Taras,
Please read inline,
On Thu, Jan 27, 2011 at 5:49 AM, Taras <ox...@oxdef.info> wrote:
> Hi, all!
>
> It is good and in same time discrepant feature.
>
> pros
> user now don't need to make every time 'svn up' and will have fresh w3af
Agreed. Also, users that don't even know about SVN, or performed a
checkout, will have the latest version.
> cons
> 1. svn up from trunk is not always good idea because it can make problems for
> user (trunk usually is for development)
Yep, but we're very very very careful about NOT breaking the
trunk. Plus we're working on a feature for reverting to the latest
working version before the update ( ./w3af_console -r ).
> 2. what about packaged versions of w3af, e.g. debs in Debian/Ubuntu? User
> must have root privs to write
> to folders where w3af is installed
Yes, and it makes sense. If the user running w3af is simply a
user, he won't have the privs to update it and can run the latest
version determined by root. If you're root and want to update it, then
do it.
> and furthermore it will break conception of app's packaging and updates on
> such distribs
When there is a new version of w3af that requires new 3rd party
libraries, the auto-update will NOT update. Then it will make sense to
do something like "sudo apt-get update" and get the latest w3af.
>> @Javi: Great job!
>> @all: please send us feedback!
>>
>> Regards,
>> --
>> Andres Riancho
>>
>> El ene 26, 2011 7:38 p.m., "Javier Andalia" <javier_anda...@rapid7.com>
>> escribió:
>>
>> List,
>>
>> We are pleased to announce that the auto-update feature [1] is now
>> available in w3af for both the 'console' and 'gui' modes.
>> From now on users won't need to worry about explicitly executing the
>> "svn update" command as w3af will do it for them behind the scenes. For
>> more information please read the user's guide.
>>
>> Important: After you download our last revision (r3985), w3af will ask
>> you to install the pysvn lib. You'll need it to make this feature work
>> correctly.
>>
>> So that's it for now. Hope you find it useful. Use it. Test it. Even
>> make it crash! And let us know your suggestions to improve it :)
>>
>> Thanks,
>>
>> [1] https://sourceforge.net/apps/trac/w3af/ticket/160842
>>
>> --
>> Javier Andalia - Python Developer
>>
>> Gorostiaga 2355 - Office 203
>> Buenos Aires. Argentina
>>
>> Rapid7 Recipient of Highest Ranking in Vulnerability Management from Gartner
>> and Forrester:
>> http://www.rapid7.com/resources/gartner_marketscope.jsp
>> http://www.rapid7.com/resources/forrester-wave.jsp
>>
>>
>> ------------------------------------------------------------------------------
>> Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
>> Finally, a world-class log management solution at an even better price-free!
>> Download using promo code Free_Logger_4_Dev2Dev. Offer expires
>> February 28th, so secure your free ArcSight Logger TODAY!
>> http://p.sf.net/sfu/arcsight-sfd2d
>> _______________________________________________
>> W3af-develop mailing list
>> W3af-develop@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/w3af-develop
>
>
> --
> Taras
> http://oxdef.info
>
--
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af
------------------------------------------------------------------------------
Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
Finally, a world-class log management solution at an even better price-free!
Download using promo code Free_Logger_4_Dev2Dev. Offer expires
February 28th, so secure your free ArcSight Logger TODAY!
http://p.sf.net/sfu/arcsight-sfd2d
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop
