What's New in CSI 5 | University of Oregon: Information Security
Information Security Information Services home

CSI 5.0 Migration

When upgrading from CSI 4.1 to CSI 5.0, the following must take place to gain CSI 5.0 functionality.

  • All sub-accounts and shadow accounts will be upgraded automatically at first login. All
    the historical data will also be migrated, which, depending on the number of hosts, could
    take up to 20 minutes.
  • After a successful login and data migration, users will have to deploy a new CSI 5 agents.
    Users do not have to uninstall the previous CSI Agents because they will be upgraded with
    the new CSI Agent package.
  • The current PSI version is not compatible with CSI 5.0, so you will have to download the
    customized PSI installer from the CSI 5.0 Console. All historical data will be migrated
    over during the intial login, but you will not be able to utilize any of the new features
    associated with the CSI 5.0.

What's new in Secunia CSI 5

The following changelog has been modified to show specific features of Secunia's new CSI 5 console.

Scan Agent for Apple Mac OS X

With the Secunia CSI 5.0 it is now possible to scan Apple Mac OS X and have the scan results
displayed in the user interface. The new agent can be installed on the Mac host in both "command
line" and "service" mode, in a similar way to how the Windows equivalent works.

Enhanced Secunia Personal Software Inspector (PSI) Integration

The integration with the Secunia PSI has evolved from the previous implementation. It now allows
for enhanced management of the connected Secunia PSI installations. This includes:

  • Control of scan frequency
  • Control of check-in frequency
  • If auto-updates should be enabled or not
  • Approval of missing updates for connected Secunia PSI users

Secunia CSI API - Local Database Access

Secunia appreciates openness, which is why we have introduced the Secunia CSI API. The API's
"Local Database Console" provides access to, and interaction with, Secunia's underlying database
containing all scan results, scan history, sites, and configuration settings as presented and used
in the Secunia CSI 5.0 user interface.

Secunia Package System (SPS) - Enhanced WSUS integration

The Secunia Package System (SPS) enables the creation of packages that are fully customizable,
meaning that it is possible to control every aspect of the package (update) that is deployed and
executed on the client. Such flexibility enables you to control the execution flow, add multiple
files to the same update package, perform configuration changes, and so forth, all through a simple
wizard.

Full 32-bit and 64-bit support

Packages for both 32-bit and 64-bit systems can easily be created and defined during the package
creation wizard, thus enabling simplified deployment of patches to 32-bit and 64-bit systems.

Program Uninstall

Due to the flexibility of the new Secunia Package System (SPS), it is now also possible to create
"uninstall packages" for installed software that support silent uninstallation or where a custom
uninstaller may be used. This effectively enables customers to remotely uninstall unwanted programs
across their client base.

Zombie Files Concept

The Secunia CSI 5.0 now supports Zombie File detection. This allows the Secunia CSI back-end to
automatically filter out scan results which are likely "left-over" files from a previous installation
that do not pose any immediate threat to your clients.

Warning When Creating Patches Based on Old Scan Results

The Secunia CSI 5.0 will show a warning message if packages are created based on old scan results,
thus recommending a rescan before a package is created. This is carried out in order to avoid packages
being created based on old and potentially out-of-date scan results.

De-register CSI / Permanently Logout

It is now possible to "de-register" your Secunia CSI 5.0 installation. This will remove local login
credentials and settings from the host. This is useful for customers with multiple accounts or if the
Secunia CSI 5.0 has been used temporarily on a host.