Release Notes for McAfee(R) Virus-Scanning Engine-only SuperDAT Engine Version 4.3.20 Copyright (C) 2003 Networks Associates Technology, Inc. All Rights Reserved ===================================================== - Engine Version: 4320 ===================================================== Thank you for using this engine-only SuperDAT Package Installer. This file contains important information regarding this release. We strongly recommend that you read the entire document. This release of the virus-scanning engine functions ONLY with 4297 and later DAT versions. You CANNOT use this software with earlier DAT versions. Please ensure that you update the DAT files on your computers to the latest version before applying this engine-only SuperDAT. _____________________________________________________ WHAT'S IN THIS FILE - New Features - Installation - Installing Engine Files - Running the SuperDAT Package Installer - Command-Line Options - Files Included with this SuperDAT Package - System Requirements - Known Issues - Known Engine Issues - Known SuperDAT Issues - What is the SuperDAT Package Installer? - When to use the SuperDAT Package Installer - Documentation - Participating in the McAfee Security Beta Program - Contacting McAfee Security & Network Associates - Copyright and Trademark Attributions - Trademarks - License Agreement and Attributions _____________________________________________________ NEW FEATURES - Support for Microsoft Office 2003 XML documents - Improved support for RAR formats - Updated support for latest ZIP file formats - Improved support for corrupt ZIP files _____________________________________________________ INSTALLATION The SuperDAT Package Installer is a standard application that you can double-click to start from within Microsoft Windows. The Microsoft versions of the Installer includes a ‘wizard’ -- you simply follow the instructions in the panels. IMPORTANT: In order to upgrade the virus-scanning engine for NetShield for Windows NT and VirusScan for Windows NT, you MUST log on to the target computer with Administrator-level rights. If you log on to a target computer with only user-level rights, the Installer will NOT upgrade the virus-scanning engine. If you cannot log on to the target computer as an Administrator directly, you can instead use the AutoUpgrade utility included with both software products to schedule an upgrade task. The AutoUpgrade utility uses Administrator rights when it runs a scheduled update task, but will not use Administrator rights if you click the "Update Now" button. INSTALLING ENGINE FILES We distribute engine upgrades in a compressed format to reduce transmission time. With the SuperDAT Package Installer, these upgrades come packaged in a single executable file, which has a name of the format: nnnneng.exe. For example: 4320eng.exe. To prepare the Installer to upgrade your anti-virus software, create a temporary folder on your hard disk, then download that file from our web site to this folder. You do not need to uncompress the file or take any other action to prepare it to run. RUNNING THE SUPERDAT PACKAGE INSTALLER 1. Locate the program icon for the SuperDAT Package Installer. 2. Double-click the icon to start the installation wizard. 3. Follow the instructions to upgrade your files. NOTE: When the Installer has finished upgrading your anti-virus software, you can delete it from your hard disk. You can also run the SuperDAT Package Installer from a command window, with any of several options. See the later section, "Command Line Options" to learn what each option does. To run the Installer from a command prompt: 1. Click Start in the Windows taskbar, then choose Run. 2. In the Run dialog box, type: X:\nnnneng.exe, with any options you want to use. Here, X: represents the drive and the path to the location where you stored the file, and nnnn represents the engine version number. 3. Click OK. The Installer runs with the options you specify. NOTE: Some of the options do not run the Installer itself; rather they provide information about the package, provide online help, or they extract package files. See "Command Line Options" for details. COMMAND-LINE OPTIONS The SuperDAT Package Installer has several options to specify different upgrade methods or provide information. These options are: /logfile This option tells the Installer to save a log file with the path and file name that you specify. By default, the Installer creates a log file in the current working folder. Use this option to create a log file elsewhere on your hard disk. /prompt This option tells the Installer to display only the Shut Down Windows dialog box when it has upgraded your anti-virus software. Use this option in conjunction with /silent. /silent This option runs the upgrade silently. No dialog boxes appear. /reboot If you use this option in conjunction with the /silent option, the Installer will restart the target computer, but only if the Installer must do so in order to complete all file replacements. If you do not use this option from the command line, or do not include a similar command in a script, the Installer will NOT restart