I don't know anything about final version, but it's already 9th BETA. I hope final version will be available soon, but it's hard to say. Maybe new BETA (RC4) will be at first!
Legend:+ Added feature
* Improved/changed feature
- Bug fixed
*
Version 4.2.0 RC 3 - June 29, 2005 - fixed bug that KPF permitted outgoing UDP packets when relevant firewall rule was set to 'ASK'. This bug prevented KPF to pass DNS leak test.
- fixed bug that KPF blocked DHCP responses on interfaces without IP address.
- fixed bug that when KPF was configured to ask the user for both application startup and modification, it asked only for the startup even if application was modified.
- fixed bug that KPF detected new interface with address 0.0.0.0 when ethernet cable was disconnected.
- fixed bug that when KPF password was enabled, it was not possible to close application change alert dialog without knowing password.
- fixed many cosmetic and light bugs in KPF GUI.
*
Version 4.2.0 RC 2 - May 24, 2005 + redesigned intrusion alert dialog
- updated ad blocking rules
- now it is possible to define webfilter exceptions using both '*' and '?'
- fixed memory leak in logging of Network Security, Behavior Blocking and NIPS
- improved HIPS detection routines (HIPS will produce less false positives)
- log files now use CRLF for line breaks (instead of LF)
- fixed problems with updated HIPS driver reload
- fixed bug that registry hives were flushed every ten seconds
- updated translations and help
*
Version 4.2.0 RC 1 - April 28, 2005 * improved HIPS detection routines (HIPS will produce much less false positives)
* updated translations and help
*
Version 4.2.0 Beta 6 - April 20, 2005 * improved portscan detection mechanism
* HIPS alert is now not displayed for permitted events
+ improved performance of HIPS driver
* HIPS driver is now loaded permanently (it is not unloaded on KPF shutdown)
*
Version 4.2.0 Beta 5 - April 7, 2005 + added popup dialog for HIPS events. User can decide whether event is caused by virus or legal application and send report to Kerio.
+ added exception for HIPS buffer overflow
+ added new predefined rule to webfilter. The rule enables proper functionality of windowsupdate.microsoft.com site.
- fixed "more information" links of several IDS rules
- fixed problem with proxy detection when advanced settings were used
- fixed problem that upon initialization, KPF permitted several packets that shouldn't be permitted
- several cosmetic fixes on license registration wizard
- fixed bug that when a popup dialog was displayed for longer than one minute, KPF gui was restarted.
*
Version 4.2.0 Beta 4 - March 9, 2005 - removed directory access restrictions. KPF now doesn't restrict its directory access for SYSTEM and Administrators only.
*
Version 4.2.0 Beta 3 - March 3, 2005 + improved code injection detection routines
+ better HIPS logging
+ KPF now set its directory permitions to be accessible only by administrator and local system accounts
- fixed a GDI leak that occured when user closed and again opened configuration window
- fixed problems with nested IP groups with too long name
- fixed problems with many local IP addresses
- removed IDS rules that caused false positive detections
- fixed incompatibility with SafeTP
- fixed problems with gateway mode - connections going through gateway were sometimes treated as incomming connections
- fixed false buffer overflow detection of Borland Delphi and C++ Builder
*
Version 4.2.0 Beta 2 - February 10, 2005 + added possibility to define application exceptions for HIPS's code injection
- fixed double logging of closed port connections
- improved buffer overflow detection routine
- fixed collision with AMD64's NX bit
- fixed crash of new HIPS driver under particular circumstances
*
Version 4.2.0 Beta 1 - January 24, 2005 + added Host Intrusion Prevention System (HIPS). HIPS prevents attacks that reach vulnerable applications from succeeding by blocking any illegitimate behavior attempted by the affected applications.
+ simpler configuration window
- System Security was renamed to Behavior Blocking to meet current industry conventions.
- Intrusions were renamed to NIDS (Network IDS) to distinguish between network intrusions and new Host Intrusions (HIPS).
- New Intrusions pane was created. It includes three types of intrusion blocking - NIDS, HIPS and Behavior Blocking.
- 'System' log and 'Intrusions' log were renamed to be consistent with new Intrusions pane.
- dropped support for Windows 98, ME, NT4.
- improved parameters sanity checks of hooked kernel API functions
- fixed occasional unresponsiveness of logview
- minor gui bugs were fixed