Re: [mod-security-users] ModSecurity 2.0.0-dev1 Question

[Alberto G. I. <ag...@in...>]

On Sat, Mar 18, 2006 at 08:57:56PM +0000, Ivan Ristic wrote:
> Zach Roberts wrote:
> > "P.S. There is no support for Apache 1.x in this development release.=
"
> >=20
> > I hadn't had time to look into the 2.0.0 release for a bit aside from
> > reading the notes on the mailing list.
> >=20
> > Does this mean that 2.0.0 is going to support Apache 2+ only or will =
it
> > be made for 1.3 too?
>=20
>   I haven't decided yet. But I can tell you that I have no need for
>   ModSecurity to run with Apache 1.3.x and that maintaining two
>   versions requires a lot of my time.
>=20
>   It would be nice to know how many people are actually running
>   ModSecurity with Apache 1.3.x, but that's very difficult to
>   tell considering ModSecurity is an open source project. Perhaps
>   a survey would be a good idea...
>=20

My new servers usually end up with Apache 2.x, but the ones already
working (and perfectly) are mostly using Apache 1.3.x and I won't bother
on moving them in some years. I guess this kind of situation is quite
common.

But you asked for stats, so here there are some:
http://popcon.debian.org/by_inst  (WARNING: 5 MB file)

To sum up:
mod-security-common              245 installations=20
(common package for both the Apache 2.x and the Apache 1.3.x packages)
libapache2-mod-security          175 installs
libapache-mod-security            99 installs
(probably more than one has both installed)

Also to be mentioned that the tool used to make this stats was made an
install decision on Sarge (new installs) so probably there's a bunch of
Woodys using it not listed (i.e. my oldest servers).

Regards,

Alberto

--=20
Alberto Gonzalez Iniesta    | Formaci=F3n, consultor=EDa y soporte t=E9cn=
ico
agi@(inittab.org|debian.org)| en GNU/Linux y software libre
Encrypted mail preferred    | http://inittab.com

Key fingerprint =3D 9782 04E7 2B75 405C F5E9  0C81 C514 AF8E 4BA4 01C3