your computer. NOTE: To start using the new files immediately, some of our anti-virus products require you to restart the target computer. Others do not. Whether the Installer will actually restart your computer when you use this option depends on the following: - The anti-virus software you have installed, the platform, and the operating system. - The program components that are running when you start the Installer. - The engine you have already installed. If the Installer does not need to restart your computer, it will not do so. /e This option extracts the files inside the SuperDAT package to the folder you specify in . Use this option to validate the files from the package. This option does NOT run the Installer or upgrade your anti-virus software. If you do not specify a , the Installer will extract its contents to the current working folder. /v This option displays validation information for the Installer on most Microsoft Windows systems. This information includes file version, and time stamps taken from the files themselves, and cyclical redundancy check (CRC) validation codes. You can compare this information with that in the SDATPACK.LST file that comes with the SuperDAT package. This option does NOT run the Installer or upgrade your anti-virus software. /f This option tells the Installer to use the files in its current package upgrade your anti-virus software, regardless of which file versions you have already installed. Use this option to "force" an upgrade to the current file versions in order to overwrite corrupted files or enforce your anti-virus security policies. /? This option displays an online description of the command line options available for the Installer. It does NOT run the Installer or upgrade your anti-virus software. FILES INCLUDED WITH THIS SUPERDAT PACKAGE SUPERDAT INSTALLER COMPONENTS GLOBALS.NSG Global variables definition file GSDSUPER.DLL Support file used by GroupShield for Lotus Domino NAISCRIP.NSC Script file SDATPACK.LST Packing list and codes for use with VALIDATE.EXE VALIDATE.EXE File checksum tool GENERAL ENGINE COMPONENTS AVPARAM.DLL Support file used by VirusScan 32-bit/16-bit MCSCAN32.DLL Virus-scanning engine MCTOOL.EXE Support file used by the engine to preserve last-access dates on Novell NetWare server volumes. PSAPI.DLL NT support library SIGNLIC.TXT Third-party license information FILES FOR VIRUSSCAN FOR MICROSOFT WINDOWS 95 AND WINDOWS 98 MCSCAN32.VXD Virus-scanning engine RWABS16.DLL VirusScan 16-bit support file RWABS32.DLL VirusScan 32-bit support file VSHIELD.VXD VShield scanner that runs in the background FILES FOR VIRUSSCAN COMMAND LINE ANTI-VIRUS SOFTWARE LICENSE.DAT License information for use by VirusScan software MESSAGES.DAT Message contents file SCAN.EXE VirusScan Command-Line scanner for 32-bit environments SCANPM.EXE VirusScan Command-Line scanner for protected-mode environments _____________________________________________________ SYSTEM REQUIREMENTS The Installer can upgrade the virus-scanning engine for these products: End-node Solutions - NetShield for Microsoft Windows NT/2000, version 4.5 and later - PortalShield 1.0 - VirusScan Enterprise 7.0, 7.1 - VirusScan Retail and VirusScan Professional 6.0, 6.01, 6.02, and later - VirusScan for Microsoft Windows 95/98, version 4.5 and later - VirusScan for Microsoft Windows NT/2000, version 4.5 and later - VirusScan TC for Microsoft Windows 95/98/NT/2000, version 6.0 and later - VirusScan TC 6.0 and 6.1 Gateway Solutions - GroupShield 4.x for Microsoft Exchange 5.5 - GroupShield 4.x for Microsoft Exchange 2000 - GroupShield 5.x for Microsoft Exchange 5.5 - GroupShield 5.x for Microsoft Exchange 2000 - GroupShield 6 for Microsoft Exchange 2000 - GroupShield 5.x for Lotus Domino – Intel - GroupShield 5.3 for Lotus Domino - WebShield SMTP 4.5 MR1a _____________________________________________________ KNOWN ISSUES KNOWN ENGINE ISSUES 1. Some mail clients (such as PINE, Eudora, Netscape, and Pegasus Mail) use a file structure similar to concatenated MIME as their mailbox format. These clients also tend to access the files frequently. Some McAfee desktop products allow the user to enable the scanning of MIME files. Depending on the size of the mailbox, on-access scanning of these files can take a considerable time. Therefore we recommend that these files are excluded from on-access scanning. KNOWN SUPERDAT ISSUES 1. The SuperDAT log file is currently limited to a maximum length of 64Kb. After that point, the Installer continues to log events, but truncates the file. 2. If you run the SuperDAT Package Installer to upgrade an existing version of VirusScan Microsoft Windows 95 and Windows 98 – version 4.0.3, for example -- then you install a later version of the same software package -- version 4.5.1 for example -- you must run the Installer again to ensure that you have the most recent engine files. 3. The Installer does not currently support the @ symbol used in the Novell NetWare login script. We do not create, supply, or support login scripts for individual environments. 