February 16, 2021

Russian anti-virus company Doctor Web has updated a number of modules in Dr.Web 11.1 products for Unix-like systems. The updated modules include drweb-cloudd (11.1.5-2012181751), drweb-configd (11.1.11-2102021643), drweb-ctl (11.1.8-2101211803), drweb-documentation (11.1.3-2102021301), drweb-engine (11.1.3-2101221231), drweb-filecheck (11.1.6-2012181657), drweb-libs (11.1.4-2012291813), drweb-meshd (11.1.3-2012181751), drweb-netcheck (11.1.4-2012181657), drweb-clamd (11.1.2-2012181751), drweb-rpm (11.1.4-2101152052), drweb-rpm-libs7 (11.1.4-2101152052), drweb-se (11.1.4-2012301926), drweb-statd (11.1.5-2012181751), drweb-update (11.1.6-2012181656), drweb-zypper (11.1.3-2010281214), drweb-httpd (11.1.6-2012181514), drweb-httpd-bin (11.1.6-2012181514), drweb-firewall (11.1.5-2012181514), drweb-gated (11.1.5-2012181514), drweb-configure (11.1.2-2010051243), drweb-spider (11.1.2-2012181751), drweb-spider-kmod (11.1.2-2012161527), drweb-lookupd (11.1.3-2012181751), drweb-maild (11.1.10-2101211331), drweb-gui (11.1.8-2012181751), drweb-qt (11.1.4-2012291813), drweb-session (11.1.5-2101121525), drweb-uninst (11.1.2-2101272149), drweb-icapd (11.1.6-2012181514) and drweb-smbspider-daemon (11.1.2-2012181751). The update introduces new features, resolves known issues, and delivers minor upgrades.

Changes affecting Dr.Web Anti-virus 11.1 for Unix Mail Servers, Dr.Web Anti-virus 11.1 for Linux, Dr.Web Anti-virus 11.1 for Unix Server and Dr.Web Anti-virus 11.1 for Internet gateways Unix

drweb-cloudd and drweb-update:

• The modules' manual has been updated.

drweb-configd:

• An issue affecting the formation of drweb-linuxfirewall rules when external data sources were used has been resolved
• Component integrity validation routines have been optimised.
• The modules drweb-gated and drweb-maild can now be used more efficiently while the virus databases are being updated;
• The software now runs more efficiently in ES-mode in systems using the ARM64 architecture;
• Routines determining the certificate store location have been optimised;
• An issue causing the "" value for time and size parameters to be interpreted as zero has been resolved;
• Command line help information is now more concise;
• Also resolved was a defect causing incorrect drweb-httpd status information to appear under certain circumstances;
• An issue that might cause drweb-configd to terminate abnormally has been addressed.

drweb-ctl:

• Now the drweb-ctl rawscan command can be used in centralised protection mode;
• The MaxSizeToExtract option is available for scanning commands;
• The drweb-ctl output now includes additional information;
• A command enabling users to check drweb-lookupd parameters has been added;
• The software now checks whether a password has been specified whenever a server connection is being established or a new group member is being added;
• Also addressed was an issue that might prevent users from logging in under Linux Solus after Dr.Web for Linux had been installed.

drweb-engine:

• The anti-virus engine version has been updated.

drweb-filecheck:

• The MaxSizeToExtract option is available for scanning commands.

drweb-meshd:

• The UDP broadcast method can now be used to look for a MeshD server;
• The IPv6 protocol is now supported.

drweb-netcheck:

• Now only basic information is logged at the INFO level.

Changes affecting Dr.Web 11.1 for Unix Mail Servers, Dr.Web 11.1 for Unix Server, and Dr.Web Anti-virus 11.1 for Internet gateways Unix

drweb-clamd:

• The module’s manual has been updated.

drweb-httpd and drweb-httpd-bin:

• The web-console now works properly while the virus databases are being updated.

Changes affecting Dr.Web 11.1 for Unix Mail Servers, Dr.Web 11.1 for Linux, and Dr.Web Anti-virus 11.1 for Internet gateways Unix

drweb-gated:

• An issue that might prevent malicious code from being detected in a message body has been resolved;
• Routines facilitating communication with drweb-maild have been optimised;
• The component can now interact with drweb-urlcheck.

Changes affecting Dr.Web 11.1 for Unix Mail Servers and Dr.Web Anti-virus 11.1 for Linux

drweb-maild:

• SPF (Server Policy Framework) verification is now available;
• Support has been added for a new cryptographic signature method (RFC 8463) for DomainKeys Identified Mail;
• Recompression routines have been optimised for emails containing threats;
• The application logs now provide more detailed information;
• Now lua api can be used to facilitate SPF (Server Policy Framework) verification.

Changes made to Dr.Web Anti-virus for Linux and Dr.Web for UNIX Server

drweb-spider:

• The module’s manual has been updated.

drweb-spider-kmod:

• Adjustments have been made to make the software compatible with Astra Linux SE.

Changes affecting Dr.Web 11.1 for Unix Mail Servers and Dr.Web Anti-virus 11.1 for Internet gateways Unix

drweb-lookupd:

• The module’s manual has been updated.

Changes affecting Dr.Web Anti-virus 11.1 for Linux

drweb-session:

• An issue preventing Linux SpIDer from detecting threats on PCs running Astra Linux SE if the user was logged into the system using the lowest security clearance.

Changes affecting Dr.Web 11.1 for Internet gateways Unix:

drweb-icapd:

• The module’s manual has been updated.

Changes affecting Dr.Web Anti-virus 11.1 for Unix Server

drweb-smbspider-daemon:

• The module’s manual has been updated.

The update is performed via the Dr.Web repository. If you encounter any problems when updating, please use the instructions from our previous news post to specify the additional repository for the Dr.Web software you’re using.