Released on : 13 Sep 2018
Applies to Version : 9.0 Build 18
Download

Summary
EventTracker Service Pack 1 for v9.0 Build 18.

Enhancements

  • Support for Extracting device id from relay devices.
  • Specifying the machine name, event source from LFM logs.
  • Enhancement in Monitor Process for identification of new hash.
  • EventTracker Agent Enhancement in Log File Monitoring for syslog relay configuration.
  • EventTracker Agent configuration change to support allowing all the signed processes.
  • EventTracker Agent service will load new delta of file structures (Hash, signer, product etc.) without restarting agent service.
  • In suspicious activity monitoring added new structures parent process safe file and parent process unsafe file.
  • Performance improvement in agent LFM for syslog relay configuration.
  • Support for SHA-256 authentication in EventTracker Checkpoint with OPSEC_SDK_6.1.
  • Support for script file execution mechanism from EventTracker Monitoring Daemon.

Note
This Update should NOT be used on the EventTracker Console/Manager system. This Update should only be used for systems that have only EventTracker Agent installed on them. Please use the Update ET90U18-025 on the EventTracker Console/Manager system.

Who should read this document
Customers who use 9.0 Build 18

Severity
High

Affected software
EventTracker Agent, EventTracker Daemon.

Non-affected software
EventTracker Reports, EventTracker Alerter, EventTracker EventVault, EventTracker Scheduler, EventTracker Remote Installer, EventTracker Web, EventTracker Receiver.

Process to apply Update

  1. Download Update
  2. Place the Update ET90UA18-025.exe in the destination computer.
  3. Execute the exe.