Improvements
The 4.0.4.2 release resolves an issue that could cause intermittent browsing
interruptions for some customers.
Note: All 4.0.x release contain updated cipher suites to further improve security of
HTTPS communications. SSLv3 was disabled in the
3.9.2.1 release (October 2014) to
protect against CVE-2014-3566 (POODLE). Subsequent updates have addressed
CVE-2014-0160 (Heartbleed), CVE-2015-4000 (Logjam), and other OpenSSL
vulnerabilities. If you have SSL scanning enabled, your outgoing connections
will be made using TLS1.0 and not SSLv3. This may render some legacy websites
unusable.
Resolved Issues
Work Order # |
Description |
NSWA-701 |
Resolves intermittent browsing interruptions experienced by some
customers, caused by a transparent mode DNS issue. |