15/5/2006 1.9.4
---------------
* No changes since 1.9.4-rc1.
27/4/2006 1.9.4-rc1
-------------------
* Request headers that are analysed are now fetched from the
header cache. This prevents the potential headers table (the
real one) being changed on a rule match - which is only an
issue in detection-only mode.
* Enhanced memory utilisation. Plus, the memory for the request
body is now allocated from the OS directly so that it can be
released back to it faster (Apache keeps the memory for itself
even after it is freed.)
* Added an one-liner to deal with weird IE multipart/form-data
behaviour.
10/4/2006 1.9.3
---------------
* No changes since 1.9.3-rc2.
23/3/2006 1.9.3-rc2
-------------------
* Fixed malformed serial audit log entry problem.
* Strict checking of what is supplied for the "severity" action.
Prettier output in the logs (text instead of numbers).
* Improved detection of the response protocol version.
6/3/2006 1.9.3-rc1
------------------
* Improved the internal chroot feature to work with mod_fastcgi,
mod_fcgi, mod_cgid (testers welcome).
* Response headers are now escaped in the concurrent audit log
* New action: logparts (adjust the audit log parts setting).
* Added support for multiple messages per transaction.
* Added SCRIPT_BASENAME, REQUEST_BASENAME.
* Implemented variable caching to reduce memory consumption. Large memory
savings can be achived but only when the rule set is significantly
large. Not noticable for "normal" installations.
* Fixed the "Server" trailer message in the concurrent audit log.
* Removed the extra newline added to the index file by the concurrent
audit logger.
* Fixed a problem in the action list parser which caused parsing
to stop after any action with a quoted parameter.
* (Apache 2.x only) Fixed a response buffering problem that
manifested as partial loss of output when virtual subrequests
are used (it is the output from the virtual subrequests that
would be lost).
* Deprecated DynamicOnly because it is inherently difficult
to use and often unpredictable.
16/1/2006 1.9.2
---------------
* Increased allowed multipart header size to 4096.
* Fixed small bugs in the multipart code that would (in some
rare cases) lead to incorrectly interpreting the uploaded
files.
* (Apache 2.x only) Fix for a crash in the serial audit logger.
* (Apache 2.x only) Fix to compile on Debian 3.1 (they are not using
stock Apache).
* Fixed a small concurrency issue.
* Chained rules metadata now appears in the logs.
* Restrict the length of each line in the concurrent audit
logger index when logging over a pipe.
* New concurrent audit logger trailer headers: Server, Action, Producer.
* Added compile-time directive (DISABLE_SUEXEC) to disable
process creation through suEXEC.
* Added support for compilation with PCRE (instead of the
native Apache regex library) to the Apache 1.3.x version
(Apache 2.x already uses PCRE). PCRE is much faster.
* Fixed a bug in the concurrent audit logging code where partial
audit log entry files were being created for all requests.
* Fixed bugs (in the Apache 2.x branch) to make audit logging
through a pipe work.
LinkBack URL
About LinkBacks
How can I update my modsecurity version
Reply With Quote
