SIGNLIC.TXT          Third-party license information.

   PACKING.LST          List of file checksums.
   VALIDATE.EXE         File checksum utility.


REMOVING THE SOFTWARE

We recommend that you do not remove our files because
your server will not be protected. However, in order 
to update an engine, follow these steps:

1. Type  unload netshld  at the server console.

2. From a client machine, map a drive to SYS: drive 
   of the NetWare server.

3. Change directory to the <drive>:\mcafee\netshld 
   directory (or wherever NetShield was installed). 

4. Copy the old mcscan32.nlm and DAT files to another 
   directory.
   
5. Copy the new mcscan32.nlm and DAT files into 
   <drive>: \mcafee\netshld directory.
 
6. Type  load netshld  at the server console.


_____________________________________________________
KNOWN ISSUES

1. Abends on NetWare 5.1 servers with Support
   Pack 3

   Occasionally, NetWare 5.1 servers abend
   after NetWare 5.1 Support Pack 3 is applied.
   The problem in that support pack will be
   addressed in NetWare 5.1 Support Pack 4.

   The abend occurs in the tolower() function
   at LIBC.NLM + 00000464h.

   MOVZX   ECX,byte ptr [EDX-2C4BDF97]=?

   For more details, see the thread "Bugs in
   NKS (NW 5.1+SP3)" in the novell.devsup.nks
   newsgroup at:

      news://developer-forums.novell.com


2. Module MCSCAN32.NLM cannot load

   NetWare 4.11 users might see the following
   error when attempting to load Netshield.

      Error : Loader cannot find public symbol: closedir_510
      Error : Load file referenced undefined public variable.
      Module MCSCAN32.NLM NOT loaded.

   This can be fixed by loading CLIBAUX.NLM
   before the Engine NLM (mcscan32.nlm).

   To do this, add an extra line to
   netshld.ncf:

   1. At the system console, type:
      load edit sys:\system\netshld.ncf

   2. Add the following line before the line
      "load SYS:MCAFEE\NETSHLD\netshld.nlm":
      load clibaux.nlm

   3. Save the file, and close edit.

   4. At the system console, type:
      netshld


3. Some mail clients (such as PINE, Eudora,
   Netscape, and Pegasus Mail) use a file
   structure similar to concatenated MIME as
   their mailbox format. These clients also
   tend to access the files frequently. Some
   McAfee desktop products allow the user to
   enable the scanning of MIME files. Depending
   on the size of the mailbox, on-access
   scanning of these files could take a
   considerable time. Therefore we recommend
   that these files are excluded from on-access
   scanning, if applicable.


___________________________________________________
DOCUMENTATION

Documentation is included on the product CD                      
and/or is available with a valid grant number
from the McAfee download site:

      https://secure.nai.com/us/forms/downloads/upgrades/login.asp

   NOTE:
   Electronic copies of all product manuals are
   saved as Adobe Acrobat .PDF files. The
   product CD includes the latest version of
   Acrobat Reader, or you can download any
   version from the Adobe web site:

      www.adobe.com/prodindex/acrobat/readstep.html


-  A LICENSE Agreement.
   The terms under which you may use the
   product. Read it carefully. If you install
   the product, you agree to the license
   terms.

-  This README file.

-  A CONTACT file.
   Contact information for McAfee services and
   resources: technical support, customer service,
   AVERT, beta program, and training. It also
   includes a list of phone numbers, street
   addresses, web addresses, e-mail addresses, and
   fax numbers for the company's worldwide
   offices.


__________________________________________________________
ENGINE END-OF-LIFE (EOL) PROGRAM

Important information from AVERT and the McAfee
Engine Development Team:

   Is your engine up-to-date? - Anti-virus is only
   as good as its last update!

-  Updating your DAT files regularly is essential
   and a MUST!

-  Updating your engine is just as important and a
   MUST.

-  An old engine WILL NOT catch some of todays
   threats.

-  Sometimes architectural changes to the way that
   the DAT files and virus-scanning engine work
   together make it critical for you to update your
   engine.

AVERT says it makes sense to have as part of your
Security Policy Program, an Engine Update process to
take advantage of the latest technology and stay
protected!


THE PROBLEM

Between 250 and 400 new detections are added to the
DAT files monthly by AVERT. If you are not
up-to-date, you are vulnerable to any one of them
that gets a foothold in the field (also known as "in
the wild").

