Support

User Guide and Product Support Documentation


User Guide - Complete product documentation.

FAQs - Frequently Asked Questions

System Requirements -

Hardware
• See MS requirements for relevant OS/IIS version
Software
ThreatSentry is compatible with the following:
• IIS 10 - Windows Server 2016/2019
• IIS 8/8.5 - Windows Server 2012 R2/Windows 8
• IIS 7 - Windows Server 2008/R2
• IIS 6 - Windows Server 2003
• IIS 5 - Windows Server 2000*

*Service Pack 3 (or later) for Windows Server 2000


Most recent version number:


ThreatSentry 4 64-bit - VERSION 4.4.52.0 (posted April 29, 2020)
ThreatSentry 4 32-bit - VERSION 4.4.52.0 (posted April 29, 2020)

Download ThreatSentry for 64 bit IIS here:
http://www.privacyware.com/software/ThreatSentry_4_64.zip
Should be installed on systems which are operating IIS in 64 bit mode.

Download ThreatSentry for 32 bit IIS here:
http://www.privacyware.com/software/ThreatSentry_4_32.zip
Should be installed on systems which are operating IIS in 32 bit mode.

Important Installation and Upgrade Notes: Installing ThreatSentry updates sometimes requires uninstallation of the existing build and system reboot (typically when the ndis driver has been modified which will always be noted in the release notes). In order to maintain your custom rules and settings, select the Advanced Options button and check the Preserve Existing Rules and Settings check box during the installation process (checked by default). We also advise backup of the rules and IPs via Export Settings and Export IPs via right mouse click on the IPs and Rules nodes of the ThreatSentry MMC admin console.


UPGRADING FROM TS3 TO TS4?


- Simply uninstall ThreatSentry v3, reboot server and install the appropriate ThreatSentry v4 version (32 or 64 bit).


RECENT RELEASE NOTES:


4.4.52.0 - Release Notes: (posted April 29, 2020)

- Expanded support for GitHub based IP blacklists.
- Enhanced SQL installation and configuration (OS ver. dependent).
- Updated 64bit SSCprot license module.

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.52.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.52.0 installer (no uninstall/system reboot is required).




4.4.49.0 - Release Notes: (posted October 10, 2019)

- Added Github bad IP Address black list import.
- Enhanced TLS/SSL configuration support.
- Enhanced IIS integration + SQL setup configuration

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.49.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.49.0 installer (no uninstall/system reboot is required).




4.4.43.0 - Release Notes: (posted May 16, 2019)

- Updated threat filtering rules.
- Modified TSSvc module to address sporadic email notification issue.

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.43.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.43.0 installer (no uninstall/system reboot is required).




4.4.41.0 - Release Notes: (posted March 9, 2019)

- Expanded support for Windows Server 2019
- SQL connection enhancements (for TLS setup, Native provider operations).
- Added JSON file format IP Address List import support for Trusted/Untrusted IP Addresses.

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.41.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.41.0 installer (no uninstall/system reboot is required).




4.4.33.0 - Release Notes: (posted April 9, 2018)

- Database scheduled Autobackup and Security Alert Log autopurge.
- Database support enhancements for MS SQL and Azure.
- Refactored ThreatSentry SQL request processing (installer and service).
- Enhanced TLS configuration support and expanded related logging.
- Added SMTP, port number, un/pw and other email alert configuration options.
- Enhanced Apache web module support.

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.33.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.33.0 installer (no uninstall/system reboot is required).




4.4.7.0 - Release Notes: (posted October 25, 2016)

- Added TLS 1.1./1.2 support (where old SSL and TLS 1.0 has been disabled) for remote SQL server
- Expanded support for Windows Server 2016 and IIS 10.
- Fixed time-out error when communicating with Azure DB
- Fixed installer error "SQL server not found" for Windows2012 an newer (issue observed due to latest Windows updates)
- Events display error fixed in certain environments (IIS7 and newer)
- Enhanced logging added (critical operation like rules modifications, remote administration, events processing)
- Restored functionality of deploying TS settings to remote TS instances ("Apply Rules/Settings..." )

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.7.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.70 installer (no uninstall/system reboot is required).




4.4.3.0 - Release Notes: (posted April 14, 2016)

- Modified processing for POST requests with binary content.
- Added enhanced logging and DB protection for "revert to default state" incident.
- Added enhanced logging for TS->NDIS communication monitoring.)

