To stay updated on your favorite discussions, please create an account or log in. Then, click the Bookmark icon to subscribe and receive notifications.

Linux Agent LS64 Changelog (Elements, Business Suite, Standalone)

13»

Comments

  • Samuel_L
    Samuel_L Staff Posts: 127 Cyber Knight

    New Linux Security 64 update has been released (2024-04-10)

    New Linux Security 64 update (version 12.0.489) has been released. This update includes the following changes:

    • LNX-603: Fixed an issue where update installation would fail due to an issue with pinned certificates.
    • LNX-600: Fixed an issue where product activation would fail on systems with certain locales.
    • Miscellaneous bug fixes and improvements.

  • SamiJ
    SamiJ Staff Posts: 8 Junior Protector

    New Linux Security 64 and Elements Agent installers have been released (2024-05-16)

    The new product installers released are as follows:

    • Linux Security 64 Policy Manager installation package version 5.0.10, compatible with Policy Manager Server version 16.0 and above.
    • WithSecure Elements Agent for Servers.

    The updates include the following changes:

    • Changed the activation to use new update server addresses by default. The new installer may download product content from guts2.fsapi.com and api.prd.glb.us-prd.fsapi.com.
      See related announcements for network address changes: https://community.withsecure.com/en/kb/articles/31209-network-addresses-for-withsecure-products
    • Installer file and package names have been changed. This would affect any automated deployment and uninstall.
    • Fixed an issue where product activation would fail if Squid proxy version 6.0 or higher was used.
    • Fixed an issue where invoking activate with --download and --help options would incorrectly mark the product as activated.
    • Miscellaneous bug fixes and improvements.

    Please note that the old installer packages are going to stop working at the end of the year. It is recommended to always use the latest available installer.

    If you have already successfully installed the product there is no need to download or install these package. The product installer is only needed for the initial setup process and does not need to be kept up to date afterwards.

  • SamiJ
    SamiJ Staff Posts: 8 Junior Protector

    New Linux Security 64 update has been released (2024-05-27)


    New FSBG update (version 1.0.841) has been released. FSBG is a component of Linux Security 64. This update includes the following changes:

    • Miscellaneous bug fixes and improvements.

  • AleksandrG
    AleksandrG Staff, Product Leadership Posts: 117 W/ Product Leadership

    Extending the Support for linuxsecurity-2022_5 Pinnable Product Version

    We have decided to extend the support period for the pinnable product version "linuxsecurity-2022_5". The new expiry date for this version is 2024-09-30. Previously, we had committed to supporting this pinnable version until the end of June 2024.

  • Samuel_L
    Samuel_L Staff Posts: 127 Cyber Knight
    edited June 10

    New Linux Security 64 update has been released (2024-06-10)

    New Linux Security 64 update (version 12.0.492) has been released. This update includes the following changes:

    • LNX-366: The Linux agent for Elements Endpoint Detection and Response now supports executing Advanced Response actions on endpoints, once the feature is activated in the profile through the Elements Security Center.
    • LNX-504: Added support for Ubuntu 24.04.
    • LNX-576: Product activation will now issue a warning if the product is installed using an old installer. Using the latest available installer is always recommended.
    • LNX-566: Fixed an issue where resetting the security context for /var/opt/f-secure directory would cause SELinux warnings to be shown.
    • LNX-561: Removed support for TLS 1.0 protocol.
    • LNX-631: Fixed an issue where certain installations had an invalid license configuration.
    • Miscellaneous bug fixes and improvements.

  • Samuel_L
    Samuel_L Staff Posts: 127 Cyber Knight
    edited September 3

    New Linux Security 64 update has been released (2024-09-02)

    New FSBG (version 1.0.907) update has been released. FSBG is a component of Linux Security 64. This update includes the following changes:

    • LNX-566: Fixed an issue where the product could cause SELinux warnings to be shown under certain conditions.
    • LNX-548: Switched the product to use a new online reputation backend service.
    • LNX-612: Fixed an issue where reinstalling the product could fail due to leftover configuration from the previous installation.
    • LNX-578: Fixed an issue where the product could cause excessive CPU usage if Policy Manager was unreachable.
    • LNX-634: Fixed an issue where the product could fail to identify device's IP address and DNS name.
    • LNX-661: Fixed an issue regarding database version data included into diagnostic packages.
    • LNX-299: Removed obsolete BaseGuard update service.
    • LNX-668: Improved support for using the product in environments with limited connectivity.
    • Miscellaneous bug fixes and improvements.

