CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway. Learn More

Request a Demo

CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway. Learn More

Request a Demo
Services
Capture
Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

twi-managed-portal-color
Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

twi-briefcase-color-svg
Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

tw-laptop-data
Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

twi-database-color-svg
Database Security

Prevent unauthorized access and exceed compliance requirements.

twi-email-color-svg
Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

tw-officer
Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

tw-network
Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

View All Trustwave Services
Solutions
BY INDUSTRY
BY REGULATION
BY TOPIC
Offensive Security
Solutions to maximize your security ROI
Microsoft Exchange Server Attacks
Stay protected against emerging threats
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
We reduce cyber risk and fortify organizations
Awards and Accolades
Recognition by analysts and media outlets
Trustwave SpiderLabs Team
Global researchers, ethical hackers, and responders
Trustwave Fusion Security Operations Platform
Unprecedented security visibility and control
Trustwave Security Colony
Access to cybersecurity threat protection resources
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
Register
Login
Resources
BLOGS
UPCOMING
MEDIA & ASSETS
NOTICES
HELP
Database Security

Trustwave DbProtect Sensor 4.3.1

April 19, 2018

Trustwave DbProtect Sensor 4.3.1

Trustwave is pleased to announce the release of Trustwave DbProtect Sensor 4.3.1. DbProtect Sensor version 4.3.1 is compatible with DbProtect Suite release 6.4.4 and higher. It includes SHATTER Knowledge Base Release 5.21. Sensor version 4.3.1 introduces many new features that include:

• Support for Microsoft SQL Server 2016

• New Installer Bundle for Windows

o The bundle includes 3 components, all visible in ARP (Add/Remove Programs).

• DbProtect Sensor Installation Manager

• DbProtect Sensor

o This is an updated installer that was not included in the 4.2 service pack.

o It is now completely command-line driven (no UI) to support silent installs.

• DbProtect Sensor Network Driver

o To completely uninstall Sensor, go to the ARP applet and select DbProtect Sensor Installation Manager.

• Provisional Support for pluggable container databases in Oracle 12.1

o  For non-production environments who would like to beta test this version of sensor for Oracle 12.1 in a pluggable container environment.

 

Improvements & Bug Fixes:

• Alert levels in DbProtect policies are mapped one-to-one to syslog severity.

o  To change the mapping, see syslogSeverityMapping_sensor_override.xml

Limitations:

  • An instance of Sensor should only be assigned to monitor a single database instance when monitoring a container database on Oracle 12.1.
  • A single policy applies to all containers in a database instance. Container-specific policies are being considered as a future enhancement.
  • If a database connection cannot be established at any time, sensor will issue a MONITORING UNAVAILABLE event. In some, but not all cases, sensor will also shut down.
  • Some valid connect identifiers may not be supported yet. We recommend using a connect descriptor if possible.
  • Purging of audit records may not be fully functional in Oracle 12.1.
  • Oracle 12.1 on Windows sometimes has IPV6 enabled even without an IPV6 infrastructure. If IPV6 is enabled in this case, Oracle may report local connections using a non-existent link-local scope IPV6 address for the loopback interface. DbProtect Sensor does not recognize this configuration and may miss alerts. Disabling IPV6 will resolve this issue.

Download Trustwave DbProtect Sensor 4.3.1 from the Trustwave Support Portal. For additional assistance please contact Trustwave Customer Support.

 

Latest Software Updates

CVT Deployment 1.106.0-1

Summary The latest update to the Fusion scan engine that powers our internal and external vulnerability scanning is now available. Enjoy!

Read More

CVT Deployment 1.107.0-1

Summary The latest update to the Fusion scan engine that powers our internal and external vulnerability scanning is now available. Enjoy!

Read More

Web Application Security – ModSecurity Commercial Rules, Update for March 2024

Overview for rules released by Trustwave SpiderLabs in March for ModSecurity Commercial Rules package. The rules are available for versions 2.9.x and 3.x of ModSecurity.

Read More