background image

  Cisco Product Security Overview

14

Supplement and Release Notes for CiscoWorks Security Information Management Solution (SIMS) 3.4.1

OL-11757-01

To see security advisories, security notices, and security responses as they are
updated in real time, you can subscribe to the Product Security Incident Response
Team Really Simple Syndication (PSIRT RSS) feed. Information about how to
subscribe to the PSIRT RSS feed is found at this URL:

http://www.cisco.com/en/US/products/products_psirt_rss_feed.html

Reporting Security Problems in Cisco Products

Cisco is committed to delivering secure products. We test our products internally
before we release them, and we strive to correct all vulnerabilities quickly. If you
think that you have identified a vulnerability in a Cisco product, contact PSIRT:

For emergencies only —

security-alert@cisco.com

An emergency is either a condition in which a system is under active attack
or a condition for which a severe and urgent security vulnerability should be
reported. All other conditions are considered nonemergencies.

For nonemergencies —

psirt@cisco.com

In an emergency, you can also reach PSIRT by telephone:

1 877 228-7302

1 408 525-6532

Tip

We encourage you to use Pretty Good Privacy (PGP) or a compatible product (for
example, GnuPG) to encrypt any sensitive information that you send to Cisco.
PSIRT can work with information that has been encrypted with PGP versions 2.x
through 9.x.

Never use a revoked encryption key or an expired encryption key. The correct
public key to use in your correspondence with PSIRT is the one linked in the
Contact Summary section of the Security Vulnerability Policy page at this URL:

http://www.cisco.com/en/US/products/products_security_vulnerability_policy.ht
ml

The link on this page has the current PGP key ID in use.

Summary of Contents for CiscoWorks SIMS 3.4.1

Page 1: ... specific information to supplement the CiscoWorks Security Information Management Solution SIMS 3 4 1 documentation developed by netForensics Inc This document contains Acknowledgements page 2 Important Information About This Update page 2 Product Availability Change Notice page 6 Documentation Roadmap page 6 Obtaining Documentation page 11 Documentation Feedback page 13 Cisco Product Security Ov...

Page 2: ...ks SIMS version earlier than 3 4 you must upgrade to version 3 4 before you try to install the CiscoWorks SIMS 3 4 1 update You must not apply this update to any CiscoWorks SIMS version earlier than 3 4 If you do your server might become unstable or unusable Topics in this section describe how this release differs from earlier releases Updated Documents page 2 Agents in This Update page 3 Updated ...

Page 3: ... topics Changed Terminology page 3 New and Replaced Agents page 3 Updated Agents page 4 Agent Installation Notes page 5 Changed Terminology The 3 3 Consolidated Agent from CiscoWorks SIMS 3 3 has been renamed Its new name is Agent Installation October 2006 New and Replaced Agents Agent Installation October 2006 includes the following new agents nF Agent for AirDefense Enterprise Agent nF Agent for...

Page 4: ...Updated Agents Agent Installation October 2006 includes updates to the following agents nF Agent for Sidewinder nF Agent for Dragon Sensor nF Agent for Sourcefire EStreamer nF Agent for Real Secure ISS Site Protector nF Agent for Real Secure Desktop Protector nF Agent for Arbor Peakflow X nF Agent for Cisco Secure IPS nF Agent for Symantec AntiVirus nF Agent for Foundstone Scanner nF Agent for Sys...

Page 5: ...ocuments subdirectory 3 3 1 You must apply Point Update 58404 from the Agent Installation October 2006 CD ROM before you install any of the agents included in this release nFSIM 3 3 1 PNTUPD 58404 tar gz is in the Prerequisite Point Updates 3 3 1 Prerequisite subdirectory For detailed installation instructions see Point Update 58404 for CiscoWorks SIMS 3 3 1 Release Notes in the Documents subdirec...

Page 6: ...Starter Kit customers will receive a Starter Kit upgrade to CiscoWorks SIMS 3 4 1 See Additional License Restrictions page 20 Registered CiscoWorks SIMS Starter Kit users can follow an upgrade path to either CiscoWorks SIMS Enterprise Pack or CiscoWorks SIMS Enterprise Lite See Additional License Restrictions page 20 Documentation Roadmap To install and use CiscoWorks SIMS effectively read the cor...

