logo

Documentation & Downloads

Browse your product documentation including release notes and installers

Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Announcing General Availability of CB Protection Windows Agent v8.1.6

Announcing General Availability of CB Protection Windows Agent v8.1.6

I have the pleasure of announcing the release of the CB Protection 8.1.6 Windows Agent.

This release adds the following improvements and enhancements:

The 8.1.6 Windows Agent is considered a maintenance release with a focus on corrective content, security and Windows 10 Update Performance

Our research into Windows 10 update performance showed that we had a long-time regression that went back to our 8.0 release.   In prior versions of 8.x, the agent would unnecessarily analyze files repeatedly during file opens and file cleanups. File cleanup is an OS command that tells us that all of the handles to the file have been closed (e.g. every program/thread/process that could be using the file is done with it).  As a result of this work, in 8.1.6, customers should notice an improvement in performance during Windows Updates. We’ve also added some additional logging and instrumentation to further enhance the collection and tracking of agent performance metrics. This will allow us to collect better data which will enable us to  further improve performance of the Windows agent in future releases.

The following minor changes have been made.

  • Added a TimedOverride.bt9 file that now logs when TimedOverride.exe is launched. This new log file is found in the Bit9\Parity Agent\logs folder.
  • Added a new agent configuration property, "skip_session_enumeration_in_scm". When this setting is enabled in a Citrix/Multi-user environment, user enumeration will be disabled.  This will lead to performance improvements but will break user-based policy determination and will slow the update time of logged-in users at the console. We expect this setting to be used only for very specific environments.
  • Removed the authentication requirement for the dascli ValidateCerts command

Product security is our top priority for CB Protection, and in this release we have included several new enhancements to ensure that our product is prepared to keep you and your endpoints secure. These changes include:

  • Fixed an issue that could allow some files to be launched by msiexec even though they were not approved.
  • Addressed a vulnerability where it was possible to remove CB Protection without disabling Tamper Protection.
  • Fixed an issue where it was possible to execute unapproved .Net Core Console applications when those applications should have been blocked by custom rules.

In addition to the above, we've continued to improve quality by addressing several defects. Additional details can be found in the release notes.

You can download the CB Protection 8.1.6 Windows Agent here.

Thank you,

Larry

Labels (1)
Labels:
Tags (1)
Comments
mshubaly
‎10-24-2019 11:46 AM
‎10-24-2019 11:46 AM

Where can I download the agent from. 

mshubaly
‎10-24-2019 11:53 AM
‎10-24-2019 11:53 AM

Found it, just follow the release notes link

lhowarth
‎10-25-2019 12:43 PM
‎10-25-2019 12:43 PM

@mshubaly Thanks!  I put a link at the bottom in case others want to directly download the file without reviewing the release notes.

-Larry

Article Information
Author:
lhowarth
Creation Date:
‎10-23-2019
Views:
4829
Contributors
logo

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.