General: What's New?

SekChek

What's New?


Expand all
V5.1.4 (26-Jun-2017)

SekChek Client software

  • Improved support for Windows 10, including new audit categories
  • Cater for secure https access to SekChek’s web site
  • General maintenance

SekChek for Active Directory and Windows:

  • Enhancements for Server 2016, including new audit categories
  • General maintenance

SekChek for OS/400 and UNIX: Minor maintenance.

SekChek for Netware: No further enhancements. The tool is provided on an ‘as is’ basis.


V5.1.3 (24-May-2016)

SekChek Client software

  • Embedded a new digital certificate in the software. The certificate is valid to 17 July 2018, thumbprint = 133a91efed3b2a046506519fdb40e515062fe77a.
  • General maintenance

SekChek for Active Directory and Windows:

  • Enhancements for Server 2012 R2
  • General maintenance

SekChek for OS/400 and UNIX: Minor maintenance.

SekChek for Netware: No further enhancements. The tool is provided on an ‘as is’ basis.


V5.1.2 (25-May-2015)

SekChek Client software

  • Enhancements for Windows 10

SekChek for Active Directory and Windows:

  • Enhancements for Server 2012 R2
  • Scan new properties on an LDAP server
  • Scan new properties on a Hyper-V server

SekChek for OS/400 and UNIX: Minor maintenance.

SekChek for Netware: No further enhancements. The tool is provided on an ‘as is’ basis.


V5.1.1 (10-Jul-2014)

SekChek Client software

  • Embedded a new digital certificate in the software. The certificate is valid to July 2016.
  • Improved encryption logic so that it identifies and corrects bad file names

SekChek for Active Directory and Windows:

  • Enhancements for Server 2012 R2
  • Scan 5 new properties of the LDAP server
  • Detect whether host is a Hyper-V server

SekChek for OS/400 and UNIX: Minor maintenance.

SekChek for Netware: No further enhancements. The tool is provided on an ‘as is’ basis.


V5.1.0 (08-Nov-2013)

SekChek Client software

  • PC Auditor tool: Report on User Account Control (UAC) settings
  • Cater for Office 2013 file formats (Word, Excel, Access)
  • Improved the installation routine for SekChek’s digital certificates

SekChek for Active Directory and Windows:

  • Scan permissions on Network shares
  • Report on Task Scheduler configuration
  • Report on User Account Control (UAC) setting
  • Improved the reliability of reporting on the Password Complexity and Reversible Password Encryption controls for standalone servers

SekChek for OS/400 and UNIX: Minor maintenance.


V5.0.9 (07-Jun-2013)

SekChek Client software

  • Prevent the encryption process from freezing if a Scan file’s header is corrupt.
  • PC Auditor tool: Report on advanced audit settings, registry size

SekChek for Active Directory and Windows:

  • Scan advanced audit settings (from Server 2008 R2)
  • System Configuration report section: Added domain Sid, registry size, regional language settings
  • Report on 53 advanced audit settings if the host is using advanced auditing features
  • Report on non-existent members of local groups (deleted accounts)
  • Improved reporting for Password Setting Objects (PSOs)
  • Improved the handling of situations where the output Scan file is locked by a host’s anti-virus software

SekChek for OS/400 and UNIX: Minor maintenance.


V5.0.8 (14-Jan-2013)

SekChek Client software: Updated the folder selection form to include network folders.

SekChek for Active Directory and Windows:

  • Made changes to cater for Windows 8 / Server 2012 and Server Core.
  • System Configuration report section: Added Windows Firewall settings.
  • QFE, hot-fixes report section: Included settings for Windows Updates (WSUS).
  • Added new analyses for internal system accounts and Windows Role and Features.

SekChek for OS/400 and UNIX: Minor maintenance.


V5.0.7 (16-Jul-2012)
  • Embedded a new encryption certificate in the software. The certificate is valid to July 2014.
  • Refreshed the sample reports to reflect enhancements made over the last few months. PDF versions of all sample reports are available on SekChek's web site.
  • SekChek for Windows: Include Read Only Domain Controllers (RODCs) in the scan list when the option to query all DCs for users' last logon times is selected.
  • SekChek for Windows: Ensure the full text for user login notifications is extracted. The text was previously truncated after 500 characters.
  • SekChek for UNIX: Minor maintenance.
  • Tools Menu. Converted the output HTML files from the utilities on SekChek's tools menu to Unicode format. This ensures foreign characters, such as Chinese, Japanese and Russian are properly displayed.
  • Tools Menu. Added several new properties to the Query Active Directory tool.

V5.0.6 (01-Oct-2011)

Added 7 new utilities to the Tools menu:

  • Create File Hash. Displays the sha1 hash value for a file.
  • Windows Firewall Auditor. Displays Windows Firewall's configuration settings, profiles, currently active rules and all Inbound / Outbound rules.
  • List Missing Windows Updates. Highlights Windows updates not installed on your PC.
  • List Installed Products. Lists MSI-installed products on your PC.
  • Search Event Log. Queries the Windows Event log for Error and Warning Events.
  • Query File Permissions. Lists Discretionary Access Control Lists (DACLs) defined on files and folders on local and remote systems.
  • List Open File Shares. Displays open shared files on a target server.

