What's new

This section contains information about the new features and improvements in Kaspersky Endpoint Security versions:

Kaspersky Endpoint Security 11.1.0 for Linux

Device Control
- Managing connected devices with time and user limitations through Samba Active Directory and Microsoft Active Directory in the Device Control task is now supported.
- Managing user access to installed or connected devices by device type and connection buses is now supported (Device Control task).
- Enabling or disabling the transfer of the device list from managed computers to Kaspersky Security Center is now supported.
Managing devices with Kaspersky Endpoint Security 11.1.0 for Linux installed via Kaspersky Security Center Cloud Console is not supported.

Kaspersky Endpoint Security 11 for Linux

Web Threat Protection
Scanning of incoming HTTP/HTTPS and FTP traffic of the user computer and detecting phishing and malicious web addresses are now supported.
Device Control
Managing user access to installed or connected devices by device type and connection buses is now supported.
Removable drives scan
Scanning of the removable drives is now supported.
Network Threat Protection
Tracking of activities that is typical of network attacks in the incoming traffic is now supported.
Container scan
Scanning of Docker containers and images is now supported.
Behavior Detection
Obtaining data on actions of applications on the user computer is now supported.
User roles
Role-based model for managing the application has been changed.
Scanning of name spaces and Docker containers
Scanning of name spaces and Docker containers in monitoring mode (general application settings) and specifying the action to apply to a Docker container when a malicious object is detected (File_Threat_Protection task settings) are now supported.
Changes in task names:
- File_Monitoring was renamed to File_Threat_Protection.
- Integrity_Monitoring was renamed to System_Integrity_Monitoring.
- Firewall_Manager was renamed to Firewall_Management.
Retranslate task removed
The anti-virus databases retranslate task (Retranslate) was removed. The databases retranslate function is available by using Kaspersky Update Utility.
Kernel memory scanning
Scanning of the kernel memory is now supported by the Memory_Scan task.
Managing Update tasks
The suspend and resume functions are no longer available for Update tasks.
Task priority
It is now possible to specify the priority of custom and on-demand scan tasks, including the Container_Scan tasks.
Adding dynamic rules for Network Agent Automatically
It is now possible to automatically add dynamic rules for Network Agent (nagent) to packet rules of the Firewall_Management task.
Blocking detected objects during a scan
This option is enabled by default. If you do not want to block detected objects during a scan, you must disable it manually.

You can now disable the option that blocks detected objects during the scan. When this option is disabled, the file interceptor will not process the detected object. At that, an object detection event will be logged only. The Skip option is obsolete and no longer available in the File_Threat_Protection settings.
Trace file settings
Possible and default values of trace file settings were changed (maximum number of entries in the file and maximum file size).
Kaspersky Security Center Cloud Console
Managing devices with Kaspersky Endpoint Security 11 for Linux installed via Kaspersky Security Center Cloud Console is now supported.
kesl-supervisor process was renamed to kesl.
Information about initiator was added to all events. This information is included into reports.
The Cure action was renamed to Disinfect.
You can now specify the list of device masks to be scanned by the Boot_Scan task.
List of supported operating systems is updated.
Working with GlusterFS file system is now supported.
Integrity check tool allows you to check application modules and files for the presence of unauthorized changes or corruption.

Page top