diff --git a/CHANGES b/CHANGES index 4a1c7e7e..ef2ae267 100644 --- a/CHANGES +++ b/CHANGES @@ -1,3 +1,45 @@ +18 Nov 2014 - 2.9.0-RC1 +----------------------- + + * `pmFromFile' and `ipMatchFromFile' operators are now accepting HTTPS served + files as parameter. + * `SecRemoteRules' directive - allows you to specify a HTTPS served file that + may contain rules in the SecRule format to be loaded into your ModSecurity + instance. + * `SecRemoteRulesFailAction' directive - allows you to control whenever the + user wants to Abort or just Warn when there is a problem while downloading + rules specified with the directive: `SecRemoteRules'. + * `fuzzyHash' operator - allows to match contents using fuzzy hashes. + * `FILES_TMP_CONTENT' collection - make available the content of uploaded + files. + * InsecureNoCheckCert - option to validate or not a chain of SSL certificates + on mlogc connections. + * ModSecurityIIS: ModSecurity event ID was changed from 0 to 0x1. + [Issue #676 - Kris Kater and ModSecurity team] + * Fixed signature on "status call": ModSecurity is now using the original + server signature. + [Issues #702 - Linas and ModSecurity team] + * YAJL version is printed while ModSecurity initialization. + [Issue #703 - Steffen (Apache Lounge) and Mauro Faccenda] + * Fixed subnet representation using slash notation on the @ipMatch operator. + [Issue #706 - Walter Hop and ModSecurity team] + * Limited the length of a status call. + [Issue #714 - 'cpanelkurt' and ModSecurity team] + * Added the missing -P option to nginx regression tests. + [Issue #720 - Paul Yang] + * Fixed automake scripts to do not use features which will be deprecated in + the upcoming releases of automake. + [Issue #760 - ModSecurity team] + * apr-utils's LDFALGS is now considered while building ModSecurity. + [Issue #782 - Daniel J. Luke] + * IIS installer is not considering IIS 6 as compatible anymore. + [Issue #790 - ModSecurity team] + * Fixed yajl build script: now looking for the correct header file. + [Issue #804 - 'rpfilomeno' and ModSecurity team] + * mlgoc is now forced to use TLS 1.x. + [Issue #806 - Josh Amishav-Zlatin and ModSecurity team] + + 14 Apr 2014 - 2.8.0 ------------------- diff --git a/apache2/msc_release.h b/apache2/msc_release.h index 648d35d8..b34d80e1 100644 --- a/apache2/msc_release.h +++ b/apache2/msc_release.h @@ -37,10 +37,10 @@ #endif #define MODSEC_VERSION_MAJOR "2" -#define MODSEC_VERSION_MINOR "8" +#define MODSEC_VERSION_MINOR "9" #define MODSEC_VERSION_MAINT "0" #define MODSEC_VERSION_TYPE "" -#define MODSEC_VERSION_RELEASE "" +#define MODSEC_VERSION_RELEASE "-RC1" #define MODSEC_VERSION_SUFFIX MODSEC_VERSION_TYPE MODSEC_VERSION_RELEASE diff --git a/configure.ac b/configure.ac index da69e8a6..0b92b52d 100644 --- a/configure.ac +++ b/configure.ac @@ -6,7 +6,7 @@ dnl AC_PREREQ(2.63) -AC_INIT([modsecurity], [2.8], [support@modsecurity.org]) +AC_INIT([modsecurity], [2.9], [support@modsecurity.org]) AC_CONFIG_MACRO_DIR([build]) AC_CONFIG_SRCDIR([LICENSE]) diff --git a/iis/installer.wxs b/iis/installer.wxs index 744c506c..695d1eec 100644 --- a/iis/installer.wxs +++ b/iis/installer.wxs @@ -7,7 +7,7 @@ lightArgs: --> - +