github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2026-01-13 06:57:10 +03:00
Code Issues Packages Projects Releases Wiki Activity

Retag 2.5.9 with proper CHANGES and docs.

Browse Source
This commit is contained in:
b1v1r
2009-03-12 06:14:58 +00:00
parent e56ce43946 9df6afce9c
commit 5a902f180f
2 changed files with 4 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
CHANGES
View File

@@ -1,6 +1,10 @@
05 Mar 2009 - 2.5.9 05 Mar 2009 - 2.5.9
------------------- -------------------
* Fixed parsing multipart content with a missing part header name which
would crash Apache. Discovered by "Internet Security Auditors"
(isecauditors.com).
* Added ability to specify the config script directly using --with-apr * Added ability to specify the config script directly using --with-apr
and --with-apu. and --with-apu.

9
doc/modsecurity2-apache-reference.xml
View File

@@ -5927,15 +5927,6 @@ SecRule REQUEST_METHOD "!<emphasis>@within %{tx.allowed_methods}</emphasis>" t:l
being persisted. This keeps counter data consistent even if the counter being persisted. This keeps counter data consistent even if the counter
was modified and persisted by another thread/process during the was modified and persisted by another thread/process during the
transaction.</para> transaction.</para>
<para>Please note that ModSecurity does not implement atomic updates of
persistent variables at this time. Variables are read from storage
whenever <literal>initcol</literal> is encountered in the rules and
persisted at the end of request processing. On busy servers requests
often run in parallel, leading to situations where one request
overwrites the changes made by another request. We anticipate
implementing atomic updates of counter values in a future
version.</para>
</note> </note>
<note> <note>