Re: [Mod-security-developers] Schedule for v2.8.1?
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [Mod-security-developers] Schedule for v2.8.1?
|
From: Felipe C. <FC...@tr...> - 2014-10-23 02:24:16
|
Hey, Thanks for the interest! We have postponed this next release due to the opened merge requests and bugs that we desire to close before any new release, specially on our nginx version. Since we release all platforms together, we were wishing to have those problems addressed first. But time has passed and we were not able to work on some of those issues yet, thus, I think that we will need to release anyway and add "known issues" as part of the release notes. It seems that release them all together (IIS, Apache, Nginx, Standalone) is hindering more than helping, since we have to coordinate the releases, benefits, and new features on all of these platforms. I hope to have a version for the core and others versions for each independent server/platform or specific implementation on further "major changes" in ModSecurity (not going to happen for this next release), allowing us to address the release/bugs in a faster way. As the release also involves community work (specially packagers), and we have some new features that are about to be merged into our master, as example of `ssdeep' support (@fuzzyHash operator), I would like to merge these new features before the release. We also have some merge requests and other minor bugs that can be closed and included on the release. Considering this new features and bug fixes, I would say that mid-november (3 weeks from now) sounds like a good date for a release candidate. I would love to count on you to help us testing it. Br., Felipe "Zimmerle" Costa Security Researcher, SpiderLabs Trustwave | SMART SECURITY ON DEMAND www.trustwave.com <http://www.trustwave.com/> On 10/22/14 4:55 PM, "Christian Folini" <chr...@ti...> wrote: >I'd sure second that! > >Christian > >On Wed, Oct 22, 2014 at 12:51:21PM +0200, Walter Hop wrote: >> Hi all, >> >> I¹m wondering if there¹s any data on a release schedule for v2.8.1. >> >> The 2.8.0 release had a showstopper bug in IP matching for me (github >>issue 706) which is long fixed in master. I¹d really like to update the >>FreeBSD port to a recent version (currently at 2.7.7), but I¹m torn, as >>I can¹t use 2.8.0 myself currently, and I really would prefer not to add >>downstream patches. >> >> If there¹s not much happening feature wise, would it be possible to do >>a small release with only some fixes? >> >> Cheers! >> WH >> >> -- >> Walter Hop | PGP key: >>http://scanmail.trustwave.com/?c=4062&d=zIvI1FKjiXHeAmsnWPRb7sYZPkGr9Bttz >>RZgHnSsWQ&s=5&u=https%3a%2f%2flifeforms%2enl%2fpgp >> > >> >>------------------------------------------------------------------------- >>----- >> Comprehensive Server Monitoring with Site24x7. >> Monitor 10 servers for $9/Month. >> Get alerted through email, SMS, voice calls or mobile push >>notifications. >> Take corrective actions from your mobile device. >> >>http://scanmail.trustwave.com/?c=4062&d=zIvI1FKjiXHeAmsnWPRb7sYZPkGr9Bttz >>RFhS3SuVw&s=5&u=http%3a%2f%2fp%2esf%2enet%2fsfu%2fZoho > >> _______________________________________________ >> mod-security-developers mailing list >> mod...@li... >> >>http://scanmail.trustwave.com/?c=4062&d=zIvI1FKjiXHeAmsnWPRb7sYZPkGr9Bttz >>RBgFneoCg&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinf >>o%2fmod-security-developers >> ModSecurity Services from Trustwave's SpiderLabs: >> https://www.trustwave.com/spiderLabs.php > > >-------------------------------------------------------------------------- >---- >_______________________________________________ >mod-security-developers mailing list >mod...@li... >http://scanmail.trustwave.com/?c=4062&d=zIvI1FKjiXHeAmsnWPRb7sYZPkGr9BttzR >BgFneoCg&s=5&u=https%3a%2f%2flists%2esourceforge%2enet%2flists%2flistinfo% >2fmod-security-developers >ModSecurity Services from Trustwave's SpiderLabs: >https://www.trustwave.com/spiderLabs.php ________________________________ This transmission may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. |
