-----BEGIN PGP SIGNED MESSAGE----- <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> Automated Systems Security Incident Support Team _____ ___ ___ _____ ___ _____ | / /\ / \ / \ | / \ | | / Integritas / \ \___ \___ | \___ | | < et /____\ \ \ | \ | | \ Celeritas / \ \___/ \___/ __|__ \___/ | |_____\ <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> Bulletin 95-17 Release date: 11 May, 1995, 8:30 AM EDT (GMT -4) SUBJECT: Expiration of U.S. Army's McAfee Anti-virus license. SUMMARY: A message was issued by the Department of the Army (DA), SAIS-C4C (Date Time Group 081431Z MAY 95, Subject: Removal of McAfee Anti-virus software S:31 May 1995) regarding the expiration of the U.S. Army's McAfee Antivirus license. As required by the license contract supported by DA DISC4 and the ISSC Fort Belvoir, all versions of McAfee Anti-virus software installed on Army owned PCs must be removed no later then 31 May 95. BACKGROUND: The removal requirement applies to all DOS based computing devices running McAfee Associates anti-virus programs (Clean, Scan, Vshield). In addition, all floppy diskettes that have McAfee software residing on them must be re-formatted. Failure to comply with this directive may result in financial liability for users under U.S. contract and copyright laws. The Army-wide McAfee Associates software contract expires on 31 May 95 and will not be extended beyond that date. Some Army commands, activities, and installations may have separate licensing agreements with McAfee which are not affected by the DISC4/ISSC contract termination. Terms of any of these independent agreements must be reported to SAIS-C4C no later than 31 May 95. DA POC for this matter is Gary Robison, DISC4, 703-696-8064, gary.a.robison@pentagon-1dms2.army.mil, AUTODIN: DA WASHINGTON DC//SAIS-C4C// As an alternative, the IBM Anti-virus software (IBMAV) is available to provide protection from computer viruses for Army and the rest of DoD. IBMAV is licensed through 30 June 95 under a contract managed by DISA, and is available from the ASSIST BBS aand FTP servers (see ASSIST Information Resources paragraph below for connection information). The IBMAV software and documentation is located in the IBMAV File Area on the BBS, which is restricted to access by DoD personnel only. In order to verify a user as being a member of the DoD community, ASSIST must perform a call back to a DSN phone number provided by the individual requesting access to the IBMAV file area, or receive the access request in an e-mail message from a MILNET address. If neither of these options are available, other arrangements will be made. On the ASSIST FTP server, the IBMAV software and documentation files are available in the /pub/IBMAV directory. The DoD wide license for IBMAV will be extended if the contract for the new anti-virus product has not been awarded by 30 June 95. Under the terms of the IBMAV contract currently in place, removal and discontinuance of the use of IBMAV after 30 June 95 is not required. Award of the new contract has been delayed pending resolution of vendor challenges to the initial award. ASSIST will issue a separate bulletin announcing the new contract when it is officially awarded, along with details about how to obtain the product. While removal of the IBMAV product after the contract expiration is not required, ASSIST strongly urges all DoD sites to upgrade to and maintain the current version of the new anti-virus product when it becomes available. IMPACT: Continued use of the McAfee anti-virus product licensed under the DA contract specified above after 31 May 95 is in violation of U.S. contract and copyright laws. RECOMMENDED SOLUTIONS: Army sites that will be left without computer virus protection when the Army-wide McAfee Associates contract expires should obtain IBMAV as an interim solution until the new DoD-wide anti-virus contract is awarded. <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> ASSIST