4. The Installer works within your system’s existing security structures. For Microsoft Windows NT systems, this usually means that you must have certain administrative rights to upgrade the virus-scanning engine for your anti-virus software, because you need those rights to stop and start system services. Logging on to the system with the same identity you used to install your anti-virus software should give you sufficient rights. ________________________________________________ WHAT IS THE SUPERDAT PACKAGE INSTALLER? To respond to new and complex viruses, we need to upgrade the virus-scanning engine in your anti-virus software. Often, this required a complete product release. However, with the SuperDAT Package Installer, we provide you with a complete application that installs a new virus-scanning. The SuperDAT Package Installer minimizes the need for complex software deployments each time you upgrade. The Installer takes care of shutting down any active scan operations, services, or other memory-resident software components that might interfere with your upgrade. It then copies the new files to their proper locations and enables your software to use them immediately. ________________________________________________ WHEN TO USE THE SUPERDAT PACKAGE INSTALLER We recommend that you use the SuperDAT Package Installer to upgrade all supported anti-virus software versions. You can continue to use other methods, but the Installer is the easiest and most effective method. _____________________________________________________ DOCUMENTATION - A LICENSE Agreement. The terms under which you may use the product. Read it carefully. If you install the product, you agree to the license terms. - This README file. - A CONTACT file. Contact information for McAfee Security and Network Associates services and resources: technical support, customer service, AVERT, beta program, and training. It also includes a list of phone numbers, street addresses, web addresses, e-mail addresses, and fax numbers for Network Associates offices in the United States and around the world. _____________________________________________________ PARTICIPATING IN THE MCAFEE SECURITY BETA PROGRAM To download new beta software or to read about the latest beta information, visit the beta web site: http://www.networkassociates.com/us/downloads/beta/ To submit your feedback on any McAfee Security beta product, send e-mail to: avbeta@nai.com McAfee Security is devoted to providing solutions based on your input. _____________________________________________________ CONTACTING MCAFEE SECURITY & NETWORK ASSOCIATES Technical Support Home Page http://www.networkassociates.com/us/support/ KnowledgeBase Search https://knowledgemap.nai.com/phpclient/homepage.aspx PrimeSupport Service Portal http://mysupport.nai.com Login credentials required. McAfee Security Beta Program Beta Web Site http://www.networkassociates.com/us/downloads/beta/ E-mail avbeta@nai.com Security Headquarters -- AVERT (Anti-Virus Emergency Response Team) Home Page http://www.networkassociates.com/us/security/home.asp Virus Information Library http://vil.nai.com Submit a Virus Sample – AVERT WebImmune https://www.webimmune.net/default.asp AVERT DAT Notification Service http://vil.nai.com/vil/join-DAT-list.asp Download Site Home Page http://www.networkassociates.com/us/downloads/ DAT File and Engine Updates http://www.networkassociates.com/us/downloads/updates/ ftp://ftp.nai.com/pub/antivirus/datfiles/4.x Product Upgrades https://secure.nai.com/us/forms/downloads/upgrades/login.asp Valid grant number required. Contact Network Associates Customer Service Training McAfee Security University http://www.networkassociates.com/us/services/education/mcafee/university.htm Network Associates Customer Service US, Canada, and Latin America toll-free: Phone: +1-888-VIRUS NO or +1-888-847-8766 Monday - Friday, 8 a.m. - 8 p.m., Central Time E-mail: services_corporate_division@nai.com Web: http://www.nai.com/us/index.asp http://www.networkassociates.com/us/index.asp For additional information on contacting Network Associates and McAfee Security – including toll-free numbers for other geographic areas -- see the CONTACT file that accompanied your original product release. _____________________________________________________ COPYRIGHT & TRADEMARK ATTRIBUTIONS Copyright (C) 2003 Networks Associates Technology, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of Networks Associates Technology, Inc., or its suppliers or affiliate companies. To obtain this permission, write to the attention of the Network Associates legal department at: 5000 Headquarters Drive, Plano, Texas 75024, or call +1-972- 963-8000. TRADEMARKS Active Firewall, Active Security, Active Security (in Katakana), ActiveHelp, ActiveShield, AntiVirus Anyware and design, Appera, AVERT, Bomb Shelter, Certified Network Expert, Clean-Up, CleanUp Wizard, ClickNet, CNX, CNX Certification Certified Network Expert and design, Covert, Design (stylized N), Disk Minder, Distributed Sniffer System, Distributed Sniffer System (in Katakana), Dr Solomon’s, Dr Solomon’s label, E and Design, Entercept, Enterprise SecureCast, Enterprise SecureCast (in Katakana), ePolicy Orchestrator, Event