Release Notes for ctasd
Copyright (C) 1991-2015 CYREN Software, Ltd. www.CYREN.com

Build number: 5.00.0085

 1991-2015 CYREN Software Ltd. All rights reserved.
Protected by U.S. patent # 6,330,590.

This file contains important, last-minute information about
the CYREN Advanced Security daemon (ctasd) for Email Security.
We recommend that you read this file and keep a printed copy
with your CYREN documentation.


For additional information about ctasd, we recommend
reading the following documentation:

-Email Security Overview
-RPD White Paper
-ctasd Product Description
-ctasd Integration Manual
-ctasd Outbound Integration Manual
-ctasd Implementation Manual
-ctasd Outbound Implementation Manual
-Report Classification Mistakes to CYREN
-LocalView Rules Management Manual


General Deployment Guidelines:
------------------------------

Before deploying ctasd, you need to verify that you have
received the following from your representative at CYREN:

- A license key code that is provisioned for all the services
  that you wish to use:
      - Anti-Spam and/or Virus Outbreak Detection and/or Command Anti-Virus
      - Outbound Spam Protection and/or Virus Outbreak Detection and/or Anti-Virus
- A server address [DNS string] to enable your ctasd daemon to
  connect to a CYREN Datacenter.

ctasd is downloaded as a compressed file (ctasd-<version>.tar.gz).
The <version> in the name is used to specify the build
number of ctasd. This will enable you to verify that you are
using the most up-to-date version on your target platform.

After it is uncompressed, the package will include the
following directory structure:

./ctasd-<version>-<platform>/ the root directory including
   this ReleaseNotes ctasd.txt document.
/bin/ directory containing the daemon, the detection engine
   and the configuration file.
/bin/snmp and /bin/snmp/mibs directories for the SNMP
   counters and MIBs.
/docs/ directory containing all the relevant documents
   in pdf format.
/corpus/ directory containing a series of messages to help
   you conduct quick testing and evaluation.
/samples/ directory containing samples scripts for evaluation
   and testing.


Support Contact:
----------------
support@CYREN.com

What's new in build 5.00.0085
-----------------------------
1. Packaged with ctengine 8.00.0122
2. Updated documentation files.

What's new in build 5.00.0084
-----------------------------
1. Packaged with ctengine 8.00.0121.
2. Upgraded AV SDK to version 5.4.22-r2.
3. On-going maintenance - stability issues.

What's new in build 5.00.0083
-----------------------------
1. Packaged with ctengine 8.00.0120.

What's new in build 5.00.0082
-----------------------------
1. Packaged with ctengine 8.00.0119.

What's new in build 5.00.0081
-----------------------------
1. Packaged with ctengine 8.00.0118.

What's new in build 5.00.0080
-----------------------------
1. Packaged with ctengine 8.00.0117.

What's new in build 5.00.0079
-----------------------------
1. Packaged with ctengine 8.00.0116.

What's new in build 5.00.0078
-----------------------------
1. Packaged with ctengine 8.00.0115.
2. Fixed problem with sample perl script on windows hosts.
3. Fixed a bug that prevented deletion of temporary files on windows hosts.

What's new in build 5.00.0077
-----------------------------
1. Packaged with ctengine 8.00.0114.
2. Fixed crash on windows platforms.

What's new in build 5.00.0076
-----------------------------
1. Packaged with ctengine 8.00.0113.
2. Upgrade to Command AV SDK v5.4.17-r3.

What's new in build 5.00.0075
-----------------------------
1. Packaged with ctengine 8.00.0112.
2. Upgraded to Command AV SDK v5.4.16-r2.
3. Added OlympusKey parameter in AV section.
4. Fixed handling of AV definition path configuration option.

What's new in build 5.00.0073
-----------------------------
1. Packaged with ctengine 8.00.0110.

What's new in build 5.00.0071
-----------------------------
1. Packaged with latest ctengine 8.00.0108.
2. Add missing colon in connstring when started as windows service

What's new in build 5.00.0070
-----------------------------
1. Packaged with latest ctengine 8.00.0106.
2. Added command line switch -k.

