Version 2.9.0-RC1

Increasing version to 2.9.0-RC1.

Author: Felipe Zimmerle

CHANGES

@@ -1,3 +1,45 @@
+18 Nov 2014 - 2.9.0-RC1
+-----------------------
+
+ * `pmFromFile' and `ipMatchFromFile' operators are now accepting HTTPS served
+    files as parameter.
+ * `SecRemoteRules' directive - allows you to specify a HTTPS served file that
+    may contain rules in the SecRule format to be loaded into your ModSecurity
+    instance.
+ * `SecRemoteRulesFailAction' directive - allows you to control whenever the
+    user wants to Abort or just Warn when there is a problem while downloading
+    rules specified with the directive: `SecRemoteRules'.
+ * `fuzzyHash' operator - allows to match contents using fuzzy hashes.
+ * `FILES_TMP_CONTENT' collection - make available the content of uploaded
+    files.
+ * InsecureNoCheckCert - option to validate or not a chain of SSL certificates
+   on mlogc connections.
+ * ModSecurityIIS: ModSecurity event ID was changed from 0 to 0x1.
+   [Issue #676 - Kris Kater and ModSecurity team]
+ * Fixed signature on "status call": ModSecurity is now using the original
+   server signature.
+   [Issues #702 - Linas and ModSecurity team]
+ * YAJL version is printed while ModSecurity initialization.
+   [Issue #703 - Steffen (Apache Lounge) and Mauro Faccenda]
+ * Fixed subnet representation using slash notation on the @ipMatch operator.
+   [Issue #706 - Walter Hop and ModSecurity team]
+ * Limited the length of a status call.
+   [Issue #714 - 'cpanelkurt' and ModSecurity team]
+ * Added the missing -P option to nginx regression tests.
+   [Issue #720 - Paul Yang]
+ * Fixed automake scripts to do not use features which will be deprecated in
+   the upcoming releases of automake.
+   [Issue #760 - ModSecurity team]
+ * apr-utils's LDFALGS is now considered while building ModSecurity.
+   [Issue #782 - Daniel J. Luke]
+ * IIS installer is not considering IIS 6 as compatible anymore.
+   [Issue #790 - ModSecurity team]
+ * Fixed yajl build script: now looking for the correct header file.
+   [Issue #804 - 'rpfilomeno' and ModSecurity team]
+ * mlgoc is now forced to use TLS 1.x.
+   [Issue #806 - Josh Amishav-Zlatin and ModSecurity team]
+
+
 14 Apr 2014 - 2.8.0
 -------------------
 

apache2/msc_release.h

@@ -37,10 +37,10 @@
 #endif
 
 #define MODSEC_VERSION_MAJOR       "2"
-#define MODSEC_VERSION_MINOR       "8"
+#define MODSEC_VERSION_MINOR       "9"
 #define MODSEC_VERSION_MAINT       "0"
 #define MODSEC_VERSION_TYPE        ""
-#define MODSEC_VERSION_RELEASE     ""
+#define MODSEC_VERSION_RELEASE     "-RC1"
 
 #define MODSEC_VERSION_SUFFIX MODSEC_VERSION_TYPE MODSEC_VERSION_RELEASE
 

configure.ac

@@ -6,7 +6,7 @@ dnl
 
 AC_PREREQ(2.63)
 
-AC_INIT([modsecurity], [2.8], [[email protected]])
+AC_INIT([modsecurity], [2.9], [[email protected]])
 
 AC_CONFIG_MACRO_DIR([build])
 AC_CONFIG_SRCDIR([LICENSE])

iis/installer.wxs

@@ -7,7 +7,7 @@
     lightArgs: 
 -->
 <Wix xmlns="http://schemas.microsoft.com/wix/2006/wi" xmlns:util="http://schemas.microsoft.com/wix/UtilExtension">
-    <Product Id="22B04FDB-9BAB-46B0-87B8-A39544ECECD3" Name="ModSecurity IIS" Language="1033" Version="2.8.0" Manufacturer="ModSecurity" UpgradeCode="82F09489-1678-4C38-ADCB-08C3757653DB">
+    <Product Id="22B04FDB-9BAB-46B0-87B8-A39544ECECD3" Name="ModSecurity IIS" Language="1033" Version="2.9.0.1" Manufacturer="ModSecurity" UpgradeCode="82F09489-1678-4C38-ADCB-08C3757653DB">
         <Package Description="ModSecurityISS" Comments="none" InstallerVersion="405" Compressed="yes" InstallPrivileges="elevated" InstallScope="perMachine" />
         <?define ProductName = "ModSecuirty IIS" ?>
         <?if $(sys.BUILDARCH) = x64 ?>