Orchestrator (in Katakana), EZ SetUp, First Aid, ForceField, GMT, GroupShield, GroupShield (in Katakana), Guard Dog, HelpDesk, HelpDesk IQ, HomeGuard, Hunter, Impermia, InfiniStream, Intrusion Prevention Through Innovation, IntruShield, IntruVert Networks, LANGuru, LANGuru (in Katakana), M and design, Magic Solutions, Magic Solutions (in Katakana), Magic University, MagicSpy, MagicTree, McAfee, McAfee (in Katakana), McAfee and design, McAfee.com, MultiMedia Cloaking, NA Network Associates, Net Tools, Net Tools (in Katakana), NetAsyst, NetCrypto, NetOctopus, NetScan, NetShield, NetStalker, Network Associates, Network Performance Orchestrator, NetXray, NotesGuard, nPO, Nuts & Bolts, Oil Change, PC Medic, PCNotary, PortalShield, Powered by SpamAssassin, PrimeSupport, Recoverkey, Recoverkey – International, Registry Wizard, Remote Desktop, ReportMagic, RingFence, Router PM, Safe & Sound, SalesMagic, SecureCast, SecureSelect, SecurityShield, Service Level Manager, ServiceMagic, SmartDesk, Sniffer, Sniffer (in Hangul), SpamKiller, SpamAssassin, Stalker, SupportMagic, ThreatScan, TIS, TMEG, Total Network Security, Total Network Visibility, Total Network Visibility (in Katakana), Total Service Desk, Total Virus Defense, Trusted Mail, UnInstaller, VIDS, Virex, Virus Forum, ViruScan, VirusScan, WebScan, WebShield, WebShield (in Katakana), WebSniffer, WebStalker, WebWall, What's The State Of Your IDS?, Who’s Watching Your Network, WinGauge, Your E-Business Defender, ZAC 2000, Zip Manager are registered trademarks or trademarks of Network Associates, Inc. and/or its affiliates in the US and/or other countries. Sniffer(R) brand products are made only by Network Associates, Inc. All other registered and unregistered trademarks herein are the sole property of their respective owners. LICENSE INFORMATION License Agreement NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE GENERAL TERMS AND CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE ACQUIRED, PLEASE CONSULT THE SALES AND OTHER RELATED LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT ACCOMPANIES YOUR SOFTWARE PACKAGING OR THAT YOU HAVE RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE AVAILABLE ON THE WEB SITE FROM WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO NETWORK ASSOCIATES, INC. OR THE PLACE OF PURCHASE FOR A FULL REFUND. Attributions This product includes or may include: - Software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/). - Cryptographic software written by Eric Young and software written by Tim J. Hudson. - Some software programs that are licensed (or sublicensed) to the user under the GNU General Public License (GPL) or other similar Free Software licenses which, among other rights, permit the user to copy, modify and redistribute certain programs, or portions thereof, and have access to the source code. The GPL requires that for any software covered under the GPL which is distributed to someone in an executable binary format, that the source code also be made available to those users. For any such software covered under the GPL, the source code is made available on this CD. If any Free Software licenses require that Network Associates provide rights to use, copy or modify a software program that are broader than the rights granted in this agreement, then such rights shall take precedence over the rights and restrictions herein. - Software originally written by Henry Spencer, Copyright 1992, 1993, 1994, 1997 Henry Spencer. - Software originally written by Robert Nordier, Copyright (C) 1996-7 Robert Nordier. All rights reserved. - Software written by Douglas W. Sauder. - Software developed by the Apache Software Foundation (http://www.apache.org/). - International Components for Unicode ("ICU") Copyright (C) 1995-2002 International Business Machines Corporation and others. All rights reserved. - Software developed by CrystalClear Software, Inc., Copyright (C) 2000 CrystalClear Software, Inc. - FEAD(R) Optimizer(R) technology, Copyright Netopsystems AG, Berlin, Germany. - Outside In(R) Viewer Technology (C) 1992-2001 Stellent Chicago, Inc. and/or Outside In(R) HTML Export, (C) 2001 Stellent Chicago, Inc. - Software copyrighted by Thai Open Source Software Center Ltd. and Clark Cooper, (C) 1998, 1999, 2000. - Software copyrighted by Expat maintainers. - Software copyrighted by The Regents of the University of California, (C) 1989. - Software copyrighted by Gunnar Ritter. - Software copyrighted by Sun Microsystems(C), Inc. - Software copyrighted by Gisle Aas. All rights reserved, (C) 1995-2003. - Software copyrighted by Michael A. Chase, (C) 1999-2000. - Software copyrighted by Neil Winton, (C) 1995-1996. - Software copyrighted by RSA Data Security, Inc., (C) 1990-1992. - Software copyrighted by Sean M. Burke, (C) 1999, 2000. - Software copyrighted by Martijn Koster, (C) 1995. - Software copyrighted by Brad Appleton, (C) 1996-1999. - Software copyrighted by Michael G. Schwern, (C) 2001. - Software copyrighted by Graham Barr, (C) 1998. - Software copyrighted by Larry Wall and Clark Cooper, (C) 1998-2000. - Software copyrighted by Frodo Looijaard, (C) 1997. V2.3.1 DBN 346-EN