Yoggie Firmware Version History 1.3.9 (18 March 2008) ------------------------------- Fixed: ------ Issue #1008: Critical security update; device hardening including network interfaces and improved Firewall stealth mode 1.3.8 (17 February 2008) ------------------------------- Added: ------ * Web Management Console new buttons and tabs. * Support Juniper, NetASQ, IPCop, Zywall VPN client (in Pro verison only). * Updates are now received on port 443 instead of port. 5222. Fixed: ------ Issue #046: Status screen gauges improvements. Issue #732: Web filtering list did not appear in alphabetical order. Issue #826: License key was not properly saved in the system. Issue #848: Edditing of existing Firewall rules was limited. Issue #870: Next button appeared on the System Log last page. Issue #901: E-mail tagged as spam from walla.com domain received a corrupted subject line. 1.3.7 (23 January 2008) ------------------------------- Fixed: ------ Issue #930: Firewall could be down in a specific scenario. Issue #932: Mailshell service fail-over improvements. 1.3.6 (21 January 2008) ------------------------------- Added: ------ * New IDS/IPS signature updates * Custom Email Rules * Custom Web Filtering Rules * VPN Client Event Log * Clear Log Option * Temperature Control Mechanism * More options in Generic VPN Manual Settings * CheckPoint VPN Client * Yoggie Management Server Framework * NetASQ VPN Client Fixed: ------ Issue #081: FTP security log events did not show the URLs in the event description field. Not fixed Issue #176: Large e-mail messages were not always fully inspected by the Yoggie spam engine. Issue #335: Configuration fields in the VPN screen were fixed to properly display a blank field when no values were defined. Not fixed Issue #473: The next button in the Security Log display moved to the next page on click even when the log was empty. Issue #477: When changing Gatekeeper configuration from Pass-through mode to Redirect mode the Internet connection was temporarily lost. Issue #487: Improved Japanese emails support Issue #622: A warning message now prompts the user when trying to access the Management Console with a browser configured to block JavaScript. Issue #623: In certain rare occasions the Yoggie Management Console would display mobile code instead of executing it. Issue #636: User could enable Web Filtering even if no category was selected. Issue #655: Better support for Web sites which force the use of HTTP chunk-encoding in contradiction to the standard HTTP. Issue #657: When configuring the Firewall, a wrong error message was displayed when the configured port range was invalid. Issue #690: There was no event in the Security Log for files more than 10MB which were blocked. Issue #692: Some entries in the Security Log table displayed `>` instead of `->`. Issue #698: When entering password in the Management Console login only the first 8 letters were read. Issue #716: Security Log event description did not have a copy option. Issue #718: The Gatekeeper’s IP address was not checked before it was changed. This allowed the user to configure an illegal IP. Issue #723: Hebrew characters were not supported in the console password. Issue #726: User was able to click on the next button even after the records list ended. Issue #728: Anti-Spam engine did not properly support scanning of large emails (up to 12M). 1.3.5 (14 January 2008) ------------------------------- * Temporary disabling Mailshell engine 1.3.4 (18 November 2007) ------------------------------- * Mailshell engine updated and enabled 1.3.3 (15 November 2007) ------------------------------- * Temporary disabling Mailshell engine ------------------------------- 1.3.2 (12 November 2007) ------------------------------ * IPS Signatures updated * Minor Bug fixes 1.3.1 (24 September 2007) ------------------------ * Yoggie management console input checking improved and further secured. * Kaspersky Anti-virus engine licensing updated 1.3.0 (9 September 2007) ------------------------ Added: ------ * Improved Firewall Control * Login Page * Web Filtering RPC * Layer-8 Security Engine Control * USB network settings control * PPPOE Dialer (Gatekeeper only) * Added new Web Filtering categories * IDS/IPS Rules Updated * Improved System and Security Logs System * Graphic CPU Usage and Temperature Indicators * MTU Control Fixed: ------ Issue #215: The Current Risk Indicator formula has been updated and improved. Issue #358: The upstream proxy defined by the user was sometimes not used by all Yoggie components. Issue #365: When network settings change the Web proxy does not always update the DNS servers properly. Issue #477: Under certain conditions, an online switch between pass-through and redirection mode will not update DNS server settings correctly (Gatekeeper only). Issue #521: When the IPS detects a security threat on a Web page, the connection would be broken with no message displayed in the browser. The IPS mechanism will now be able to display a warning in many of these instances. Issue #534: Non-Latin characters would not be stored properly as configuration values. Issue #546: In the VPN configuration section of the management console, the Browse button to enter a certificate was missing. Issue #560: Certain Web servers returned non-standard HTTP responses which caused Yoggie to display a "Forbidden Transfer-Encoding" error. Issue #617: In the Support configuration section of the management console, the support email link has been updated to the online support case submission system. Issue #621: In the Web Filtering configuration section of the management se categories to block, it was console, when the user choo necessary to also enable the Web Filtering engine. This is now done automatically. Issue #654: Entering passwords containing spaces would be stored corrupt. Issue #667: When the computer is recovering from hibernation, in some cases Yoggie would not have been turned on. 1.2.4 (12 July 2007) -------------------- * Firewall policy improvements: * TCP NULL scan protection * TCP FIN scan protection * TCP XMAS scan protection 1.2.3 (2 July 2007) ------------------- * Security fix - Improved ping utility input checking (#597)