Release Notes McAfee Endpoint Encryption for Files and Folders 4.2.0 HF1013485 Contents  About this release  Resolved issues  Known issues  Find product documentation About this release This document contains important information about the current release. We strongly recommend that you read the entire document. Release date – October 16, 2014 Release build – 4.2.0.184 This release was developed for use with:  McAfee® ePolicy Orchestrator 4.6.4, 4.6.5, 4.6.6, 4.6.7, 4.6.8  McAfee® ePolicy Orchestrator 5.0.1, 5.1, 5.1.1 Purpose This Endpoint Protection for Files and Folders (EEFF) 4.2 Hotfix provides an enhancement that increases the overall security of USB devices and CD/DVDs by making it harder for attackers to do a brute-force attack on the user's password, especially where the user's password is relatively weak. Irrespective of this security enhancement, the password strength is important. McAfee recommends a strong password policy for the authentication/recovery mechanism of encrypted USB devices and CD/DVDs. For more information about this security enhancement, please refer to the KnowledgeBase article KB83095. This Hotfix also consolidates a number of fixes for problems that were reported in earlier versions of the product Rating High Priority – McAfee considers this release to be high priority for all customers who are making use of the Removable Media or CD/DVD encryption (offsite access options) with password as either the authentication or recovery mechanism. The offsite access options were formerly referred to as EERM (Endpoint Encryption for Removable Media). Customers not using these features may ignore this Hotfix update. For more information about patch ratings, refer to McAfee KnowledgeBase article KB51560. Important Removable media, including CD/DVD, that is initialized on a client with the Hotfix installed will be in the new format and will not be readable on older client systems. Please refer to KB83095 for further information and FAQs. 1 Resolved issues The following issues are resolved in this release of the product. For a list of issues fixed in earlier releases, see the Release Notes for the specific release.  When attempting to rename or delete a file from an Isilon Filer the operation does not complete correctly. This issue is now addressed and all operations complete successfully (Reference 945370)  When using the Removable Media policy protection levels ‘Allow / Enforce Encryption (with Offsite access)’, a USB device cannot be initialized if McAfee’s Data Loss Protection policy is set to ‘block all removable media except encrypted with McAfee Removable Media Encryption’. This issue is now addressed and the USB device can be initialized correctly. (Reference 948538)  When using a folder policy to encrypt .XLS files and using Microsoft Excel to access them, sometimes a file will appear unreadable. This issue is now addressed and the file locks are correctly released. (Reference 955065)  The properties for McAfee Endpoint Encryption for Files and Folders (EEFF) occasionally may not be collected. When this happens, the policy enforcement for the product fails and the product is not reported as installed in the ePolicy Orchestrator console. This issue is now addressed and property collection is performed correctly. (Reference 923875)  When performing a copy of files using drag and drop or copy and paste inside an explicitly encrypted folder, the file encryption is delayed. This issue is now addressed and the encryption is applied once the copy finishes. (Reference 934497)  When using Windows 7, if a file has hidden attributes, those attributes are reset when copying the file to a network share. This issue is now addressed and the file attributes are preserved. (Reference 951021)  When initializing a USB device, the pop up dialog to initialize the device is not shown. This issue is now addressed and the pop up dialog is correctly displayed. (Reference 958347)  When using a Windows Vista SP2 (32bit) system with a German locale, running the McAfee Encryption for Removable Media (MfeEERM.exe) version 4.1.1 in offline mode, it may generate an application error. This issue is now addressed. (Reference 908540)  If the Removable Media policy level “Enforce Encryption (onsite access only)” is selected and the option “Ignore existing content” is also selected, after changing the content of a bitmap or a text file previously stored on a removable media device the files are not encrypted. This issue is now addressed and files are encrypted when the contents change. (Reference 925521)  During an agent-server communication interval (ASCI), high CPU utilization is observed when using McAfee Endpoint Encryption for Files and Folders 4.1/4.2 in conjunction with HDLP 9.3.1. This issue is now addressed. (Reference 