Page 7: ...s known problems and other information to supplement the documentation written by netForensics Inc OL 11757 01 X X 2 nFX_OSP3 4 1Release Notes Cisco pdf CiscoWorks SIMS Version 3 4 1 Release Notes All users describes system requirements supported platforms product installation product feature highlights and known issues OL 11535 01 X X 3 nFAgentReleaseNotes October2006 Cisco pdf CiscoWorks SIMS Ag...

Page 8: ...ber 2006 Network and system administrators provides details about the preparation for and installation of CiscoWorks SIMS nFX OSP OL 11681 01 X X 7 nFX_OSP_Administrati onGuide Cisco pdf nFX OSP Administration and Configuration Guide Version 3 4 1 All users describes the user interface architecture and concepts prerequisites configuration user settings component and administrative options database...

Page 9: ...ty monitoring strategy best practices the need for and importance of computer forensics and the advantages derived from incident response OL 10757 01 X X 10 nFReportsguide Cisco pdf nFX OSP Reports Guide Version 3 4 1 Network security professionals and system administrators provides details about the reporting tools OL 11533 01 X X 11 nFX_OSP_IRMAdmin guide Cisco pdf nFX OSP Incident Resolution Ma...

Page 10: ...SP OL 10756 01 X X 14 nFX_OSP_VCAdminist rationGuide Cisco pdf nFX OSP Vulnerability Correlation Administration Guide Version 3 4 1 All users OL 11534 01 X X 15 nFX_OSP_SecureCertif icateManagerGuide Cis co pdf nFX OSP Secure Certificate Manager SSL Setup and Administration Guide Version 3 4 Network security professionals and general users provides details about using Secure Certificate Manager to...

Page 11: ...ecurity professionals and general users provides information about Quick Connect features architecture and configuration describes the user interface and provides step by step procedures for important tasks OL 10978 01 X X 17 nFX_OSP_SecurityPort al Cisco pdf nFX OSP Security Portal Server User s Guide Version 3 4 Network administrators provides details about logging into and out of SPS describes ...

Page 12: ... Cisco websites at this URL http www cisco com public countries_languages shtml Product Documentation DVD The Product Documentation DVD is a library of technical product documentation on a portable medium The DVD enables you to access installation configuration and command guides for Cisco hardware and software products With the DVD you have access to the HTML documentation and some of the PDF fil...

Page 13: ...echnical documentation on the Cisco Technical Support Documentation site area by entering your comments in the feedback form available in every online document Cisco Product Security Overview Cisco provides a free online Security Vulnerability Policy portal at this URL http www cisco com en US products products_security_vulnerability_policy ht ml From this site you will find information about how ...

Page 14: ... emergencies only security alert cisco com An emergency is either a condition in which a system is under active attack or a condition for which a severe and urgent security vulnerability should be reported All other conditions are considered nonemergencies For nonemergencies psirt cisco com In an emergency you can also reach PSIRT by telephone 1 877 228 7302 1 408 525 6532 Tip We encourage you to ...

Page 15: ...as a Cisco com user go to this URL http tools cisco com RPF register register do Registered users can access the tool at this URL http tools cisco com Support PAT do ViewMyProfiles do local en Obtaining Technical Assistance Cisco Technical Support provides 24 hour a day award winning technical assistance The Cisco Technical Support Documentation website on Cisco com features extensive online suppo...

Page 16: ...h results show an illustration of your product with the serial number label location highlighted Locate the serial number label on your product and record the information before placing a service call Tip Displaying and Searching on Cisco com If you suspect that the browser is not refreshing a web page force the browser to update the web page by holding down the Ctrl key while pressing F5 To find ...

Page 17: ... contacts go to this URL http www cisco com techsupport contacts Definitions of Service Request Severity To ensure that all service requests are reported in a standard format Cisco has established severity definitions Severity 1 S1 An existing network is down or there is a critical impact to your business operations You and Cisco will commit all necessary resources around the clock to resolve the ...

Page 18: ...rtners It is updated twice a year and includes the latest Cisco channel product offerings To order and find out more about the Cisco Product Quick Reference Guide go to this URL http www cisco com go guide Cisco Marketplace provides a variety of Cisco books reference guides documentation and logo merchandise Visit Cisco Marketplace the company store at this URL http www cisco com go marketplace Ci...