What's new in build 5.00.0048
-----------------------------
New Features:
1. Packaged with the latest ctengine 8.00.0069
2. Repackaged with renewed Windows digital signature

Known limitations:
1. ctasd does not support proxies which adds Transfer-Encoding heade

What's new in build 5.00.0045
-----------------------------
New Features:
1. Packaged with the latest ctengine 8.00.0065
2. Release supports the following Command engine versions:
     Command AV SDK version: 5.3.19
     Command AV engine version: 4.6.6

Bug Fixes:
1. ctasd no longer classifies erroneous Non Delivery Report (NDR) messages as Spam.


What's new in build 5.00.0026
-----------------------------
New Features:
1. Packaged with the latest ctengine 8.00.0049.

Fixed Bugs:
1. ctengine no longer closes TCP connection after each request to CYREN data center.
2. Domain names are placed in http host header (instead of IP address header)
3. Error 28 now reports a clear "timeout" message.
4. Corrupted Command delta files will not result in ctasd getting stuck; rather email scanning will continue
   while Command engine waits for updated Snapshot files.
5. ctasd -s or -logfac command line option was fixed and no longer results in segmentation fault.


Known limitations:
1. Unified: Unified daemon is not supported when using Asynchronous communication mode.
2. Email: System-wide custom rules must be defined in single file.
3. The "Medium" value of AVScanMode must start with a capital "M".
4. Async communication is not supported on the Sun Solaris/Sparc platform.
5. Corrupted Command delta files will result in AV engine service stoppping till new snapshot files are downloaded.


What's new in build 5.00.0020
-----------------------------
New Features:
1. Packaged with the latest ctengine 8.00.0038 introducing:
   - Unified: Unified engine integrating into single engine Anti-Spam,
     Virus Outbreak Detection, and Command Anti Virus services.
     Release supports the following Command engine versions:
     Command AV SDK version: 5.3.6
     Command AV engine version: 4.6.2
   - Email: LocalView Anti-Spam score-based detection engine
   - Email: ctasd is compliant with the IPv6 protocol in the Anti-Spam service
   - Incorporated libcurl as communication protocol
2. Email: Asynchronous communication with Resolver in Anti-Spam service is supported by ctasd.
3. Email: Support to the SpamAssassin Network Protocol.

Known limitations:
1. Unified: Unified daemon is not supported when using Asynchronous communication mode.
2. Email: System-wide custom rules must be defined in single file.
3. The "Medium" value of AVScanMode must start with a capital "M".
4. Async communication is not supported on the Sun Solaris/Sparc platform.


Known bugs:
1. ctasd -s or -logfac command line option results in segmentation fault.
2. ctasd closes TCP connection after each request to CYREN data center.
3. Proxy-based requests are placing IP address instead of domain name in Http host header.
4. "Suspect" spam classification was changed to "Suspected".

Known limitations:
1. Unified: Unified daemon is not supported when using Asynchronous communication mode.
2. Email: System-wide custom rules must be defined in single file.
3. The "Medium" value of AVScanMode must start with a capital "M".
4. Async communication is not supported on the Sun Solaris/Sparc platform.

What's new in build 4.02.0014
-----------------------------
1. Packaged with the latest ctengine 7.03.0049 introducing
   advanced detection logic and improved performance.

2. The new Mail Sort feature allows better inbox management for
   end users by distinguishing personal emails from valid, general
   mailings such as newsletters. The classification returned for
   these emails is "Valid Bulk". The classification is made by
   the Datacenter and does not require any end-user "training".
   By default Valid Bulk classification is disabled.

3. To improve the monitoring and reporting capabilities, we
   have updated and added different ctasd SNMP counters. Some
   of the existing SNMP counters (from previous released versions)
   have been replaced with newer versions and are no longer
   supported. If you are using the previous-version SNMP counters
   then you will need to update your environment to use the new
   SNMP counters.

