is there any way so that I can block all file uploads to specific category?
Thanks in advance,
Running SEP 14.2.770.0000 on Windows 10 workstation. During software development programs are copied from local workstation to network share. Application is executed from network share. After program stops execution for about 5 min time frame new versions of the application cannot be copied to the network share. Something has the files (exe’s and dll’s) still locked up an in use.
Tried various exclusions. Tried Disabling SEP. Only un-installing the Endpoint Protection fixes the problem. What is holding a lock on the program, it seems that it SEP 14.2 but even with the program disabled we still have issue. SEP is only loaded on workstation and not on network server. We did not have issue with version 14.0.3.
Wondering who else is getting the following file being marked as Trojan.Gen.NPE.2?
This is only started today, and it’s being reported across our entire Windows 10 estate, I am wondering if it is a false positive?
Does anyone know if there is a list of common errors and reasons/resolutions, i’m trying to put together a simple guide for the first line support team and can only find/document issues as I come across them myself, not really ideal.
What I have so far are:
Access is denied – Permissions error, scan does not have the correct credentials to access the file, or additional access controls exist on the file, or AD access may have been interrupted, (try to manually access the files using the DLP scan user to see why the download failed)
Failed to Read – failed to read errors are generally related to files being locked and not available to be copied/downloaded
Failed to Download – often related to permissions errors (try to manually access the files using the DLP scan user to see why the download failed)
No such mount exists – this is related to file reader restarts, when the file reader does not unmount the drive fully during the restart and then the scan cannot mount the drive to continue scanning. This is a bug I have seen in the forums.
Exception occurred during initialization. Ensure that Microsoft Outlook is configured properly (.pst files). – Outlook needs to be installed on the server doing the scan to be able to read .pst files
Anyone had any more?
I have computer A and file text.txt I Create a policy to allow view file text.txt but terminate process if user try to write to this file. I share the folder cntain this file. The computer work fine with all computer has SEP Client Install. But computer without SEP Client, they have full permission on this file. They can read, write, move, delete … How can i block all permission but read of file text.txt for those computer that don’t have SEP client install using SEP, not File permission of Windows ??
This is a hotfix for customers running XenServer 7.1 Cumulative Update 1. All customers who are affected by the issue described in CTX230624: Citrix XenServer Security Update should install this hotfix.
This hotfix does not apply to XenServer 7.1. You must apply Cumulative Update 1 before you can apply this hotfix.
Note: XenServer 7.1 Cumulative Update 1 and its subsequent hotfixes are available only to customers with Customer Success Services.
|Post-update tasks||Restart Host|
|Content live patchable*||No|
|Baselines for Live Patch||Not Applicable|
|Revision History||Published on Dec 15, 2017|
|* Available to Enterprise Customers.|
This security hotfix addresses the vulnerability as described in the Security Bulletin above. In addition, it resolves the following issues:
Customers should use either XenCenter or the XenServer Command Line Interface (CLI) to apply this hotfix. When the installation is complete, see the Post-update tasks in the table Information About this Hotfix for information about any post-update tasks you should perform for the update to take effect. As with any software update, back up your data before applying this update. Citrix recommends updating all hosts within a pool sequentially. Upgrading of hosts should be scheduled to minimize the amount of time the pool runs in a “mixed state” where some hosts are upgraded and some are not. Running a mixed pool of updated and non-updated hosts for general operation is not supported.
Note: The attachment to this article is a zip file. It contains the hotfix update package only. Click the following link to download the source code for any modified open source components XS71ECU1007-sources.iso. The source code is not necessary for hotfix installation: it is provided to fulfill licensing obligations.
There are three mechanisms to install a hotfix:
The Automated Updates feature is available for XenServer Enterprise Edition customers, or to those who have access to XenServer through their XenApp/XenDesktop entitlement. For information about installing a hotfix using the Automated Updates feature, see the section Applying Automated Updates in the XenServer 7.1 Installation Guide.
For information about installing a hotfix using the Download update from Citrix option, see the section Applying an Update to a Pool in the XenServer 7.1 Installation Guide.
The following section contains instructions on option (3) installing a hotfix that you have downloaded to disk:
Follow the on-screen recommendations to resolve any update prechecks that have failed. If you want XenCenter to automatically resolve all failed prechecks, click Resolve All. When the prechecks have been resolved, click Next.
Note: If you click Cancel at this stage, the Install Update wizard reverts the changes and removes the update file from the host.
xe -s <server> -u <username> -pw <password> update-upload file-name=<filename>XS71ECU1007.iso
XenServer assigns the update file a UUID which this command prints. Note the UUID.
xe update-pool-apply uuid=<UUID_of_file>
Alternatively, if you need to update and restart hosts in a rolling manner, you can apply the update file to an individual host by running the following:
xe update-apply host=<name_of_host> uuid=<UUID_of_file>
xe update-list -s <server> -u root -pw <password> name-label=XS71ECU1007
If the update is successful, the hosts field contains the UUIDs of the hosts to which this patch was successfully applied. This should be a complete list of all hosts in the pool.
|Hotfix File sha256||40198ccec3a7aac08547cc0e407b18c5308931969222d8d3c5af1759373d3d8e|
|Hotfix Source Filename||XS71ECU1007-sources.iso|
|Hotfix Source File sha256||291d78aa0099903144b78b744e841cb7de7cec8e69450f741f7e64e2b04a1cef|
|Hotfix Zip Filename||XS71ECU1007.zip|
|Hotfix Zip File sha256||217784e6e38f33fee03a33d23183ffc9e311638eb133d39230ec02ea7d8ff116|
|Size of the Zip file||20.5 MB|
For more information see, XenServer 7.1 Virtual Machine User’s Guide.
If you experience any difficulties, contact Citrix Technical Support.