【新聞】McAfee Enterprise 8.5i Patch3



贊助商連結


a750828
2007-09-25, 08:12 PM
http://www.avpclub.ddns.info/discuz/images/common/back.gif (http://www.avpclub.ddns.info/discuz/redirect.php?goto=findpost&pid=45869&ptid=5458)
轉載於麥粉絲中文網
下載頁面:http://www.mcafeefans.com/article.asp?id=1713、http://www.edisk.org/?ccw8642
mcafee跳過了patch2而直接發佈patch3,所以patch2中解決的問題已經包含在最新的patch3中了。其中patch2解決了19個bug,而patch3則解決了8個bug。下載後解壓縮,點擊setup.exe檔即可安裝,升級的時候最好關閉你的一切網路活動,因為升級的時候McAfee會被禁用關閉掉

以下是由麥粉絲中文網柯文瞬網友翻譯的內容
patch2修正內容:

1. ISSUE:
When an AutoUpdate task copies new DAT files
into the engine folder, VirusScan services and
Microsoft Outlook can spike CPU utilization in
excess of one minute.
當AutoUpdate自動更新任務複製新的病毒庫檔到殺毒引擎檔夾時,VirusScan服務以及Microsoft Outlook可能會導致CPU佔用率驟升。

2. ISSUE:
The Quarantine path cannot be changed for the
On-Access Scanner via ePolicy orchestrator or
Protection Pilot. A registry value was not being
updated correctly.
病毒隔離庫路徑不能通過ePO或者Protection Pilot進行修改。其中一個註冊表鍵值不能被正確地更新。

3. ISSUE:
When creating a user-defined detection in the
Unwanted Program policy, the rule does not take
affect immediately. To enable the rule, the
McShield service must be stopped and restarted.
當用戶在“有害程式策略”中添加自定義的檢測項目時,策略並不會馬上生效。只有暫停並重啟McShield服務時才會生效。

4. ISSUE:
VirusScan’s ability to scan "floppy during
shutdown" prevents proper shutdown of a system
with a clean floppy in its drive.

當軟盤機中存在空白的軟碟時,VirusScan的“在關機過程中掃描軟碟”功能可能導致用戶無法正常關機

5. ISSUE:
A crash was reported by customers and in
Microsoft’s Online Crash Analysis (OCA), during
system start-up.
系統啟動過程中可能出現的死機現象。

6. ISSUE:
VirusScan does not correctly remove Buffer
Overflow Protection process exclusions that are
introduced by ePolicy orchestrator or Protection
Pilot.
VirusScan不能通過ePo以及ProtectionPilot正常移除“緩衝區溢出保護”的進程例外

7. ISSUE:
When a detection occurs on an EMC network share
(CAVA/Celera) and the file has the read-only
attribute, the delete action fails.
當檢測存在EMC的網路共用時,可能無法刪除標記為唯讀的檔

8. ISSUE:
Detections on a network share may leave behind
zero byte files on the share.
在網路共用中進行檢測時可能留下0位元組的檔在共用中

9. ISSUE:
The On-Access Scanner functions in Console are
not updating properly when Access Protection is
disabled.
當訪問保護功能關閉時,可能導致控制臺中的按訪問掃描功能無法正常更新

10. ISSUE:
The Self Protection feature of Access Protection
is disabled after removing a Patch from the
system.
訪問保護中的“禁止McAfee服務被停止”功能會在移除一個補丁後關閉

11. ISSUE:
Interacting with Remote Console On-Demand Scan
and AutoUpdate tasks caused the local tasks with
the same id to be acted upon, instead of the
remote task.
遠端控制臺中的按需掃描以及自動更新任務會與本地任務衝突(此處不確定)

12. ISSUE:
When you upgrade from VirusScan Enterprise 7.1
or 8.0i to version 8.5i and choose to preserve
settings, previously created console tasks do
not display in the VirusScan console.
當你從VirusScan Enterprise 7.1或者8.0i版本更新至8.5i時所選擇保留的設置,以及任務並未顯示在8.5i的控制臺中。



13. ISSUE:
With the McAfee Installation Designer (MID)
option to "Allow Users to Uninstall" disabled,
the UninstallString registry value was removed
to prevent product removal. This registry value
was also used by ePolicy orchestrator to
determine that VirusScan was installed.
當McAfee Installation Designer 中設置了關閉“允許用戶卸載”的功能時,卸載的註冊表資訊將被刪除以保護產品不被卸載。同理,通過ePO安裝VirusScan 亦然。

