Is there any plan to get pcidss/v2.6 distributed to the current/stable versions of the Debian repositories?
Ubuntu 12.04 (precise) currently provides 2.5 Ubuntu 14.04 (trusty) currently provides 2.6 Debian 7 (wheezy) currently provides 2.6 I ended up compiling my own amd64 .deb package of pcidss/v2.6 for my systems but it would be nice if the packages being distributed by default were up to date. Also, I encountered some strange behavior when I made the switch. I use SNI to host multiple sites and my backend servers are configured to issue redirects on these alternate hostnames. In the 2.6 package from Ubuntu 14.04 this all worked fine, but in pcidss/v2.6 many of the hostnames began redirecting unto themselves. Since pound was the only variable that had changed, I configured it to issue the redirects. While this is no doubt the better solution since the redirects no longer goto my backend servers it caught me off guard so I figured I'd mention it here in case any one else has a similar configuration and is preparing to undertake the same upgrade path. Thanks, Todd On Oct 23, 2014, at 6:58 AM, Joe Gooch wrote: > If you want the features implemented here that don't exist in 2.6, no. > Development moves forward. > > If you just need the SSL fixes, you should be running my pcidss/v2.6 > branch on github. (Which I responded with when this message went out) > > It's well documented in the archives if you need further information. > > Joe > > On 10/22/14, 6:50 PM, David Dreezer wrote: >> Will 2.6 be patched/updated? I don't feel really good about the idea of >> putting 2.7d into production if it is still considered of beta quality. >> >> Thank you, >> >> David Dreezer >> Social Strata, Inc. >> >> >> >> >> >> Robert Segall wrote: >>> This is to announce the release of Pound v2.7d. This is an experimental >>> version. Changes since version 2.7c: >>> >>> Enhancements: >>> - added "Disable PROTO" directives (fix for Poodle vulnerability) >>> - added Cert, Disable and Cipher directives for HTTPS back-ends. The >>> directive HTTPS "cert" no longer supported. >>> >>> Bug fixes: >>> - fixed address comparison for RewriteLocation (IPv4/IPv6 problem - >>> Christopher Bartz) >>> >>> Many thanks to all contributors. >>> >>> The software is at version 2.7d (beta quality). Further testing >>> (especially under heavy loads), improvements and suggestions are >>> welcome. >> -- >> To unsubscribe send an email with subject unsubscribe to [email protected]. >> Please contact [email protected] for questions. >> > > > -- > To unsubscribe send an email with subject unsubscribe to [email protected]. > Please contact [email protected] for questions. -- To unsubscribe send an email with subject unsubscribe to [email protected]. Please contact [email protected] for questions.