Installation Note: ThreatSentry builds 4.3.20.0 and earlier should be completely un-installed and system rebooted before installing 4.4.3.0. If upgrading from build 4.3.20.0 or later, close the ThreatSentry admin console and invoke the 4.4.3.0 installer (no uninstall/system reboot is required).




4.3.20.0 - Release Notes: (posted June 12, 2015)

- NDIS driver update
- Added option to not include NDIS driver during ThreatSentry installation process (Advanced Options).
- Build Microsoft Platform Ready tested (Windows Server 2012 R2)

Installation Note:
1) Close ThreatSentry Admin Console and stop ThreatSentry service.
2) Uninstall ThreatSentry
3) Restart server
4) Install ThreatSentry build 4.3.20.0
5) In some cases, a message will be displayed indicating that a second server restart is required (dependent on the OS version and from what version of ThreatSentry is being upgraded).




4.3.7.0 - Release Notes: (posted November 16, 2014)

- Modified license management mechanism (improved support for routine VM modifications and maintenance).
- Fixed minor defect in Global Notification Filter.

Installation Note: ThreatSentry builds 4.0.57.0 and earlier should be completely un-installed and system rebooted before installing 4.3.7.0 If upgrading from build 4.1.6.0 or later, close the ThreatSentry admin console and invoke the 4.3.7.0 installer (no uninstall/system reboot is required).




4.3.4.0 - Release Notes: (posted August 10, 2014)

- Added “Redirect Blocked Requests to” url/page option (Policy, Threat Management Properties, Action tab).
- Added IP Address notification exclusion option (Management, Policy, Threat Management Options, Notification, Global Notification Filter).
- Enhanced filter options for large sized request parameter (Management, Rules, Requests, Common Properties tab). Can be applied to different parts of the parameter (beginning, random, end).
- Re-factored certain multi-threaded components (using Thread-Safe) for IIS6 and later to address race and other related conditions.
- Removed SQLExpress auto-install option for server 2012 (option available for Server 2008 Server or older).
- Added task bar notification to display ThreatSentry operating issues, i.e. service stopped, license expire/fail, SAL size, SQL server issues, etc.
- Enhanced central management options - "Apply Settings & Rules to All Servers" and "Apply Rules to All Servers" (via right mouse on server name).
- Enhanced support for remote SQL Server on Azure.
- Modified NDIS communication to improve stability.
- Added Boost (C++ libraries) to improve processing of Regex rules.
- Added MySQL support.

Installation Note: ThreatSentry builds 4.0.57.0 and earlier should be completely un-installed and system rebooted before installing 4.3.4.0 If upgrading from build 4.1.6.0 or later, close the ThreatSentry admin console and invoke the 4.3.4.0 installer (no uninstall/system reboot is required).




4.1.38.0 - Release Notes: (posted May 2, 2013)

- Expanded remote server connection capabilities ("DOMAIN\username" now supported) and enhanced related MMC storage.
- Fixed primary console SAL display issue for remote servers.

Installation Note: ThreatSentry builds 4.0.57.0 and earlier should be completely un-installed and system rebooted before installing 4.1.38.0. If upgrading from build 4.1.6.0 or later, close the ThreatSentry admin console and invoke the 4.1.38.0 installer (no uninstall/system reboot is required).




4.1.36.0 - Release Notes: (posted April 17, 2013)

- Expanded Positive Security Model & White Listing capabilities. Added ability to specify (white list) target urls for which no traffic will be blocked or that should be trusted based on one or more qualifying attributes. Positive security model can be implemented for individual web application pages (i.e. "localhost/index.html") or page types (i.e. “.html”) and can be utilized simultaneously with negative settings.
- Expanded XFF support. Added "Request" Tab to Policy, Threat Management Options - "Use X-Forwarded-For Address" can be applied to Trusted and/or Blocked IPs.
- Notify option grayed out if related rule not enabled, i.e. the “Control Parameter Length” or “Request Frequency” (in Target URL).
- Modified SMS/Email notification logic.

Installation Note: ThreatSentry builds 4.0.57.0 and earlier should be completely un-installed and system rebooted before installing 4.1.36.0. If upgrading from build 4.1.6.0 or later, close the ThreatSentry admin console and invoke the 4.1.36.0 installer (no uninstall/system reboot is required).


Other product information and resources:


Trial Software Download: Click to Register for download

Submit a Privacyware Support Ticket.

ThreatSentry installation and evaluation session. One-on-one assistance with software installation and configuration. Click here to schedule.

ThreatSentry Process and Components flow diagram.

ThreatSentry Product Sheet.


Back to Top

Have questions? Contact Us Today