------------------------------------------------ Gauntlet Firewall 5.5 for Unix Patches Directory ------------------------------------------------ Download these patches by using FTP. To ensure the most reliable transfer be sure to configure your client to perform a binary download. The patches below consist of Bourne Shell scripts that will extract the appropriate binaries for your Operating System. The explicit instructions can be found at http://www.tis.com/support/patch55.html File Patch Level Comments -------------------------------------------------------------------------------- cluster.HPUX.patch Patchlevel 1 HTTP: Increases performance November 8, 1999 and number of concurrent connections. Improves mem- ory handling. Resolves Java ActiveX/Javascript corrup- tion. Removes logging of passwords. Resolves Cold- Fusion corrpution and issues with POST. Resolves problem when logging destinations. Fixes unknown hosts error message and problem with URL redirections. FTP: Increases performance and number of concurrent connections. Authentication: Corrects issues with CRYPOTCard, SNK, and RADIUS-CHAP. Resolves double authentication for SecurID. Patchlevel 2 Addresses problems with display December 14, 1999 and performance when using http proxy transparently. Updated local scanning agent. Handling of HTTP 1.1. Prevents ftp-pdk from coring on null data buffer. Patchlevel 3 HTTP: Resolves problems when March 30, 2000 client passes through Net- scape Proxy Server 3.5. Now limits username/password length. Fixes possible memory corruption on failed authen- tication. Adds username to destination log messages. FTP: Removes listening port after data port acceptance. Data IP address now matches control connection. Removes password logging. Patchlevel 4 Fixes problem with permissions April 17, 2000 on AV DAT files. cluster.SOLARIS.patch Patchlevel 1 HTTP: Increases performance November 8, 1999 and number of concurrent connections. Improves mem- ory handling. Resolves Java ActiveX/Javascript corrup- tion. Removes logging of passwords. Resolves Cold- Fusion corrpution and issues with POST. Resolves problem when logging destinations. Fixes unknown hosts error message and problem with URL redirections. FTP: Increases performance and number of concurrent connections. Authentication: Corrects issues with CRYPOTCard, SNK, and RADIUS-CHAP. Resolves double authentication for SecurID. Patchlevel 2 Addresses problems with display December 14, 1999 and performance when using http proxy transparently. Updated local scanning agent. Handling of HTTP 1.1. Prevents ftp-pdk from coring on null data buffer. Patchlevel 3 HTTP: Resolves problems when March 30, 2000 client passes through Net- scape Proxy Server 3.5. Now limits username/password length. Fixes possible memory corruption on failed authen- tication. Adds username to destination log messages. FTP: Removes listening port after data port acceptance. Data IP address now matches control connection. Removes password logging. Patchlevel 4 Fixes problem with permissions April 17, 2000 on AV DAT files. cyber.patch Patchlevel 1 Fixes DOS vulnerability May 21, 2000 to HTTP proxy when CyberPatrol is enabled. MANDATORY PATCH espmrpt.patch Patchlevel 1 Fixes coring on large messages May 10, 2000 files and lines longer than 160 characters. Now reports correct $TOP integer for smap. kernel.HPUX.patch Patchlevel 1 Fixes NAT allocation over- November 8, 1999 run. kernel.SOLARIS.patch Patchlevel 1 Fixes NAT allocation over- November 8, 1999 run. Patchlevel 2 Fixes kernel panic during Not Released save and apply. Patchlevel 3 Logging of unserved ports March 28, 2000 now reports correct dest- ination address. ldapauth.patch Patchlevel 1 Fixes double authentication May 3, 2000 when using LDAP authentication with HTTP. run-backup.patch Patchlevel 1 Fixes "Backup Level Not March 28, 2000 Configured." error. smap.patch Patchlevel 1 Solves duplicate mail message October 28, 1999 problem. Solves HP specific problem with usernames of 8-byte multiple lengths. Patchlevel 2 Addresses issues with Not Released Content Scanning. Solves smapd failure when % exists in Message-ID. Patchlevel 3 Corrects race condition January 11, 2000 that would cause coring. Patchlevel 4 Handling of dates in subject March 13, 2000 field and handling of partial messages. snmp.patch Patchlevel 1 Fixes port configuration April 17, 2000 via GUI. tui.patch Patchlevel 1 Fixes problem where packet May 3, 2000 screening rules get over- written when VPN configuration is modified.