Table: New features in Symantec Endpoint Protection Small Business Edition 12.1.5
OpenSSL 1.0.1h for Symantec Endpoint Protection Manager
Symantec Endpoint Protection Manager now uses OpenSSL 1.0.1h. The update to OpenSSL addresses several security vulnerabilities, including the one known as Heartbleed, which the OpenSSL Security Advisory for CVE-2014-0160 describes. Earlier versions of OpenSSL can reveal sensitive information from the computer's memory to a remote attacker.
You can read the full text of the OpenSSL Security Advisory at the following link:
Symantec Endpoint Protection Small Business Edition 12.1.5 adds the following operating system support:
Windows 8.1 Update 2
Windows Server 2012 Update 2
Mac OS X 10.10
You can now access Symantec Endpoint Protection Manager from the following browsers:
Microsoft Internet Explorer 10.2, 11
Mozilla Firefox 5.x through 31.0
Google Chrome through 37.0.2062.94
For the complete list of system requirements:
Windows client protection features
The Windows client provides the following new protection enhancements:
Virus and Spyware Protection:
Power Eraser can now be run from the Symantec Endpoint Protection Manager console. Power Eraser provides aggressive scanning and analysis to help resolve issues with heavily infected Windows computers. You should only run Power Eraser in emergency situations, such as when a repair fails or a computer is unstable. Note that when you run Power Eraser from the management console, Power Eraser does not scan and analyze user-specific locations. Use Power Eraser in the SymHelp tool directly on the client computer to examine user-specific locations.
The client no longer scans and deletes backed up files on a server where the Symantec Endpoint Protection Small Business Edition client and either Symantec Backup Exec or Symantec NetBackup is installed.
Network Threat Protection:
You can now use SHA-256 checksums as well as MD5 checksums for file fingerprints in custom firewall rules.
IPS audit signatures monitor the network traffic of certain applications on Windows computers. For example, you can use these signatures to detect Yahoo IM logons. You can enable logging, review the Network Threat Protection traffic logs, and then decide whether or not to take action on the traffic.
Management server updates
You can now remotely deploy the Mac client installation package in addition to deploying it with a third-party installation tool.
The client password protection settings now appear in a more accessible location in Computers > Policies > Password Settings. You can also access the Password Settings dialog box when you log on to Symantec Endpoint Protection Manager.
Management server integration with network security technology
Web services on the management server now support integration with Symantec Managed Security Services. Together, Symantec Managed Security Services and Symantec Endpoint Protection Manager provide advanced threat monitoring and targeted remediation options.
The following new web services are also available for use by third-party remote monitoring and management solutions:
You can run the new Power Eraser commands.
You can run an Evidence of Compromise command on the client.
Documentation and other tools for remote monitoring and management support appear in the web services SDK. The SDK is located in the Tools installation file in the following folder:
Management server and client performance
The management server and the client include the following performance improvements:
Bandwidth control for client communication
The management server now includes an Apache module that you can configure to control network bandwidth. The module reduces the network load between Symantec Endpoint Protection Manager and the client computers, especially when the clients download content definitions or client installation packages.
The client startup time has improved by more than 10%.
The client service needs fewer processes to run.
Enhancements to the scan throttling logic for the Windows client improve scan performance. These enhancements also minimize the effect on computers with solid-state drives (SSDs) or that run in a virtualized or Terminal Services environment.
If Symantec Endpoint Protection and Critical System Protection are both installed on the same client computer, these applications now share Symantec components.
Symantec Endpoint Protection Small Business Edition provides the following documentation changes:
The main PDF files are now on the Technical Support site. You can now look for and download the most current PDF files from a single location: