github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00
Code Issues Packages Projects Releases Wiki Activity

Document changes

Browse Source
This commit is contained in:
ivanr 2009-12-14 18:48:35 +00:00
parent d1c38bf029
commit ea4b75d8b1
1 changed files with 11 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
CHANGES
View File

@ -2,23 +2,29 @@
12 Dec 2009 - trunk 12 Dec 2009 - trunk
------------------- -------------------
* Fixed SecAction not working when CONNECT request method is used
(MODSEC-110). [Ivan Ristic]
* Added the URLENCODED_ERROR flag, which is raised whenever invalid URL * Added the URLENCODED_ERROR flag, which is raised whenever invalid URL
encoding is encountered in the query string or in the request body encoding is encountered in the query string or in the request body
(but only if URLENCODED request body processor is used). [Ivan Ristic] (but only if URLENCODED request body processor is used). (MODSEC-111)
[Ivan Ristic]
* Removed the obsolete PDF UXSS functionality. [Ivan Ristic] * Removed the obsolete PDF UXSS functionality. (MODSEC-96) [Ivan Ristic]
* Renamed normalisePath to normalizePath and normalisePathWin to * Renamed normalisePath to normalizePath and normalisePathWin to
normalizePathWin. Kept the previous names for backward compatibility. normalizePathWin. Kept the previous names for backward compatibility.
[Ivan Ristic] (MODSEC-103) [Ivan Ristic]
* Moved phase 1 to be run in the same Apache hook as phase 2. This means * Moved phase 1 to be run in the same Apache hook as phase 2. This means
that you can now have phase 1 rules in <Location> tags and, more that you can now have phase 1 rules in <Location> tags and, more
importantly, override server configuration in <Location> and others. importantly, override server configuration in <Location> and others.
[Ivan Ristic] (MODSEC-98) [Ivan Ristic]
* Renamed the sanitise family of actiont to sanitize. Kept the old variants * Renamed the sanitise family of actiont to sanitize. Kept the old variants
for backward compatibility. [Ivan Ristic] for backward compatibility. (MODSEC-95) [Ivan Ristic]
* Improve the logging of the ctl action. (MODSEC-99) [Ivan Ristic]
* Do not escape quotes in macro resolution and only escape NUL in setenv * Do not escape quotes in macro resolution and only escape NUL in setenv
values. values.