McAfee AVERT(TM) releases regular DAT files,
ensuring that full protection is added to all McAfee
products. The DAT files contain the information
required to detect and remove threats - what to look
for and where to look for it.

However, todays threats are evolving almost on a
daily basis. Software providers continue to make
changes to operating systems and applications that
can change the way a program acts or works, and a
virus-scanning program may not understand the
changes.


THE SOLUTION

Taking this into account, McAfee regularly
updates its virus-scanning engine used by ALL McAfee
virus-detection and removal products. The
engine understands all the different structures in
which a virus could lurk - EXE files, Microsoft
Office files, Linux files, and so on. Occasionally
these changes require us to make significant
architectural changes to the engine as well as the
DAT files.

AVERT strongly recommends that users of ALL McAfee
anti-virus products update the engines in the 
products they have deployed as part of a
sound security best-practices program.

To check your engine version, right-click the McAfee
shield in the system tray, select "About" and look
at the "Scan engine" version number. If you need to
update, you should update your scan engine
immediately from our download site.


THE ENGINE END-OF-LIFE PROGRAM

Because of the evolving malicious code threat, users
should update their engines as soon as possible upon
the release of McAfees latest scanning technology.

When a new engine is released, the existing engine
will begin its countdown to its end of life, and
will therefore no longer be supported by McAfee.

Information on the McAfee Engine End-of-Life policy 
and a full list of supported engines and products 
can be found at:

       http://www.mcafeesecurity.com/us/products/mcafee/end_of_life.htm


__________________________________________________________
PARTICIPATING IN THE MCAFEE BETA PROGRAM

To download new beta software or to read about the
latest beta information, visit the McAfee beta web
site located at:

       http://www.mcafeesecurity.com/us/downloads/beta/mcafeebetahome.htm

To submit beta feedback on any McAfee product, send
e-mail to:

       mcafee_beta@mcafee.com

McAfee is devoted to providing solutions based on
your input.


__________________________________________________________
CONTACT INFORMATION

Technical Support
    Home Page
       http://www.mcafeesecurity.com/us/support/

    KnowledgeBase Search
       https://knowledgemap.mcafeesecurity.com/phpclient/homepage.aspx

    PrimeSupport Service Portal
       https://mysupport.mcafeesecurity.com

    Login credentials required.


McAfee Beta Program
    Beta Web Site
       http://www.mcafeesecurity.com/us/downloads/beta/mcafeebetahome.htm


Security Headquarters:  AVERT
(Anti-Virus & Vulnerability Emergency Response
Team)
    Home Page
       http://www.mcafeesecurity.com/us/security/home.asp

    Virus Information Library
       http://vil.mcafeesecurity.com/

    AVERT WebImmune & Submit a Virus Sample
       https://www.webimmune.net/default.asp

    AVERT DAT Notification Service
       http://vil.mcafeesecurity.com/vil/join-DAT-list.asp


Download Site
    Home Page
       http://www.mcafeesecurity.com/us/downloads/

    DAT File and Engine Updates
       http://www.mcafeesecurity.com/us/downloads/updates/

       ftp://ftp.mcafeesecurity.com/pub/antivirus/datfiles/4.x

    Product Upgrades
       https://secure.nai.com/us/forms/downloads/upgrades/login.asp

    Valid grant number required.
    Contact Customer Service


Training
    On-Site Training
       http://www.mcafeesecurity.com/us/services/security/home.htm
    McAfee University
       http://www.mcafeesecurity.com/us/services/education/mcafee/university.htm


Customer Service
    US, Canada, and Latin America toll-free:
   Phone:     +1-888-VIRUS NO or +1-888-847-8766
              Monday-Friday, 8am-8pm, Central Time

   E-mail:    https://secure.mcafeesecurity.com/us/forms/support/request_form.asp

   Web:       http://www.mcafee.com/us/default.asp
              http://www.mcafeesecurity.com/us/support/default.asp

For additional contact information (including
addresses and toll-free numbers for worldwide
offices), see the CONTACT file that accompanied your
original product release.


_____________________________________________________
COPYRIGHT AND TRADEMARK ATTRIBUTIONS

Copyright (C) 2004 Networks Associates Technology,
Inc. All Rights Reserved. No part of this
publication may be reproduced, transmitted,
transcribed, stored in a retrieval system, or
translated into any language in any form orbyany
means without the written permission of Networks
Associates Technology, Inc., or its suppliers or
affiliate companies. To obtain this permission,
write to the attention of the McAfee department at:
5000 Headquarters Drive, Plano, Texas 75024, or call
+1-972-963-8000.


