RSS Feed
News
May
16

Dear Customers,

 

The following News concerns only our Hungarian Customers that is why it is published only in Hungarian language.

 Thank you for the understanding.

 

Kedves  Partnereik, Ügyfeleink!

Tájékoztatjuk Önöket, hogy 2018. május 15. (kedd) 10 órától új ügyfél-és jegykezelő rendszer kerül bevezetésre a magyarországi ügyfeleink részére. Ezen a felületen keresztül tudja megtenni bejelentési szándékát, ahol továbbra is a Balasys kollégái állnak a rendelkezésére.

Új rendszerünket a http://support.balasys.hu/ címen találja. Részletes tájékoztatást a felhasználók részére kiküldött tájékoztató e-mailben talál. Ha nem kapott tőlünk tájékoztató e-mailt, akkor kérem jelezze kollégánknak a sales@balasys.hu e-mail címen.

Felhívjuk figyelmét arra, hogy május 15. (kedd) után csak az új felületen felvett jegyeket áll módunkban elfogadni.

 

 

Köszönjük az együttműködést.

 


Read more »



Feb
19
B.O.S.S. upgrade
Posted by Balázs Hadnagy on 2018 February 19 12:11

Dear Customers and Partners,

 

We would like to inform you that we will be upgrading B.O.S.S. (Balabit Online Support System) on the 20th of February.

The portal will be unreacheable from 6:00 am CET to 8:00 am CET.

Please call us (+36/1-398-6700 or +1 (800) 816-7006), if you encounter any critical issues during this time frame.

 

Best regards,

BalaBit Support Team


Read more »



Feb
2
An update on Meltdown and Spectre vulnerabilities
Posted by Balázs Hadnagy on 2018 February 02 16:55

Dear Customers,

On January 3, 2018, researchers disclosed three vulnerabilities that take advantage of the implementation of speculative execution of instructions on modern microprocessor architectures to perform side-channel information disclosure attacks. These vulnerabilities allow an unprivileged local attacker to read privileged memory belonging to other processes or memory allocated to the operating system kernel. The first two vulnerabilities, CVE-2017-5753 and CVE-2017-5715 are dubbed as
Spectre, while CVE-2017-5754 is known as Meltdown.

 

The exploitation of these vulnerabilities requires the attacker to be able running custom code on the affected devices. Even though the CPU and the underlying operating system in Balabit products may be affected, neither the PSM nor the SSB appliance allow running custom code, therefore they are not vulnerable to these attacks.

 

PSM and SSB products may be deployed as virtual machines. Make sure that the virtual hosting environment running Balabit products have the required security updates installed and are otherwise sufficiently secured.

 

Best regards,

 

BalaBit Support Team

 


Read more »



Jan
5
Regarding Meltdown and Spectre vulnerabilities
Posted by Balázs Hadnagy on 2018 January 05 17:46

Dear Customers,

Balabit Privileged Access Management and syslog-ng Store Box products are affected by both vulnerabilities. However, based on the currently available information, the potential impact of the vulnerabilities is very low as both products run only trusted applications supplied by Balabit and besides troubleshooting, no user access is allowed on the box (troubleshooting access already has high - root - privileges). A potential attacker with code execution capabilities would have also very limited gain from exploiting the vulnerabilities as local code execution would have access to most local services anyhow.
As more information becomes available, Balabit will investigate the problem further and release updates with new information if necessary.

 

Best regards,

 

BalaBit Support Team

 


Read more »



Jun
20
Shell Control Box 4.3.1 has been released
Posted by Gergely Csordás on 2016 June 20 10:36

Dear Customer,

A new maintenance version of Shell Control Box (4 F3) has been released.

Version 4 F3 has extended support time and will be supported for 6 months after SCB 5LTS is released.

 

SCB 4.3.1 contains improvements and new features, including:

  • A new plugin type (AA) to customize authentication in RDP, SSH and Telnet protocols
  • Resolving hostnames to IP addresses on the UI
  • New Azure Marketplace image with Azure File Storage (Samba share) support


Notes

The Audit Player (AP) indexing functionality is deprecated and will be removed from the next feature release (4F4). The Audit Player will still be available and supported for offline playback of audit trails.


Feature highlights

  • With the AA plugin you can enhance the authentication possibilities during inband gateway authentication in the RDP, SSH and Telnet protocols. Such plugins can be useful in various scenarios, for example, two-factor authentication, one-time password authentication, and in cases when extra user input is needed.
  • Hostnames can be used in IP address fields on the UI. In this case, hostnames are automatically resolved to IP addresses.
  • In Azure Marketplace, SCB comes with a 100Gb disk image, and Azure File Storage (Samba share) is supported for backup and archive purposes.


This release contains many security and bugfixes compared to 4.3.0.

The release contains corrections of the following issues:

https://my.balabit.com/fixed-bugs/revision/scb/4.3.1

For the current CVE fixes, see https://www.balabit.com/downloads/scb/4.3.1/fixed-cves.txt

 

For all other details, see the following documents:

What is new in Shell Control Box 4.3,
available at https://www.balabit.com/sites/default/files/documents/scb-4.3-guides/en/scb-guide-whatsnew/html/index.html

How to upgrade to BalaBit Shell Control Box 4.3,
available at https://www.balabit.com/sites/default/files/documents/scb-4.3-guides/en/scb-guide-upgrade/html/index.html

Balabit Shell Control Box 4.3 Administrator Guide,
available at https://www.balabit.com/sites/default/files/documents/scb-4.3-guides/en/scb-guide-admin/html/index.html 

 

Download


The firmwares and other files of Shell Control Box are available at: https://www.balabit.com/network-security/scb/download/shell-control-box/ 

 

Best Regards,

BalaBit Support Team


Read more »



Feb
25
Balabit Support General Terms and Conditions
Posted by Bonnyai Emese on 2016 February 25 10:57

Dear Customers!

 

Our General Terms and Conditions document has taken effect since 15th Feb, 2016.

 

Let me draw your attention to some of the changes you will meet while submitting a support case:

  • severity level Minor Impact has changed to Normal Impact
  • business hours changed to 8:00 - 17:00 (CET/CEST) on the Business Days
  • new item: Extended Business Hours (from 08:00 to 20:00 (CET/CEST) on Business Days)
  • Maximum number of contact people from partner removed

The GTC is available at: https://my.balabit.com/documents/support

 

Kind regards,

 

Emese Bonnyai

Balabit Support

 


Read more »