SekChek for Active Directory:

  • Improved the accuracy of last logon times for domain user accounts. The Scan process now uses a property available from Server 2003, which is replicated across Domain Controllers (DCs) every 14 days, compares this value with the last logon property (not replicated) on the DC being scanned, and uses the most recent of the 2 values.

    If you need even more accuracy (the absolute latest last login times), you must select the run-time option that forces SekChek to query all DCs in the domain.

SekChek for Active Directory and Windows:

  • List File Permissions (DACLs) report. Improved the resolution of: SIDs to Domain\Account names; and a domain name of BUILTIN for a trustee to the trustee's actual domain or machine name.

The main SekChek software: Improved the Help file


V5.0.5 (20-Dec-2010)

Added 3 new utilities to the Tools menu:

  • PC Auditor, which performs a basic analysis of your local computer system and displays the results in your Internet browser.
  • Find orphaned SIDs, which searches NTFS for Security Identifiers (SIDs) that may belong to old security accounts that no longer exist
  • Resolve SID, which resolves a SID and presents it in a user friendly format (System name \ Account name)

SekChek for Windows:

  • Added an option to analyse an MS-Exchange Server: Organization, Servers, Databases, Storage groups, Users
  • Analyse software installed by Windows Installer (MSI)
  • Analyse system-wide, quick-fix engineering (QFE) updates applied to the Windows OS
  • Analyse attribute 'Is Object Protected Against Deletion', which is defined on several object types
  • Reduced the risk of the Scan process failing due to anti-virus software locking the output files

V5.0.4 (14-May-2010)
  • Added a utility that lists properties for an Active Directory account. The utility is particularly useful because it displays properties that are not visible in Windows' GUI. See Main Menu | Tools | Query Account Property.
  • Renewed SekChek's embedded certificate (public key) with a new certificate that is valid until April 2013. SekChek will prompt you to install the new certificate during the installation process.
  • SekChek for Windows: Scan domain for Password Setting Objects (PSOs), which were introduced in Server 2008.
  • SekChek for Windows: Included 14 additional properties in the Scan process, including functionality levels for the DC and Forest and DEP settings.
  • SekChek for UNIX: Minor maintenance.

V5.0.3 (23-Oct-2009)
  • Added a Ping utility to the Tools menu. The utility is useful for analysing network connectivity issues.
  • SekChek for Windows: Included System Config details in the Scan. This information supports a new report section containing properties for the following objects: Computer; Operating System; Processors; BIOS; Page files; Network adapter; and Motherboard.
  • SekChek for Windows: Scan domain for Global Catalog Servers.
  • SekChek for Windows: Scan 'password complexity' and 'store passwords with reversible encryption' controls on member Servers.
  • SekChek for Windows: Improved the code that binds to an Active Directory domain. Try 1) Domain's Netbios name; 2) Domain's DNS name; 3) Host machine's DNS name.

V5.0.2 (18-Jun-2009)
  • Added the ability to view the digital signature on the SekChek software (SekChek.exe).
  • Help file: Updated images and implemented various improvements.
  • SekChek for Windows: Check whether the account used to run the Scan process has sufficient privileges to access the system's Policy object before the Extract process is started. This will prevent delays and the need for reruns due to incomplete Extract data.
  • SekChek for Windows: Ensure SekChek always binds to the target machine's domain instead of the authenticated user's domain. This allows the Scan to be run from an Administrator account in any trusted domain, as long as the account has sufficient privileges to Scan the target domain.
  • SekChek for UNIX: Added several new policies to the Scan function.

V5.0.1 (14-Jan-2009)
  • Added Word 2007 to the list of report format options.
  • SekChek for AS/400: Report on Object and Data Authorities for 6 additional OS/400 commands (STRSQL, UPDDTA, SAVOBJ, RSTOBJ, SAVLIB, RSTLIB).
  • SekChek for AS/400: Improved support for far eastern characters.
  • SekChek for UNIX: Improved support for NFS mounted volumes on most UNIX variants.
  • SekChek for Windows: Cater for read-only domain controllers. Previous versions of SekChek do not recognise this new type of DC.
  • SekChek for Windows: Reduce the risk of a Scan terminating if it cannot access a group member due to insufficient permission.

V5.0.0 (07-May-2008)
  • Released the SekChek Local range of products.
  • Improved validation of the Extract / Scan files during the encryption process.
  • Removed password length restrictions for the SekCrypt utility.
  • Fixed a problem where, under certain conditions, the software incorrectly issued a message stating that PKI features are not supported by the system.
  • Help: Improved FAQs and removed old, redundant references.



Check our web-site for the latest news and updates.