4. For partners using Outbound Spam Protection: The following
   additional SenderID counters were added: Bulk messages
   counter; Confirmed messages counter; Recipients counter;
   Virus counter. As with all SenderID counters, 3 different
   thresholds can be defined for each counter.

5. There is an (optional) feature that translates each virus
   message to a spam classification message. A change was made so
   that Medium VOD classification is not counted as spam (rather as Unknown).

6. BugFix: The init.d script was fixed.


What's new in build 4.01
-----------------------------
1. Packaged with latest ctengine 7.02 introducing advanced detection logics and improved performance.


What's new in build 4.00.0001
-----------------------------
1. This first release of version 4 package introduces the Outbound Spam Protection service.
To enable the Outbound Spam Protection service make sure to enable the OutboundEnabled parameter and set other [Outbound]
parameters in ctasd.conf


What's new in build 3.01.0017
-----------------------------
1. Packaged with latest ctengine 6.02.0034 to improve connection recovery to Datacenter during network disconnections.

What's new in build 3.01.0012

----------------------------
-
1. Upgraded and repackaged with ctengine 6.02.0031
2. ctasd init.d daemon service script has been added to the package. Note that this script is relevant for Linux based
operating systems.


What's new in build 3.00.0023
----------------------------
1. Missing internal-only data when reporting to the Datacenter using the ClassifyMessage operation


What's new in build 3.00.0022
---------------------------------
1. Upgraded with the new ctengine version 5.06


What's new in build 3.00.0020
---------------------------------
1. Uprgaded with new ctengine version 5.05.0012


Bugs fixed in build 3.00.0014
-----------------------------
1. Persistent cache crash.

What's new in build 3.00.0013
-----------------------------
1. Repackaged with ctengine 5.05
2. Add [Stats] section to ctasd.conf and relevant already-existing parameters were moved into it
3. Add few more HTTP SNMP counters
4. No need to concatenate paremeters for the connection string with ';' at the begining of the string

Bugs fixed in build 3.00.0013
-----------------------------
1. Loading problem when the daemon started while there was no connectivity to the Datacenter


What's new in build 3.00.0009
-----------------------------
1. Repackaged with ctengine 5.04


What's new in build 3.00.0008
-----------------------------
1. Repackaged with ctengine 5.03.0013
2. Support Solaris 10 on SPARC


Bugs fixed in build 3.00.0008
-----------------------------
1. GetStatus command required authentication when deployed in authentication mode
2. Fixed bug in interlocked operations on solaris 10 over SPARC


Bugs fixed in build 3.00.0006
-----------------------------
1.SEG fault occurred when trying to start ctasd while the network is down.
2.SEG fault occurred when ctasd with disabled PersistentCache was stopped.


What's new in build 3.00.0004
-----------------------------
1. Changed default setting in ctasd.conf in [HttpServer] section to Concurrency=50.

Bugs fixed in build ~BuildNumber~
-----------------------------
1. Fixed a critical bugs in the embedded ctEngine library version 5.03.0007 and 5.03.0009.


What's new in build 3.00.0003
-----------------------------
1. Support Windows platforms.
2. Logging with SNMP counters to generate various stats and reports.
3. Allow to report cases of false negative/positive via the ctasd protocol.
4. Persistent cache [optional; enabled by default].
5. Clients can query which services are currently licensed to ctasd via the ctasd protocol.
6. Allow binding to specific  IP address.
7. Remove the need to specify URI in ctasd.conf.
8. Modify ctasd script to support both Kernel 2.4 and 2.6.
9. ctasd now returns the following Virus Threat Levels (VTL): Virus, High, Medium, Unknown and Non-Virus.
10.Support deployment over WAN with authentication.
11.Perl-based sample script for evaluation for tester that do not have http library.
12.Changed default directory to /var/spool/ctasd

Bugs fixed in build 3.00.0003
-----------------------------
1. ctasd failed to analyze image-based spam in some working scenarios.


