Thread: [Mod-security-developers] A list of small things to fix in ModSecurity
Brought to you by:
victorhora,
zimmerletw
From: Ivan R. <iva...@gm...> - 2009-08-28 09:42:56
|
I maintain a list of small things I want to fix in ModSecurity. They are all either bugs or wrong design decisions and I think the next non-patch version should be the version in which all of these are fixed. Please comment. You can find the list here: http://docs.google.com/Doc?docid=0AcC0dgmab8WrZGN4MmZtZ2tfODJqZGpjZmdnNw&hl=en (Anyone should be allowed to edit it, so go ahead. Please only leave comments.) -- Ivan Ristic Security assessment of your SSL servers https://www.ssllabs.com/ssldb/ |
From: Brian R. <bre...@gm...> - 2009-08-28 17:33:06
|
On Fri, Aug 28, 2009 at 2:42 AM, Ivan Ristic<iva...@gm...> wrote: > I maintain a list of small things I want to fix in ModSecurity. They > are all either bugs or wrong design decisions and I think the next > non-patch version should be the version in which all of these are > fixed. Please comment. I agree with all of these (I think). > > You can find the list here: > > http://docs.google.com/Doc?docid=0AcC0dgmab8WrZGN4MmZtZ2tfODJqZGpjZmdnNw&hl=en > > (Anyone should be allowed to edit it, so go ahead. Please only leave comments.) I made some comments, but I'd rather people used the tracker for this. In fact many of these items were in the tracker (at least when we had the internal "trac" one, but they may not have gotten migrated over when we went to Jira). -B |
From: Ivan R. <iva...@gm...> - 2009-08-28 17:41:24
|
On Fri, Aug 28, 2009 at 6:32 PM, Brian Rectanus<bre...@gm...> wrote: > On Fri, Aug 28, 2009 at 2:42 AM, Ivan Ristic<iva...@gm...> wrote: >> I maintain a list of small things I want to fix in ModSecurity. They >> are all either bugs or wrong design decisions and I think the next >> non-patch version should be the version in which all of these are >> fixed. Please comment. > > I agree with all of these (I think). Excellent! >> You can find the list here: >> >> http://docs.google.com/Doc?docid=0AcC0dgmab8WrZGN4MmZtZ2tfODJqZGpjZmdnNw&hl=en >> >> (Anyone should be allowed to edit it, so go ahead. Please only leave comments.) > > I made some comments, but I'd rather people used the tracker for this. No problem, I will add them to the tracker individually. > In fact many of these items were in the tracker (at least when we had > the internal "trac" one, but they may not have gotten migrated over > when we went to Jira). Yes, they were. We didn't migrate most of them, but it would be nice to have access to the list from Trac, just to see that we're not missing something we already discussed and designed. -- Ivan Ristic Security assessment of your SSL servers https://www.ssllabs.com/ssldb/ |