TRADEMARKS

Active Firewall, Active Security, ActiveSecurity
(and in Katakana), ActiveShield, AntiVirus Anyware
and design, Clean-Up, Design (Stylized E), Design
(Stylized N), Entercept, Enterprise SecureCast,
Enterprise SecureCast (and in Katakana), ePolicy
Orchestrator,  First Aid, ForceField, GMT,
GroupShield, GroupShield (and in Katakana), Guard
Dog,  HomeGuard, Hunter, IntruShield, Intrusion
Prevention Through Innovation, M and Design, McAfee,
McAfee (and in Katakana), McAfee and Design,
McAfee.com, McAfee VirusScan, NA Network Associates,
Net Tools, Net Tools (and in Katakana), NetCrypto,
NetOctopus, NetScan, NetShield, Network Associates,
Network Associates Colliseum, NetXray, NotesGuard,
Nuts & Bolts, Oil Change, PC Medic, PCNotary,
PrimeSupport, RingFence, Router PM, SecureCast,
SecureSelect, SpamKiller, Stalker, ThreatScan, TIS,
TMEG, Total Virus Defense, Trusted Mail,
Uninstaller, Virex, Virus Forum, Viruscan,
Virusscan, Virusscan (And In Katakana), Webscan,
Webshield, Webshield (And In Katakana), Webstalker,
WebWall, Whats The State Of Your IDS?, Whos
Watching Your Network, Your E-Business Defender,
Your Network. Our Business. are registered
trademarks or trademarks of McAfee, Inc. and/or its
affiliates in the US and/or other countries. Red in
connection with security is distinctive of McAfee(R)
brand products.  All other registered and
unregistered trademarks herein are the sole property
of their respective owners.



_____________________________________________________
LICENSE & PATENT INFORMATION

LICENSE AGREEMENT

NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE
LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU
PURCHASED, WHICH SETS FORTH THE GENERAL TERMS AND
CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF
YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE
ACQUIRED, PLEASE CONSULT THE SALES AND OTHER RELATED
LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT
ACCOMPANIES YOUR SOFTWARE PACKAGING OR THAT YOU HAVE
RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A
BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE
AVAILABLE ON THE WEB SITE FROM WHICH YOU DOWNLOADED
THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF
THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL
THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE
PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A
FULL REFUND.


