Version Release Notes


The release resolves several issues, and provides improved stability and performance.

Note: All 4.0.x release contain updated cipher suites to further improve security of HTTPS communications. SSLv3 was disabled in the release (October 2014) to protect against CVE-2014-3566 (POODLE). Subsequent updates have addressed CVE-2014-0160 (Heartbleed), CVE-2015-4000 (Logjam), and other OpenSSL vulnerabilities. If you have SSL scanning enabled, your outgoing connections will be made using TLS1.0 and not SSLv3. This may render some legacy websites unusable.

Resolved Issues

Work Order # Description
NSWA-691 An issue has been resolved that could interfere with upgrades.
NSWA-685, NSWA-686, NSWA-687 Improved reliability for endpoint log processing.
NSWA-683 An issue has been resolved that could sometimes cause a certificate warning for Outlook users.
NSWA-601 Custom root CAs now work correctly when HTTPS Scanning is enabled.