14. ISSUE:
Some threats were not being detected in the
Quarantine Manager by the rescan functionality.
有些威脅不會被病毒隔離管理器重新掃描。

15. ISSUE:
If McShield and McTaskManager Services were
stopped and restarted in a specific order, the
Access Protection and Buffer Overflow features
remained disabled after the services started.
如果McShield 以及 McTaskManager服務被暫停並重啟時,訪問保護以及緩衝區溢出保護功能在前面那些服務重啟後依然是關閉的。

16. ISSUE:
McShield service may crash when a configuration
change occurs during scanning.
在掃描過程中,當設置被更改後可能導致McShield服務出現錯誤

17. ISSUE:
Setting a user interface password for Access
Protection did not prevent the ability for the
user to right-click and disable that feature.
The option to disable right-click ability is
under the "Other" category (Console and
Miscellaneous).
在用戶介面為訪問保護設置密碼並不能阻止用戶是由右鍵點擊關閉該功能。關閉右鍵點擊的功能在“其他”的目錄下。

18. ISSUE:
The Buffer Overflow Protection displays a
detection in the On-Access Messages window when
the "Show the messages when a buffer overflow is
detected" option is disabled.
“當緩衝區溢出保護檢測到威脅時彈出資訊視窗”選項關閉時,緩衝區溢出保護依然會在按訪問保護資訊表單中顯示。

19. ISSUE:
On-Access Scanner’s Network Drive Scanning
causes network copy times to increase, more then
what is normally expected, when this option is
enabled.
當按訪問掃描中設置對“網路驅動器”進行掃描時,會導致網路中複製檔的速度降低。

patch3修正內容:

1. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on
heavily loaded servers.
當伺服器高負荷運作時可能會導致出現藍屏

2. ISSUE:
A D1 bugcheck (blue screen) can occur with
VirusScan Enterprise 8.5i when installed on a
Microsoft Exchange server.
安裝了Microsoft Exchange server的電腦可能導致出現藍屏

RESOLUTION:
The Access Protection driver has been updated to
resolve the issue.
更新了按訪問保護的驅動程式
3. ISSUE:
An 8E bugcheck (blue screen) was reported by
customers and in Microsoft’s Online Crash
Analysis (OCA), showing a crash in an
instruction that could not ordinarily fail.
聯機崩潰分析(OCA)中回饋的可能導致的死機問題

RESOLUTION:
The Link Driver was revised to bring it into
compliance with guidelines specified in Intel’s
Core2 Errata AI33, to prevent such unusual
behavior on affected processors.
這種情況貌似只在雙核的英代爾處理器中出現(Errata AI33這個我不懂,大概是型號吧)

4. ISSUE:
A 7E bugcheck (blue screen) can occur with
certain low resource conditions.
系統資源不足的情況下可能導致出錯。

5. ISSUE:
On 64-bit systems, VirusScan Statistics causes
an issue where the user cannot open more then
one Microsoft Virtual PC image. Virtual PC
reports insufficient memory.
在64位元系統中可能導致用戶無法打開多於一個的虛擬機鏡像。

6. ISSUE:
When integrated with the Checkpoint SecureClient
software, VirusScan Enterprise uses incorrect
registry values for DAT and Engine version
information.
VSE錯誤顯示DAT病毒庫檔以及殺毒引擎版本的資訊的現象

7. ISSUE:
With Access Protections rules set to Maximum
Security, during the installation, VirusScan
Enterprise Checkpoint integration fails to query
the On-Access Scanner service state.
安裝過程中,假如對按訪問掃描保護設置最大保護,將可能導致無法啟動按訪問掃描服務(我不知道checkpoint在這裏應當如何理解)

8. ISSUE:
Custom VirusScan Enterprise 8.5i policies are
lost after upgrading from ePolicy orchestrator
3.5 to 3.6.x.

當ePO從3.5升級至3.6.x版本時,vse 8.5i的自定義規則就會丟失。請嚴格遵循安裝步驟。

升級成功的畫面:
http://www.mcafeefans.com/Upfiles/month_0709/w2007925143212.JPG

贊助商連結


左非
2007-09-27, 01:27 AM
更新病毒碼時~cpu依然吃到滿載= =
這點沒改善orz...

害我用8.5到現在都不敢用自動更新...
等沒事時~才手動更新