|
Written by scott
|
|
Saturday, 21 July 2007 |
So apologies first for missing the beta release date on the 20th. The plan was to get the product ready for the public beta Friday the 20th, obviously that didn't happen. Mike pushed for a mod_security update before the beta, and on the web interface side, Jim (Web Gui Guru) needed me to make a major, unexpected, change to the data layer. This goes to show that no release schedule survives contact with the user interface intact.
The silver (gold? platinum? diamond?) lining of this delay was none other than a solution to the mod_security performance/memory leak problems that we had been facing in mod_security 2.x. You're reading this very page on a system running more than 14,000 rules. To put that in perspective, before we couldn't do more than around 100. We're still not up to the high water mark set by the gotroot.com box (running more than 22,000 rules), but this is just a huge improvement over what we had before. Long story short, the Beta release date is now set for 31 July.
And now for some ubiquitous screenshots of the mod_security rules in action: Anti-Spam rules in action. This is the largest rule class, followed by the Just In Time Patches (JITP). One neat side effect of the Referrer spam rules (see screenshot) is that we quickly adapted them for catching people deep linking to the iCE image archives. Just goes to show that tools like this can go well outside the realm of improving your security posture.
Only registered users can write comments.
Please login or register. Powered by AkoComment 2.0.3! |
|
Last Updated ( Saturday, 21 July 2007 )
|
