dotDefender v4.1 for Apache – Release Notes
February, 2011
This document describes the new features of this release and important changes since the previous one.
TABLE OF CONTENTS:
· About this release
· dotDefender v4.1 for Apache
· Known issues and workarounds
· Fixed issues
About this release
Applicure Technologies is proud to announce dotDefender version 4.1. This latest release has enhanced capabilities, including:
· Better performance, durability and speed.
· Protection of hundreds of websites and Web applications with minimal impact on your Web servers' performance.
· Integration with Central Management v3: Now save time and manage multiple Web servers. Remote monitoring, logging and configurations are enabled using the dotDefender Central Management v3.
· Configuration changes, attack monitoring and reporting on multiple Web servers.
dotDefender v4.1 for Apache
dotDefender v4.1 for Apache includes the following new features:
· New Graphical User Interface
dotDefender is now managed via a sleek Web 2.0 graphical user interface.
Platform configuration differences between Windows and Linux have been bridged and consolidated under the same user interface and configuration options.
dotDefender for IIS supports Mozilla FireFox, Google Chrome and Microsoft Internet Explorer 8 and higher.
· Rule-Set Templates
It is now possible to import / export rule templates from any website profile to another.
This allows users to share their rules throughout the organization, across platforms.
· Response Filtering
Exit rules may now be specified in order to filter outgoing traffic as well as incoming requests. This will enable data leakage prevention in addition to improved infrastructure masking. System errors, credit card and social security numbers are some examples of content that may be filtered.
· Web Services API
All available configuration options within dotDefender are now exposed via Web services, and may be integrated with existing enterprise applications for information sharing.
Known issues and workarounds
The following issues are known to Applicure, and at the moment, workarounds for these issues are the way to overcome them. These issues will be fixed and implemented in future releases.
· "Apply Changes" button:
Numerous uses of the "Apply Changes" button might cause an increase in memory.
Workaround: Use the button after ALL changes in settings have been made.
· libXML2 issue:
Under certain configurations, it is important to use a specific libXML library.
Workaround: Contact the Support Team for instructions.
· suEXEC integration:
Under certain configurations, it is important to integrate dotDefender with suEXEC.
Workaround: A built-in script, which comes with the installation, must be executed. Contact the Support Team or visit our knowledgebase for instructions. (http://applicuresupport.helpserve.com/index.php?_m=knowledgebase&_a=viewarticle&kbarticleid=29&nav=0,13).
· Site generation issue:
After dotDefender has already been installed, newly added websites will sometimes not appear in the interface under the sites list.
Workaround: A built-in script, which comes with the installation, must be executed. Contact the Support Team for instructions.
Fixed issues
This section contains known issues that have been fixed and implemented in dotDefender version 4.1.
· Fixed segmentation fault in the "get_headers" function.
· Fixed potential memory leak when using "get_headers" function.
· Fixed Default Security Profile flags.
· Change default operating mode from "Stopped" to "Monitoring".
· Fixed segmentation fault in the "Session Protection" feature.
· dotDefender for Apache supports Internet Explorer 8 and higher.
· Monitor-only mode is now possible to be set even if dotDefender is not licensed. This operating mode allows the user to review and examine the logged events that the dotDefender has monitored. Note: dotDefender will not be blocking attacks.
Applicure Technologies Ltd. 3 of 3