Fortinet udostępnił właśnie najnowszą aktualizację dla produktu FortiMail o numerze wersji 7.0.2. W najnowszej wersji zwiększono maksymalną liczbę chronionych domen z 16 do 50 dla wszystkich platform. W aktualizacji rozwiązano między innymi problem z brakiem sprawdzenia maili przez filtr DKIM dla ruchu wychodzącego z FortiMail Cloud. Rozwiązano także błąd filtrów AV/AS które błędnie identyfikowały typy plików zaszyfrowane przy użyciu OpenSSL. Po więcej ciekawych informacji zachęcamy do przeczytania dalszej części artukułu.
Co nowego:
| Feature | Description |
|---|---|
| Microsoft 365 Graph API Support | A service root endpoint for each Microsoft national cloud can now be set when configuring a Microsoft 365 connection. |
| Encrypted Email Access Enhancement | IBE account expiration notification email will include a self-activation link which allows IBE users to reactivate their accounts by themselves. |
Aktualnie wspierane modele:
| FortiMail | 200E, 200F, 400E, 400F, 900F, 2000E, 2000F, 3000E, 3000F, 3200E |
| FortiMail VM |
|
Rozwiązane problemy:
Antispam/Antivirus
| Bug ID | Description |
|---|---|
| 746912 | Email cannot be released from user quarantine or system quarantine when sandbox re-scan is enabled. |
| 758272 | Policy lookup does not work properly when protected domain names contain capital letters. |
| 750161 | Content Monitor does not detect regular expressions in CSV attachments. |
| 753015 | Some .docx files may not be processed properly when antivirus is enabled. |
| 756824 | Return code from DNSBL events of spamhaus.org is not handled properly. |
| 754271 | Outbound email from FortiMail Cloud occasionally fails DKIM check. |
| 758578 | Disclaimer Insertion action is logged but no disclaimer is inserted in the email. |
| 761931 | OpenSSL encrypted files (.enc files) are not detected by the correct file type. |
Mail delivery
| Bug ID | Description |
|---|---|
| 747525 | Authentication-Results header placement doesn’t follow RFC7601. |
| 752912 | In some cases, a single email may be sent to personal quarantine numerous times. |
| 752043 | The initial SMTP greeting message 220 is sent after about 4 seconds, instead of instantly. |
System
| Bug ID | Description |
|---|---|
| 757174 | When some LDAP profiles have network connection issues, all LDAP profiles may not work properly. |
| 746856 | Unable to resize FortiMail disk in Azure. |
| 754949 | FortiMail spam sample submission outlook plugin is not installed for all user accounts on a PC. |
| 747569 | In active-passive HA mode, when disabling admin/web access to one port, access to another port may also be disabled. |
| 749800 | IBE one-time secure token is resent every time when the IBE user refreshes the IBE secure token authentication page. |
| 752950 | Upgrade issue from 6.0.x to 6.2.x releases. |
| 755862 | If the mail data is scheduled to be backed up with one copy only, the new backup does not overwrite the old ones. |
| 758276 | LDAP Domain Mail Host does not work properly with associated domains. |
| 743949 | When the full config file is backed up via TFTP, the file cannot be decompressed correctly. |
| 758805 | After upgrading from 6.2.4 to 6.4.5 release, the config-only HA primary unit is reset to standalone. |
| 758521 | No event logs or SNMP traps for RAID events. |
| 747073 | SMTP traffic cannot pass through WCCP tunnel between FortiMail and FortiGate. |
| 755603 | After upgrading from 6.4.4 to 7.0.1 release, SMTP recipient verification is lost. |
| 756748 | After upgrading 6.4.5 release, there is a problem accessing the quarantine via webmail. |
Log and Report
| Bug ID | Description |
|---|---|
| 755080 | After upgrading from 6.4.5 to 7.0.1 release, domain administrators can view logs of other non-assigned domains. |
| 759715 | Log search by client name/IP does not work properly. |
| 755988 | Only 128 characters/symbols are supported in Header From and To log fields. The maximum has been increased to 350 now. |
Admin GUI and Webmail
| Bug ID | Description |
|---|---|
| 756748 | After upgrading to 6.4.5 release, the quarantine web access URL stopped working in some cases. |
| 757084 | Webmail access cannot be completely disabled. |
| 756496 | SNMP trap and query options are missing from the GUI when adding SNMP communities and users. |
| 759279 | Quarantine email content can still be viewed even when viewing content detail is disabled. |
Common vulnerabilites and exposures
Visit https://fortiguard.com/psirt for more information.
| Bug ID | Description |
|---|---|
| 753903 | CWE-79: Improper Neutralization of Input During Web Page Generation (’Cross-site Scripting’). |
Notatki producenta: FortiMail 7.0.2
Pozdrawiamy,
Zespół B&B
Bezpieczeństwo w biznesie
