Cisco Cisco Web Security Appliance S680 Notas de publicación
11
Release Notes for AsyncOS 10.0.x for Cisco Web Security Appliances
Documentation Updates
Documentation Updates
The following information supplements information in the Online Help and/or User Guide for this release.
Sophos No Longer Scans Archive Files
As of AsyncOS 9.0, scanning of archive (.zip) files has been disabled in the Sophos scanner.
Adding JavaScript to End-user Notifications
If you need to add standard JavaScript to end-user notifications of any type, follow instructions in the
user guide or online help for editing notification page HTML files. (JavaScript entered into the Custom
Message box for notifications in the web user interface will be stripped out.) Be sure to test your script
first in supported client browsers to ensure that it works as expected.
user guide or online help for editing notification page HTML files. (JavaScript entered into the Custom
Message box for notifications in the web user interface will be stripped out.) Be sure to test your script
first in supported client browsers to ensure that it works as expected.
Which Files Can Have their Reputation Evaluated and Be Sent for Analysis?
The criteria for evaluating a file’s reputation and for sending files for analysis may change at any time.
Criteria are available only to registered Cisco customers. See File Criteria for Advanced Malware
Protection Services for Cisco Content Security Products, available from
Criteria are available only to registered Cisco customers. See File Criteria for Advanced Malware
Protection Services for Cisco Content Security Products, available from
.
In order to access this document, you must have a Cisco customer account with a support contract. To
register, visit
register, visit
Viewing File Analysis Details in the Cloud
The most current instructions for configuring this functionality are in the user guide PDF, available from
.
Different Client “Hello” Behavior for Custom and Default Categories
When scanning packet captures, you may notice that the “Client Hello” handshake is sent at different
times for custom category and default (Web) category HTTPS Decryption pass-through policies.
times for custom category and default (Web) category HTTPS Decryption pass-through policies.
For an HTTPS page passed through via the default category, the Client Hello is sent before receipt of a
Client Hello from the requestor, and the connection fails. For an HTTPS page passed through via a
custom URL category, the Client Hello is sent after the Client Hello is received from the requestor, and
the connection is successful.
Client Hello from the requestor, and the connection fails. For an HTTPS page passed through via a
custom URL category, the Client Hello is sent after the Client Hello is received from the requestor, and
the connection is successful.
As a remedy, you can create a custom URL category with a pass-through action for SSL 3.0-only-compatible
Web pages.
Web pages.