LICENSE ATTRIBUTIONS

This product includes or may include:
*Software developed by the OpenSSL Project for use
in the OpenSSL Toolkit (http://www.openssl.org/).
*Cryptographic software written by Eric A. Young
and software written by Tim J. Hudson. *Some
software programs that are licensed (or sublicensed)
to the user under the GNU General Public License
(GPL) or other similar Free Software licenses which,
among other rights, permit the user to copy, modify
and redistribute certain programs, or portions
thereof, and have access to the source code. The GPL
requires that for any software covered under the GPL
which is distributed to someone in an executable
binary format, that the source code also be made
available to those users. For any such software
covered under the GPL, the source code is made
available on this CD. If any Free Software licenses
require that McAfee provide rights to
use, copy or modify a software program that are
broader than the rights granted in this agreement,
then such rights shall take precedence over the
rights and restrictions herein.  *Software
originally written by Henry Spencer, Copyright 1992,
1993, 1994, 1997 Henry Spencer.  *Software
originally written by Robert Nordier, Copyright
(C)1996-7 Robert Nordier.  *Software written by
Douglas W. Sauder.  *Software developed by the
Apache Software Foundation (http://www.apache.org/).
A copy of the license agreement for this software
can be found at
www.apache.org/licenses/LICENSE-2.0.txt.
*International Components for Unicode ("ICU")
Copyright (C)1995-2002 International Business
Machines Corporation and others.  *Software
developed by CrystalClear Software, Inc., Copyright
(C)2000 CrystalClear Software, Inc. *FEAD(R)
Optimizer(R)  technology, Copyright Netopsystems AG,
Berlin, Germany. *Outside In(R)  Viewer Technology
(C)1992-2001 Stellent Chicago, Inc. and/or Outside
In(R) HTML Export, (C)2001 Stellent Chicago, Inc.
*Software copyrighted by Thai Open Source Software
Center Ltd. and Clark Cooper, (C)1998, 1999, 2000.
*Software copyrighted by Expat maintainers.
*Software copyrighted by The Regents of the
University of California, (C)1989.  *Software
copyrighted by Gunnar Ritter.  *Software
copyrighted by Sun Microsystems(R), Inc. (C)2003.
*Software copyrighted by Gisle Aas. (C)1995-2003.
*Software copyrighted by Michael A. Chase,
(C)1999-2000.  *Software copyrighted by Neil
Winton, (C)1995-1996.  *Software copyrighted by
RSA Data Security, Inc., (C)1990-1992.  *Software
copyrighted by Sean M. Burke, (C)1999, 2000.
*Software copyrighted by Martijn Koster, (C)1995.
*Software copyrighted by Brad Appleton,
(C)1996-1999.  *Software copyrighted by Michael G.
Schwern, (C)2001.  *Software copyrighted by Graham
Barr, (C)1998.  *Software copyrighted by Larry
Wall and Clark Cooper, (C)1998-2000.  *Software
copyrighted by Frodo Looijaard, (C)1997.
*Software copyrighted by the Python Software
Foundation, Copyright (C)2001, 2002, 2003. A copy
of the license agreement for this software can be
found at www.python.org.  *Software copyrighted by
Beman Dawes, (C)1994-1999, 2002.  *Software
written by Andrew Lumsdaine, Lie-Quan Lee, Jeremy G.
Siek (C)1997-2000 University of Notre Dame.
*Software copyrighted by Simone Bordet & Marco
Cravero, (C)2002.  *Software copyrighted by
Stephen Purcell, (C)2001.  *Software developed by
the Indiana University Extreme! Lab
http://www.extreme.indiana.edu/).  *Software
copyrighted by International Business Machines
Corporation and others, (C)1995-2003.  *Software
developed by the University of California, Berkeley
and its contributors.  *Software developed by Ralf
S. Engelschall <rse@engelschall.com> for use in the
mod_ssl project (http://www.modssl.org/).
*Software copyrighted by Kevlin Henney,
(C)2000-2002.  *Software copyrighted by Peter
Dimov and Multi Media Ltd. (C)2001, 2002.
*Software copyrighted by David Abrahams, (C)2001,
2002. See http://www.boost.org/libs/bind/ bind.html
for documentation.  *Software copyrighted by Steve
Cleary, Beman Dawes, Howard Hinnant & John Maddock,
(C)2000.  *Software copyrighted by Boost.org,
(C)1999-2002.  *Software copyrighted by Nicolai M.
Josuttis, (C)1999.  *Software copyrighted by
Jeremy Siek, (C)1999-2001.  *Software copyrighted
by Daryle Walker, (C)2001.  *Software copyrighted
by Chuck Allison and Jeremy Siek, (C)2001, 2002.
*Software copyrighted by Samuel Krempp, (C)2001.
See http://www.boost.org for updates, documentation,
and revision history.  *Software copyrighted by
Doug Gregor (gregod@cs.rpi.edu), (C)2001, 2002.
*Software copyrighted by Cadenza New Zealand Ltd.,
(C)2000.  *Software copyrighted by Jens Maurer,
(C)2000, 2001.  *Software copyrighted by Jaakko
Jrvi (jaakko.jarvi@cs.utu.fi), (C)1999, 2000.
*Software copyrighted by Ronald Garcia, (C)2002.
*Software copyrighted by David Abrahams, Jeremy
Siek, and Daryle Walker, (C)1999-2001.  *Software
copyrighted by Stephen Cleary (shammah@voyager.net),
(C)2000.  *Software copyrighted by Housemarque Oy
<http:// www.housemarque.com>,(C)2001.  *Software
copyrighted by Paul Moore, (C)1999.  *Software
copyrighted by Dr. John Maddock, (C)1998-2002.
*Software copyrighted by Greg Colvin and Beman
Dawes, (C)1998, 1999.  *Software copyrighted by
Peter Dimov, (C)2001, 2002.  *Software copyrighted
by Jeremy Siek and John R. Bandela, (C)2001.
*Software copyrighted by Joerg Walter and Mathias
Koch, (C)2000-2002.


PATENT INFORMATION

Protected by US Patents 6,029,256; 6,496,875;
6,668,289.


DBN 013-EN 

Deriv. V3.1.1 


