What's new
What's new
July 10, 2024
ID 207070
KSMG 2.1 delivers the following new features.
Architecture
- The new version is provided as two distribution types:
- ISO file with a pre-installed operating system, mail server, and Kaspersky Anti-Virus application.
- RPM or DEB installation package. The application is installed on an operating system prepared by the administrator and integrated with the a pre-installed MTA. Detailed information is provided in the help for this distribution type.
- Rocky Linux 9.3 is now used as the pre-installed operating system in the ISO file.
Processing email traffic
- Now you can enable or disable the addition of the X-MS-Exchange-Organization-SCL header containing the SCL rating of the message after scanning by the Anti-Spam module. By default, the header is not added.
- Now you can enable or disable the addition of "X-KSMG-" type information headers to the beginning of a message and to the MIME parts of messages.
- Verification of message recipients against the list of valid recipients is implemented. You can populate the list of recipients with data from the LDAP cache or a file, alternatively, you can enter the recipients manually.
- You can specify multiple email addresses to which the mail transfer agent (MTA) will send blind carbon copies of received messages.
Rules
- The following changes were implemented in the Content Filtering module:
- More message attributes can be used in mail filtering. Attributes can be combined into Content Filtering expressions using AND/OR logical connectives.
- You can specify values for filtering using text strings, masks, regular expressions, and dictionaries. Dictionaries let you reuse sets of repeated strings and file types.
- Now you can configure an action to be applied to a message in case of a Content Filtering error.
- You can configure actions to be performed on message headers when a message processing rule or a Content Filtering expression is triggered, or a Content Filtering error occurs.
- You can configure a BCC message to be sent to a specific address when a processing rule is triggered.
- For each rule, enabled scan modules are displayed in the list of rules.
Managing the application
- Role-based restriction of user access to application functionality is implemented.
- Now you can create multiple local user accounts with different roles.
- The Dashboard section now includes a widget displaying statistics of the KATA Protection module.
Backup
- In the list of messages, you can see whether a message has been sent from Backup. In the message card, you can view the history of sending the message from Backup.
- You can view the contents of the message without downloading it.
- Now you can use group operations with message lists.
Event log
- Successful and unsuccessful attempts to log into the application are recorded in the Syslog log, the application event log, and as CEF messages.
- Hashes of MIME parts and message attachments can now be counted with a choice of hashing algorithm. You can view the results in the email traffic processing event card and in the Syslog log. You can disable hash computing and data logging to CEF for MIME parts in which no threats were detected.
- In the email traffic processing event log and in the Syslog log, you can view information about the scan results of each MIME part, link, and message attachment in which threats were detected.
- You can configure logging of the MIME part scan results for messages with detected threats only or for all scanned messages.
- The KATA Protection module can assign a broader range of statuses to a message.
Integration
- The ZIP format of the KPSN configuration file is no longer supported. You can use a PKCS7 configuration file.
- A broader range of data can be sent to the SIEM system.
Miscellaneous
Using a static gateway when receiving network settings via DHCP is no longer supported. If receiving settings via DHCP was configured for the network adapter, after the upgrade, the adapter settings will be modified so as to dynamically obtain the gateway address via DHCP.
Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.