    Connectivity Requirements for WithSecure Linux Security64

    To function correctly, WithSecure Linux Security64 requires access to several online services. The detailed list of these services can be found in the User Guide.

    Required Domains

    WithSecure Linux Security64 needs access to the following domains:

    • a.karma.sc2.fsapi.com
    • api.disobus.fsapi.com
    • api.prd.glb.us-prd.fsapi.com
    • baseguard.doorman.fsapi.com
    • client-api.public.prod.ew1.cosmos-prd.fsapi.com
    • download.fsapi.com
    • guts2.fsapi.com
    • guts2.sp.f-secure.com
    • mind-failover.sc2.fsapi.com
    • poll.push.fsapi.com
    • registrar.push.fsapi.com
    • restmc.mind.sc2.fsapi.com
    • update.sebe.fsapi.com

    The domains ending with f-secure.com will not be necessary after January 1st, 2025.

    Proxy Configuration

    If the WithSecure Linux Security64 is configured to use an HTTP proxy for internet access, it will utilize this proxy for the above connections.

    Offline Mode

    In environments where access to these services is restricted, Linux Security64 can operate in offline mode. To enable offline mode, execute the following command:

    To enable offline mode, execute the following command:

    /opt/f-secure/fsbg/bin/offline-mode enable

    This command disables the product's connections to certain non-essential online services, allowing it to function effectively even with limited network access.

  • Samuel_L
    Samuel_L Staff Posts: 127 Cyber Knight

    New Linux Security 64 update has been released (2024-09-16)

    New Linux Security 64 update (version 12.0.493) has been released. This update includes the following changes:

    • LNX-663: Upgraded license configuration on certain Policy Manager managed installations.
    • Miscellaneous bug fixes and improvements.

  • Samuel_L
    Samuel_L Staff Posts: 127 Cyber Knight

    New Linux Security 64 update has been released (2024-09-25)

    New FSBG update (version 1.0.909) has been released. FSBG is a component of Linux Security 64. This update includes the following changes:

    • LNX-703: The update will automatically enable offline mode during installation if the system cannot access all necessary backend services.
    • Miscellaneous bug fixes and improvements.

  • SamiJ
    SamiJ Staff Posts: 8 Junior Protector
    edited October 2

    New pinnable Linux Security 64 version is available (2024-10-02)

    New pinnable Linux Security 64 version linuxsecurity-2024_2 has been released. Product version pinning enables Linux Security 64 installation to be locked to a specific version of the product. When the product version has been pinned the installation will still receive new engine and definition updates. Linux Security 64 supports product version pinning when managed by Policy Manager.

    Each pinnable product version is supported for a year from the release of the subsequent pinnable version.

    linuxsecurity-2024_2 contains the following components:

    • Linux Security 64 version 12.0.493
    • FSBG version 1.0.909

    To learn more about product version pinning, please refer to the Linux Security 64 manual.

    Connectivity Requirements for WithSecure Linux Security64

    To function correctly, WithSecure Linux Security64 requires access to several online services. The detailed list of these services can be found in the User Guide.

    Required Domains

    WithSecure Linux Security 64 needs access to the following domains:

    • a.karma.sc2.fsapi.com
    • api.disobus.fsapi.com
    • api.prd.glb.us-prd.fsapi.com
    • baseguard.doorman.fsapi.com
    • client-api.public.prod.ew1.cosmos-prd.fsapi.com
    • download.fsapi.com
    • guts2.fsapi.com
    • guts2.sp.f-secure.com
    • mind-failover.sc2.fsapi.com
    • poll.push.fsapi.com
    • registrar.push.fsapi.com
    • restmc.mind.sc2.fsapi.com
    • update.sebe.fsapi.com

    The domains ending with f-secure.com will not be necessary after January 1st, 2025.

    Proxy Configuration

    If the WithSecure Linux Security 64 is configured to use an HTTP proxy for internet access, it will utilize this proxy for the above connections.

    Offline Mode

    In environments where access to these services is restricted, Linux Security 64 can operate in offline mode. To enable offline mode, execute the following command after installing linuxsecurity-2024_2:

    /opt/f-secure/fsbg/bin/offline-mode enable

    This command disables the product's connections to certain non-essential online services, allowing it to function effectively even with limited network access.

    Known Issues

    When upgrading from a previous pinnable product version, the lsctl status command might display the product version status as in-progress for several hours. During this time, you may notice several HTTP 404 errors in the update.log file. These errors are harmless, and the product should eventually reach a state where lsctl status reports the product version as fully applied.

Categories