Snort mailing list archives
BASE 1.2.1 (kris) released (Security Fix included!)
From: Kevin Johnson <kjohnson () secureideas net>
Date: Sun, 30 Oct 2005 19:52:38 -0500
Hi all- The BASE project team is happy to announce the immediate availability of the 1.2.1 (kris) release of BASE. This release has a fix for the SQL injection problem that has haunted ACID and BASE since their inception. This fix does not address every type of attack vector that exists but does remove the bulk of the problem. We are currently working on the next major version of BASE. The 2.0 code base is being completely rewritten and as such, should not have the issues that plague the existing versions. The BASE team would like to remind everyone that this project is a security tool and as such, remember to use some form of authentication before allowing people into the system. Either the built in authentication or a .htaccess file are recommended. Allowing people to browse your security alerts with out authentication is asking for problems. If you have any questions or comments please feel free to write us, Thanks for all of your support! Kevin Johnson and the BASE project team --------------------- BASE Project Lead http://sourceforge.net/projects/secureideas http://base.secureideas.net The next step in IDS analysis!
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- BASE 1.2.1 (kris) released (Security Fix included!) Kevin Johnson (Oct 30)