Why is this essential?
We regularly conduct audits of Watchdoc to maintain a high level of security.
During the latest audit, critical vulnerabilities were identified.
Security
Major security fixes have been implemented.
To ensure the integrity of infrastructures and data, it is important to stay up to date.
Support
Doxense no longer supports versions prior to v6.0.
If a client is using an outdated version, they are no longer eligible for assistance in case of issues.
Features
Watchdoc is continuously evolving to meet the needs of its users.
Recent versions have introduced many improvements to automate and simplify daily management.
Security: What’s New?
Port 5744 Hardening
We strongly discourage using the remote configuration mode that requires opening port 5744. This port is now closed by default in the latest version.
Web Server Security
A new DSP section groups together all settings related to the Watchdoc Web server and the certificates securing access to it.
New Certificate Management
Available in the Web Server interface, it is now possible to generate or import signed certificates.
PUK Code Usage
We do not recommend authentication via PUK code. Instead, we recommend using user account (login) + PIN code authentication. As such, the PUK method is no longer offered by default.
Password Obfuscation
This feature encrypts passwords stored in the configuration file. In this latest version, password obfuscation is enabled by default.
Performing the Update
Starting from v6.0, updates can be performed by following the procedure available on the documentation website.
For unsupported earlier versions, please contact your partner or Doxense directly.
FAQ
Doxense supports the two most recent versions of Watchdoc: version 6.0 and version 6.1. Any version prior to 6.0 is no longer supported.
If the client has an upgrade contract, access to the latest version is free.
Migration support services are also available as a paid option if needed.
If an attacker has already gained access to the client's information system, they could exploit a security vulnerability in Watchdoc to expand their attack surface on the affected server.
While waiting to update the software, if the Watchdoc application server uses IIS, it is sufficient to close port 5744 to help protect the environment.
Migration is straightforward for customers on version 6.0 or above—simply follow the procedure outlined here. For older versions, we recommend contacting your partner or Doxense for tailored support.
More information
For more information, visit our documentation website or contact us directly.
