Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: ModSecurity 2.1.2 released |
|
| Author |
|
Steffen
Moderator
Joined: 15 Oct 2005
Posts: 3092
Location: Hilversum, NL, EU
|
 Posted: Mon 06 Aug '07 21:29 Post subject: ModSecurity 2.1.2 released |
 |
|
ModSecurity 2.1.2 has been released. The Win32 binary is available for immediate download from www.apachelounge.com/download/ .
ModSecurity for 2.1.2 is a patch release that fixes several small issues discovered in previous versions and upgrades the bundled rules to the latest Core Rules version.
Changes since 2.1.1 are:
* Enhanced ability to alert/audit failed requests.
* Do not trigger "pause" action for internal requests.
* Fixed issue with requests that use internal requests. These had the potential to be intercepted incorrectly when other Apache httpd modules that used internal requests were used with mod_security.
* Added Solaris and Cygwin to the list of platforms not supporting the hidden visibility attribute.
* Fixed decoding full-width unicode in t:urlDecodeUni.
* Lessen some overhead of debugging messages and calculations.
* Do not try to intercept a request after a failed rule. This fixes the issue associated with an "Internal Error: Asked to intercept request but was_intercepted is zero" error message.
* Added SecAuditLog2 directive to allow redundent concurrent audit log index files. This will allow sending audit data to two consoles, etc.
* Small performance improvement in memory management for rule execution. |
|
| Back to top |
|
|
|
|
|
|