is an element of the Defense Information Systems Agency (DISA), Center for Information Systems Security (CISS), that provides service to the entire DoD community. Constituents of the DoD with questions about ASSIST or computer security security issues, can contact ASSIST using one of the methods listed below. Non-DoD organizations/institutions, contact the Forum of Incident Response and Security Teams (FIRST) (FIRST) representative. To obtain a list of FIRST member organizations and their constituencies send an email to docserver@first.org with an empty "subject" line and a message body containing the line "send first-contacts". ASSIST Information Resources: To be included in the distribution list for the ASSIST bulletins, send your Milnet (Internet) e-mail address to assist-request@assist.mil. Back issues of ASSIST bulletins, and other security related information, are available from the ASSIST BBS at 703-756-7993/1154 DSN 289-7993/1154, and through anonymous FTP from assist.mil (IP address 199.211.123.11). Note: assist.mil will only accept anonymous FTP connections from Milnet addresses that are registered with the NIC or DNS. If your system is not registered, you must provide your MILNET IP address to ASSIST before access can be provided. ASSIST Contact Information: PHONE: 800-357-4231 (or 703-756-7974 DSN 289), duty hours are 06:00 to 22:30 EDT (GMT -4) Monday through Friday. During off duty hours, weekends and holidays, ASSIST can be reached via pager at 800-791- 4857. The page will be answered within 30 minutes, however if a quicker response is required, prefix the phone number with "999". ELECTRONIC MAIL: Send to assist@assist.mil. ASSIST BBS: Leave a message for the "sysop". ASSIST uses Pretty Good Privacy (PGP) 2.6.2 as the digital signature mechanism for bulletins. PGP 2.6.2 incorporates the RSAREF(tm) Cryptographic Toolkit under license from RSA Data Security, Inc. A copy of that license is available via anonymous FTP from net-dist.mit.edu (IP 18.72.0.3) in the file /pub/PGP/rsalicen.txt. In accordance with the terms of that license, PGP 2.6.2 may be used for non-commercial purposes only. Instructions for downloading the PGP 2.6.2 software can also be obtained from net-dist.mit.edu in the pub/PGP/README file. PGP 2.6.2 and RSAREF may be subject to the export control laws of the United States of America as implemented by the United States Department of State Office of Defense Trade Controls. The PGP signature information will be attached to the end of ASSIST bulletins. Reference herein to any specific commercial product, process, or service by trade name, trademark manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favoring by ASSIST. The views and opinions of authors expressed herein shall not be used for advertising or product endorsement purposes. - -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6 mQCNAi4uZ40AAAEEAM1uraimCNeh5PtzX7KoGxC2u8uMTdl8V5sujk3MHbWvCuOM W0FqDy5s9iwfQLZWzJ7cbM6L0mNOj8eJGoz7TqGKZDDRFlKAwg0x8joleZLC2gXw FVdF/g6Mdv7ok7heoa+Y//YMeADnsSrmzqLCnhFbKYffww3EbdH6sbnW3Io9AAUR tB9BU1NJU1QgVGVhbSA8YXNzaXN0QGFzc2lzdC5taWw+iQCVAwUQL1xx7tH6sbnW 3Io9AQEBYwP9FvIJbnKjtMLUj8ghd6hophSx8WZnfQsOmZX/BbX8vKz1a5BkBn4q ANvW+uKGdUlE8LLMEm1PD59Cihcb3OoWDOU8zIOIErvry4eqa+LzEXV8nnBdes+A a1MCMGSz+K3OaP78lQ7JCGoY9TXTWIelfAdBVBG4VQcSQRn8tjRdG2e0KEFTU0lT VCBUZWFtIDxhc3Npc3RAYXNzaXN0Lmltcy5kaXNhLm1pbD6JAJUCBRAuLnHoh0Y9 0jC+b6kBAU0TA/4yXSL7K6tcfVm9ACnP4crCoutFM2w10e7YKxD850ajhWrh6rI9 O+sjU5WObqiPJ7sZHdEw/KARzPSijH/5h8HlyYa6ClksWxYuymzCsUYYJctdjcGr uakfXgYQ1TkkyUfNrN5G90NuRK/vTRe7bkmyGNYjN9Njac1Q18WVF59Chg== =d5rP - -----END PGP PUBLIC KEY BLOCK----- -----BEGIN PGP SIGNATURE----- Version: 2.6 iQCVAwUBL7IESdH6sbnW3Io9AQFTnAP9HtfQ1OJmiiE9YKiHfWWuAIfG/z3oXEWY X3s7X9IWM49kMh/DP5CAE9CcM7hNweyNZEW97n55uGvNGjLtuB6dkOImwzbAHho2 29aIS/A6FJynE5zP4Pirb349OUIx3tUm+qUxvEf0DOBdnr6FuPuGHd2lrhD/8Bpp I271plBQ9j4= =s4jK -----END PGP SIGNATURE-----