927141)  A crash may occur on accessing a Microsoft SharePoint resource from a system with McAfee Endpoint Encryption for Files and Folders 4.0/4.1/4.2 installed. This issue is now addressed. (Reference 928345)  A user personal key may fail to download when assigned. This is now addressed and the user personal key is downloaded. (Reference 901593)  Occasionally USB devices cannot be initialized using the user personal key. This issue is now addressed by changing the way the product identifies the user. (Reference 913693)  When creating a CD/DVD/ISO with large amount of data, estimate of size required (and therefore media type) can result in media being selected that is too small, resulting in the message “WARNING! Unable to add all files to encrypted container” and some files being omitted. This is now addressed and the estimation of size reflects the actual size required. (Reference 919840)  Cannot burn unencrypted files to a cd in live format with “enforce encryption (with offsite access) enabled” in the removable media policy setting. This issue is now addressed by adding a configuration option that allows the product to identify the cd as removable media. (Reference 925787)  When running the Microsoft command “dir ?” the resulting output would not list the “<DIR>..” line. This issue is now addressed and running “dir ?” will return the correct number of lines. (Reference 935441)  Network bandwidth notation on the client is in % instead of kb/s. This issue is now addressed and the client correctly shows the bandwidth in kb/s. (Reference 939263)  If a key name contained the characters “//”, the key would not be enforced. This issue is now addressed and any name is accepted as long as it is within the acceptable range for valid Active 2 Directory user names. (Reference 940979)  When burning a CD using the application Active@ Data, if the CD is ejected, a crash may occur. This issue is now addressed and ejecting the CD no longer causes a crash. (Reference 935638)  When using a Windows Vista SP2 (32bit) system with a German locale, running the McAfee Encryption for Removable Media (MfeEERM.exe) version 4.1.1 in offline mode, it may generate an application error. This issue is now addressed. (Reference 908540)  If the Removable Media policy level “Enforce Encryption (onsite access only)” is selected and the option “Ignore existing content” is also selected, after changing the content of a bitmap or a text file previously stored on a removable media device the files are not encrypted. This issue is now addressed and files are encrypted when the contents change. (Reference 925521)  During an agent-server communication interval (ASCI), high CPU utilization is observed when using McAfee Endpoint Encryption for Files and Folders 4.1/4.2 in conjunction with HDLP 9.3.1. This issue is now addressed. (Reference 927141)  A crash may occur on accessing a Microsoft SharePoint resource from a system with McAfee Endpoint Encryption for Files and Folders 4.0/4.1/4.2 installed. This issue is now addressed. (Reference 928345)  After installing the EEFF 4.2 RTW extension, the canned text queries can be edited. ePO 5.0.1 compliance requires canned content to be read only. This behavior has been corrected in this version of the extension.  The 'Save' option is enabled in the EEFF policy even without being edited, contrary to ePO 5.0.1 compliance requirements. This has been resolved and the 'Save' button is only enabled after the policy has been edited. Known issues For a list of known issues in the EEFF 4.2 product release, see McAfee KnowledgeBase article KB78436. Find product documentation McAfee provides the information you need during each phase of product implementation, from installation to daily use and troubleshooting. After a product is released, information about the product is entered into the McAfee online KnowledgeBase. Task 1 Go to the McAfee Technical Support ServicePortal at http://mysupport.mcafee.com. 2 Under Self Service, access the type of information you need: To access... Do this... User documentation 1 Click Product Documentation. 2 Select a product, then select a version 3 Select a product document KnowledgeBase  Click Search the KnowledgeBase for answers to your product questions.  Click Browse the KnowledgeBase for articles listed by product and version. Recommended reading For information about the operating systems supported by this release of McAfee Endpoint Encryption for Files and Folders, refer to the KnowledgeBase article KB72735. For information about the minimum software and system requirements, refer to the McAfee Endpoint Encryption for Files and Folders 4.2 Product Guide – PD24643. Copyright © 2014 McAfee, Inc. Do not copy without permission. McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others. 00-A 3