Page 19: ...the latest documentation releases for Cisco products Updated monthly this online publication is organized by product category to direct you quickly to the documentation for your products You can view the latest release of What s New in Cisco Documentation at this URL http www cisco com univercd cc td doc abtunicd 136957 htm World class networking training is available from Cisco You can view curre...

Page 20: ...is SLA If Customer does not agree to the terms of this SLA Customer may not install download or otherwise use the Software When used below the term server refers to central processor unit 1 ADDITIONAL LICENSE RESTRICTIONS Installation and Use The Software and all of its related components are provided to Customer solely to install update supplement or replace existing functionality of the applicab...

Page 21: ...base or human user licenses are purchased separately Device Licenses for Agents The SIM Starter Kit and its upgrade provide a license certificate to allow agents to monitor up to five 5 devices in the Customer s network environment Additional device licenses are purchased separately Enterprise Security Portal Customer may install on one 1 server per license certificate in the Customer s network ma...

Page 22: ... management environment Incident Resolution Management Customer may install on one 1 server per license certificate in the Customer s network management environment CiscoWorks Security Information Management Solution SIM Enterprise Pack Software Upgrade from the Starter Kit Software Upgrade Customer may upgrade on one 1 server of each SIMS software component per license certificate in the Customer...

Page 23: ...additional server per license certificate in the Customer s network management environment Database Customer may install one 1 additional standard or enterprise Oracle database on one 1 server per license certificate in the Customer s network management environment License Certificate Customer may use CiscoWorks SIMS software agents to monitor up to the total additional devices purchased for any o...

Page 24: ...ttached to the Software License Claim Certificate inside the shipped software package 1 If you do not have a free Cisco com user account create one for yourself here http tools cisco com RPF register register do 2 Log in to your Cisco com user account then register your software here http www cisco com go license After registration the software license is sent to the email address you provided dur...

Page 25: ...following terms of this Software License Agreement Agreement govern Customer s access and use of the Software except to the extent a there is a separate signed agreement between Customer and Cisco governing Customer s use of the Software or b the Software includes a separate click accept license agreement as part of the installation and or download process To the extent of a conflict between the p...

Page 26: ...tware on unauthorized or secondhand Cisco equipment and Customer acknowledges that any attempted transfer assignment sublicense or use shall be void ii make error corrections to or otherwise modify or adapt the Software or create derivative works based upon the Software or permit third parties to do the same iii decompile decrypt reverse engineer disassemble or otherwise reduce the Software to hum...

Page 27: ...mentation including the specific design and structure of individual programs are trade secrets and or copyrighted materials of Cisco its suppliers or licensors Customer shall not disclose provide or otherwise make available such trade secrets or copyrighted material in any form to any third party without the prior written consent of Cisco Customer shall implement reasonable security measures to pr...

Page 28: ...rranty Cisco warrants that commencing from the date of shipment to Customer but in case of resale by an authorized Cisco reseller commencing not more than ninety 90 days after original shipment by Cisco and continuing for a period of the longer of a ninety 90 days or b the software warranty period if any set forth in the warranty card accompanying the Product if any a the media on which the Softwa...

Page 29: ...IMPLIED WARRANTY CANNOT BE EXCLUDED SUCH WARRANTY IS LIMITED IN DURATION TO THE WARRANTY PERIOD BECAUSE SOME STATES OR JURISDICTIONS DO NOT ALLOW LIMITATIONS ON HOW LONG AN IMPLIED WARRANTY LASTS THE ABOVE LIMITATION MAY NOT APPLY THIS WARRANTY GIVES CUSTOMER SPECIFIC LEGAL RIGHTS AND CUSTOMER MAY ALSO HAVE OTHER RIGHTS WHICH VARY FROM JURISDICTION TO JURISDICTION This disclaimer and exclusion sha...

Page 30: ... in conjunction with the documents listed in Documentation Roadmap page 6 CCVP the Cisco Logo and the Cisco Square Bridge logo are trademarks of Cisco Systems Inc Changing the Way We Work Live Play and Learn is a service mark of Cisco Systems Inc and Access Registrar Aironet BPX Catalyst CCDA CCDP CCIE CCIP CCNA CCNP CCSP Cisco the Cisco Certified Internetwork Expert logo Cisco IOS Cisco Press Cis...

Reviews: