New in X-Series v8.0.0

60197 | Release Notes | X-Series Appliances | 2-February-2015

TRITON APX

Enhanced patch handling

Changes to CLI commands due to rebranding

ShellShock vulnerability

SSL vulnerability (POODLE)

TRITON APX

To address the wide-scale adoption of cloud and mobile technologies, along with a rapid growth in distributed workforces, Websense, Inc., is excited to launch a new, industry-leading security suite - Websense TRITON APX 8.0. This new modular platform provides advanced threat and data theft protection for organizations that wish to embrace new technologies and working practices. TRITON APX provides protection across the entire kill-chain, reveals actionable intelligence, and enables real-time feedback to educate and motivate end users to avoid risky behavior. This product release is the culmination of eighteen months of business transformation and innovation. As a result, Websense customers are now able to maximize the unparalleled protection and ROI of Websense TRITON APX solutions well into the future.

The version 8.0 release adopts new, simplified product naming and grouping of the familiar Websense TRITON product line.

Former Name

New Name

Websense Web Filter

Websense Web Filter & Security

Websense Web Security

Websense Web Filter & Security

Websense TRITON Web Security Gateway

Websense TRITON AP-WEB

Websense TRITON Web Security Gateway Anywhere

Websense TRITON AP-WEB with:

Web Hybrid Module

Web DLP Module

Web Sandbox Module

Websense TRITON Email Security Gateway

Websense TRITON AP-EMAIL

Websense TRITON Email Security Gateway Anywhere

Websense TRITON AP-EMAIL with:

Email Hybrid Module

Existing product functionality is unchanged. The user interface has the same familiar look and feel and the core product continues to provide the strong protections you've come to rely on.

Websense appliance product names – X-Series and V-Series – are unchanged.

In addition to new names, our web and email protection solutions offer new features and includes product corrections. Refer to their Release Notes for additional product information.

v8.0.0 Release Notes for TRITON AP-WEB

v8.0.0 Release Notes for TRITON AP-EMAIL

Following is a list of the TRITON security modules and their console name:


Software module	Description	Console name
TRITON Unified Security Center	Manages configuration and settings common to all modules. Provides centralized access to consoles.	TRITON Manager
TRITON AP-WEB or Web Filter & Security	Applies analytics to detect and block malicious content (TRITON AP-WEB). Uses policies to filter Internet requests from clients to meet acceptable use policies (TRITON AP-WEB, Web Filter & Security).	Web module of the TRITON Manager
Network Agent	An Internet traffic sniffer that enforces filtering for protocols other than HTTP and HTTPS.	Web module of the TRITON Manager
Content Gateway	A Web proxy that supports real-time content analysis.	Content Gateway manager
TRITON AP-EMAIL	Filters inbound and outbound email messages.	Email module of the TRITON Manager
TRITON AP-DATA	Provides robust data loss prevention management.	Data module of the TRITON Manager

Changes to CLI commands due to rebranding

CLI commands sometimes use abbreviations for module names. Some of these abbreviations have changed as part of rebranding.


Former name	New name
appliance (for Appliance)	appliance (no change)
esg (for Email Security Gateway)	email (for TRITON AP-EMAIL) Example: restart email
wcg (for Content Gateway	proxy (for Content Gateway) Example: start proxy
wse (for Web Security)	web (for TRITON AP-WEB, or Web Filter & Security) Example: show web

Enhanced patch handling

On systems running v8.0.0, the "load patch" command supports one-step download and installation with express upgrade packages. Express packages are specially prepared to support the one-step procedure. When used, combined download and install progress status is shown.

In addition, express patches may be prepared in a bundle that supports one-step upgrade for all modules on the appliance. This packaging ensures that modules are upgraded in the order needed to meet all dependencies (e.g., if the Appliance module must be upgraded before Content Gateway, it is). As a result, the express package supports version upgrades in the fewest number of steps.

Note that appliances must be upgraded to v8.0.0 or higher to take advantage of the express packaging and one-step upgrade features.

Here is how the "load patch" command might be used.

Enter the "load patch" command with no parameters to see a list of patch files and express upgrade packages available on Websense servers.

Select an express upgrade package to download it to the appliance and automatically initiate the upgrade process.

Or, select a standard patch file from the list to download it to the appliance, and then use the "install patch" command to start the upgrade.

Should a patch fail to install successfully, the system automatically rolls back.

See Using the X-Series Command Line Interface (CLI).

ShellShock vulnerability

Critical Bash (Bourne Again Shell) vulnerabilities described in CVE-2014-6271 are patched in all modules of version 8.0.0. (The vulnerabilities are also patched in past releases; see Shellshock Bash Vulnerability Hotfix Table - CVE-2014-6271)

This is a critical fix. Vulnerabilities present in Bash, up to version 4.3, can be exploited by malicious persons, including over HTTP. Many programs, such as SSH, telnet, and CGI scripts, allow Bash to run in the background, allowing the vulnerability to be exploited remotely over the network.

SSL vulnerability (POODLE)

Critical SSLv3 vulnerabilities described in CVE-2014-3566 are patched in all modules of version 8.0.0. For more information about Poodle and Websense products, see SSLv3 POODLE Vulnerability CVE-2014-3566.