Release Notes: SekChek V4.9.7
View document in PDF format
SekChek V4.9.7 was recently released. If you do not have access to a copy, let us know and we will send it to you. It is also available on our web site under 'Downloads'.
Version 4.9.7 caters for several new features that were introduced in MS Vista. We have also included features that make it even easier to share and work with SekChek. Enhancements include:
Reporting on five new rights that were introduced in MS-Vista (Access Credential Manager as a trusted caller, Change the time zone, Create symbolic links, Increase a process working set, Modify an object label).
Support for: roaming profiles; multiple users on a single machine (users have their own personal settings and log file); and operation in a secure Windows environment (personal settings are private to each user and volatile files have been moved from SekChek’s installation path to a private folder in the user’s profile).
The ability to manage SekChek’s notification emails. For example, you can control whether you want to be advised when we receive your Extract files and despatch your SekChek reports. You can also request notification when your Extract data and report have been deleted from our systems. See Tools | Options | General tab.
Querying remote Domain Controllers for Users’ last logon details. This optional SekChek for Windows function has been improved and executes faster than before.
SekChek's minimum allowed password length has been increased from 6 to 8 characters.
Several clients have asked whether SekChek can analyse Registry settings and NTFS security rules (DACLs and SACLs) on files and directories. The answer is yes, SekChek does provide these analyses. Refer to SekChek’s Help file (SekChek for Windows | Extract instructions) for details on how to configure and use these features.
We have configured our mail servers to use TLS (Transport Layer Security), so we can exchange encrypted emails with you on a Domain-To-Domain basis. TLS ensures that the entire email, not just SekChek’s Extract and Report files, is automatically encrypted during transmission. TLS is also more convenient than S/MIME because it is transparent and users do not require their own digital certificates. Let us know if you want more information about TLS or any of SekChek’s encryption features.
We have received several support calls regarding problems with installing SekChek’s Root CA certificate (file SekRoot.cer), especially on systems running MS-Vista. Symptoms include the message ‘SekChek's digital certificate is expired or damaged’, which is displayed when the PKI features are enabled. The problem is typically caused by system policy settings that prevent third-party root CAs from being trusted. For more information see the FAQ section on www.sekchek.com or contact us directly.
Another common question concerns difficulties encrypting Extract files because SekChek does not ‘see’ your file. In most cases, the problem happens because Extract files have been renamed with non-standard filenames or, in the case of AS/400 Extract files, the PROFBAS and SYSVALS files lack the required ‘.txt’ extension.