[Modsecurity] New releases
Michael Shinn
mike at gotroot.com
Mon May 15 09:52:50 EDT 2006
Actually quite a few over the weekend, just havent had time to finish
the diffs yet. Some of these include new signatures for some very
popular applications that have known vulnerabilities in, to include
SugarCRM. Please let me know if you have any problems with the latest
signatures.
Full automation of this process is coming soon. Something more like
clamav's update process, and yep you will be able to define your
rulesets so that new rules don't clobber ones you modify or turn off.
Will still be some time before that is finished, but the code is coming
along nicely.
RBLs will be supported officially as soon as 2.0 is out of dev, at the
very least badips.conf will be gone. Its in RBL form now, so if you
want to use the RBL, yet me know. Keep in mind the 2.0 code may have
bugs.
--
Michael T. Shinn KeyID:0xDAE2EC86
Key Fingerprint: 1884 E657 A6DF DF1B BFB9 E2C5 DCC6 5297 DAE2 EC86
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xDAE2EC86
Got Root? http://www.gotroot.com
modsecurity rules: http://www.modsecurityrules.com
Troubleshooting Firewalls: http://troubleshootingfirewalls.com
More information about the Modsecurity
mailing list