产品总览

特警 MetaDefender Core protects your organization 通过 preventing advanced cybersecurity threats on multiple data channels. MetaDefender 核心 leverages a number of technologies, including 深度内容撤防和重建(深度CDR), Multiscanning, 基于文件的漏洞评估, 防止数据丢失 and Threat Intelligence.

发布重点

Many new features 和 enhancements bring better performance 和 improved user experience on MetaDefender 核心 v4.19.1:

  • Starting with this release, users can now process a file 通过 just specifying a direct download link (this means no payload in the HTTP(S) request body is required). Both individual file scan 和 batch processing are supported. Once file analysis request is set up properly, MetaDefender 核心 will proactively download the file 和 use it as a payload for further processing. 
  • New configurable rule for archive sanitization: if any child files inside the original archive are not sanitized, there will be tombstone file(s) added into the processed archive output file. This is to inform users of the removed child file(s) with explanation. Each tombstone file is automatically created 和 put at the same location as the removed original child file(s) with .tombstone.txt file format.

管理员可以通过在“工作流程规则管理”中选择“在存档清理过程中添加逻辑删除文件”来配置此规则。

  • The NGINX web server was upgraded to the latest stable version (v1.18.0) in this release, resulting in improved MetaDefender 核心 performance.
  • A comprehensive scan report (in PDF) for individual processed file is now available to download. The report includes detailed file information process results for each stage (Metascan, Deep CDR, Proactive DLP, Vulnerability 和 YARA).
  • 添加了PostgreSQL连接的新可配置设置,以定义到数据库服务器的最大并发连接数。
  • For files residing on devices within the user’s local network (that MetaDefender 核心 can access 和 read without any required authentication), the product will help users specify the absolute file path for processing instead of requiring a payload uploaded in the HTTP(S) body. This saves CPU resources 和 increases processing speed. Until now, the default MetaDefender 核心 requirement was to upload payload data over HTTP(S) for processing (called “remote scan” with REST interface supported).
  • 现在,JSON扫描报告中提供了其他处理时间详细信息,这些细节指示工作流程处理中每个阶段的处理时间。

从现在开始,管理员可以通过新的工作流程规则配置对文件处理进行更多控制,包括:

  • Blacklist 和 (or) whitelist (by certain filetypes) configurations can be overridden during archive file processing to support specific use cases.
  • 跳过哈希计算是可配置的,以延长整体处理时间,在处理大型文件时特别有用。
  • 用于基于文件的漏洞评估的新工作流程规则配置
  • 用于文件类型分析的新工作流程规则配置
  • 新配置可跳过恶意软件扫描结果中的任何进一步处理(和阻止文件)
  • 新配置可在无法检测到实际文件类型时跳过进一步处理(和阻止文件)
  • Within an isolated environment, MetaDefender 核心 can now be activated via offline mode without requirement for an enabled network card.

请看我们的  发行说明  for many more improvements 和 updates.

发布细节

  • Product: MetaDefender 核心
  • 发行日期:2020年10月21日
  • 发行说明: 4.19.1

Source : //www.opswat.com/blog/metadefender-core-v4-19-1-release