Nemesida WAF Release Notes 2024 | Nemesida WAF

Nemesida WAF Release Notes 2024

A list of updates of Nemesida WAF modules for 2024 Information about installing, updating and diagnosing the software is available in the manual.

24.04.2024

Addition to the release: Dynamic module 5.1.3229

Added support for Nginx 1.26.0 Stable due to its release.

22.04.2024

Nemesida WAF Scanner 7.0.251 (nwaf-scanner)
Minor fixes related to the processing of the PID file.
Nemesida WAF API 3.0.566 (nwaf-api)
Fixes related to obtaining specifications created by Nemesida AI MLC when accessing
/nw-api/get_openapi_schema_paths.

17.04.2024

Nemesida WAF Scanner 7.0.249 (nwaf-scanner)
Fixes related to the logging and configuration file processing system.
Nemesida WAF API 3.0.561 (nwaf-api)
Added a check that forbids the simultaneous use of the readOnly and writeOnly parameters with the value true in the OpenAPI specification.

12.04.2024

Dynamic module 5.1.3229 (nwaf-dyn)
Dynamic module:

  • Added compatibility with the satisfy any web-server option.
Dynamic module Angie 5.1.3229 (nwaf-angie)
Dynamic module:

  • Added compatibility with the satisfy any web-server option.
Nemesida WAF Scanner 7.0.243 (nwaf-scanner)
Minor fixes related to running the module in recheck mode.

29.03.2024

Dynamic module 5.1.3202 (nwaf-dyn)
Dynamic module:

  • Minor fixes and improvements.

Nemesida AI MLA:

  • Fixes related to the Nemesida API Firewall;
  • Other minor improvements.
Dynamic module Angie 5.1.3202 (nwaf-angie)
Dynamic module:

  • Added support for Angie 1.5.0;
  • Minor fixes and improvements.

Nemesida AI MLA:

  • Fixes related to the Nemesida API Firewall;
  • Other minor improvements.

26.03.2024

Nemesida WAF Cabinet 3.1.475 (nwaf-cabinet)
  • Minor fixes related to DBMS interaction;
  • Fixes related to the display of an extended description of the reason for blocking the request by the Nemesida API Firewall module with an empty value.
Nemesida AI MLC 6.1.1390 (nwaf-mlc)
  • Improved the mechanism of interaction with RabbitMQ;
  • Improved the mechanism of processing GeoCC data.
Nemesida WAF API 3.0.556 (nwaf-api)
Minor fixes related to the database structure and changes in the pandas library.

07.03.2024

Dynamic module 5.1.3155 (nwaf-dyn)
Dynamic module:

  • Removed support for the mechanism for unlocking an IP address using a captcha (Captcha v1);
  • The mechanism for unlocking an IP address using a captcha (Captcha v2) is outdated and is not recommended for further use;
  • Added support for a new mechanism for unlocking IP addresses using captcha (Captcha v3);
  • Added support for the ICAP protocol for interacting with antivirus solutions;
  • Other fixes and improvements.
Dynamic module Angie 5.1.3155 (nwaf-angie)
Dynamic module:

  • Removed support for the mechanism for unlocking an IP address using a captcha (Captcha v1);
  • The mechanism for unlocking an IP address using a captcha (Captcha v2) is outdated and is not recommended for further use;
  • Added support for a new mechanism for unlocking IP addresses using captcha (Captcha v3);
  • Added support for the ICAP protocol for interacting with antivirus solutions;
  • Other fixes and improvements.

05.03.2024

End of Docker сontainer support: nwaf-web and nwaf-web-pg
Due to the end of support for Docker containers nwaf-web/nwaf-web-pg (Nemesida WAF API, Nemesida WAF Cabinet, PostgreSQL), the release of updates for them is discontinued. It is recommended to perform migration of components to new containers according to the instructions.

01.03.2024

Nemesida WAF Cabinet 3.1.469 (nwaf-cabinet)
Fixes related to the use of python libraries and interaction with the database.
Nemesida WAF API 3.0.550 (nwaf-api)
  • Fixes related to database interaction;
  • Other minor improvements.
Dynamic module 5.1.3139 (nwaf-dyn)
Nemesida AI MLA:

  • Fixes related to functionality changes in the python library netaddr;
  • Fixes related to the operation of the API Firewall;
  • Added blocking of requests during analysis by the API Firewall module if the request body is sent in JSON format with duplicate keys..
Dynamic module Angie 5.1.3139 (nwaf-angie)
Nemesida AI MLA:

  • Fixes related to functionality changes in the python library netaddr;
  • Fixes related to the operation of the API Firewall;
  • Added blocking of requests during analysis by the API Firewall module if the request body is sent in JSON format with duplicate keys.
Nemesida AI MLC 6.1.1353 (nwaf-mlc)
  • Fixes related to sending requests with detected anomalies in the Nemesida WAF API;
  • Fixes related to functionality changes in the python library netaddr;
  • Other fixes and improvements.

29.02.2024

End of component support for Debian 10
Due to the end of support for Python 3.7 (security updates and bug fixes in Python or pip), the release of component updates for the distribution Debian 10 is discontinued. To prevent incorrect interaction of the Nemesida WAF components, we recommend updating the component servers to the distribution versions with the current version of Python. You can check the version status of Python here.

22.02.2024

Nemesida WAF Cabinet 3.1.465 (nwaf-cabinet)
  • Fixed incorrect display of parameter values in the Nemesida WAF settings section;
  • Added support for an extended description of the reason for blocking the request by the Nemesida API Firewall module;
  • Added the ability to delete all entries in the behavioral model settings section;
  • Other fixes and improvements.
Nemesida WAF API 3.0.531 (nwaf-api)
  • Minor fixes related to the functionality of configuring behavioral models;
  • Fixes related to functionality changes in the python library netaddr.

16.02.2024

The update is only available for the package nwaf-dyn-1.25.X.

Dynamic module 5.1.2996 (nwaf-dyn)
Dynamic module:

  • Added support for Nginx 1.25.4 Mainline and Nginx Plus R31.
Dynamic module Angie 5.1.2996 (nwaf-angie)
Dynamic module:

  • Added support for Angie 1.4.1.
Nemesida WAF Scanner 7.0.239 (nwaf-scanner)
Minor fixes related to the processing of the configuration file.