A list of updates of Nemesida WAF modules for 2021. Information about installing, updating and diagnosing the software is available in the section with documentation.


07.07.2021

Nemesida WAF 5.0.20 (nwaf-dyn)
Added support for Nginx 1.21.1 Mainline.

02.07.2021

Nemesida AI Signtest 1.492 (nwaf-st)
  • Updated the list of filters:
    • Added theheaders filter, designed to search for events by the content of request headers;
    • uri filter renamed to url;
    • Removed body filter.
  • The number of events displayed on the page has been increased, the information content has been increased;
  • Other fixes and improvements.

30.06.2021

Nemesida WAF API 1.507 (nwaf-api)
  • Optimized processing of events having BT 7/8/10;
  • Minor fixes and improvements.

For correctly work of the Nemesida WAF API module in Ubuntu 16.04, you need to update the PostgreSQL DBMS to version 9.6 or higher.

04.06.2021

Nemesida AI MLC 5.7.625 (nwaf-mlc)
Improved the speed of processing requests when detecting brute-force attacks and DDoS attacks.
Nemesida WAF API 1.498 (nwaf-api)
The order of migration has been changed.

02.06.2021

For correct operation of the Nemesida WAF, Nemesida WAF API, Nemesida WAF Scanner and Nemesida WAF Cabinet modules, it is recommended to update the packages at the same time.

Nemesida WAF 4.3.658 (nwaf-dyn)
  • Added the LM parameter to set the blocking rules to the LM mode;
  • Added the nwaf_ban_captcha_url parameter to extend the capabilities of the captcha function;
  • Other fixes and improvements.
Nemesida AI MLC 5.7.620 (nwaf-mlc)

Cumulative package of fixes and improvements.

Nemesida WAF Cabinet 2.3.118 (nwaf-cabinet)
  • Expanded display of information about the IP-address;
  • Fixed the h and t filters on the Scannerpage;
  • Added grouping of requests with BT 1 and BT 2 having the same Request ID;
  • Other fixes and improvements.
Nemesida WAF API 1.497 (nwaf-api)
Updates required for the operation of the Nemesida WAF Cabinet module.
Nemesida WAF Scanner 5.0.196 (nwaf-scanner)

The update required to work with the current version of the database.

26.05.2021

Nemesida WAF 4.3.645 (nwaf-dyn)

Added support for NGINX Plus Release 24 (R24), Nginx 1.20.1 Stable and 1.21.0 Mainline.

24.05.2021

Nemesida WAF Signtest 1.476 (nwaf-st)
  • Improved display of events on the main page;
  • Improved API operation mechanism;
  • Other minor improvements and fixes.

30.04.2021

Nemesida WAF 4.3.401 (nwaf-dyn)

Improved mechanism operation of the LM.

23.04.2021

Nemesida WAF API 1.468 (nwaf-api)

Fixed the error that occurs when initializing the attack table of the waf database for the first time.

20.04.2021

For correct operation of the Nemesida WAF, Nemesida AI MLC and Nemesida WAF Signtest modules, it is recommended to update the packages at the same time.

Nemesida WAF Signtest 1.468 (nwaf-st)
  • Improved API performance;
  • Other minor improvements and fixes.
Nemesida AI MLC 5.7.604 (nwaf-mlc)
  • Fixed the problem of accumulating events within a time window when detecting brute-force attacks;
  • Added functionality for detecting DDoS attacks (BT 10);
  • Other fixes and improvements.
Nemesida WAF 4.3.382 (nwaf-dyn)
  • Added support for Nginx 1.20.0 Stable and 1.19.10 Mainline;
  • Renamed nwaf_bf_ban_captcha_host option to nwaf_ban_captcha_host as it is now also used to unblock requests identified by Nemesida AI MLC as BT 10;
  • Renamed nwaf_bf_ban_captcha_path option to nwaf_ban_captcha_path as it is now also used to unblock requests identified by Nemesida AI MLC as BT 10;
  • Added nwaf_ddos_detect_host_lm option to enable LM mode on individual virtual hosts for requests defined by Nemesida AI MLC as BT 10;
  • Added sending messages like BT 10 (DDoS attacks) to Nemesida WAF API.

19.04.2021

For сorrect operation of the Nemesida WAF Cabinet module, it is recommended to simultaneously update the Nemesida WAF API and Nemesida WAF Cabinet packages.

Nemesida WAF API 1.467 (nwaf-api)
  • Added support for requests identified as DDoS attacks.
Nemesida WAF Cabinet 2.3.92 (nwaf-cabinet)
  • Merged Attacks, Brute-force and Internal error pages;
  • Added support for requests identified as DDoS attacks;
  • Improved filters;
  • Other fixes and improvements.

06.04.2021

Nemesida WAF 4.3.354 (nwaf-dyn)
  • Improved signature analysis engine.
Nemesida AI MLC 5.7.565 (nwaf-mlc)
  • Fixed an issue that occurred when training multiple virtual hosts at the same time.
Nemesida WAF API 1.462 (nwaf-api)
  • The problem of duplicate records in MTP mode is fixed.
Nemesida WAF Cabinet 2.3.83 (nwaf-cabinet)
  • Cumulative package of updates and fixes that increase the speed of the module, usability and information content.

31.03.2021

Nemesida WAF 4.3.343 (nwaf-dyn)
  • Added support for Nginx 1.19.9 Mainline;
  • Fixes and improvements for Nemesida AI MLA modules and Nemesida WAF dynamic module.
Nemesida WAF API 1.441 (nwaf-api)
  • Improved mechanism for eliminating duplicate records when using Nemesida AI MLC in MTP mode.
Nemesida AI MLC 5.7.561 (nwaf-mlc)
  • Cumulative package of fixes and improvements.

14.03.2021

Nemesida WAF Signtest 1.457 (nwaf-st)
  • Fixed incorrect display of WAF ID during export;
  • Removed False Negative page.

09.03.2021

Nemesida WAF 4.3.315 (nwaf-dyn)
  • Added support for Nginx 1.19.8 Mainline.
Nemesida WAF 4.3.311 (nwaf-dyn)
  • Improved interaction with the Nemesida AI MLA module;
  • Added multiple message sending to Nemesida WAF API;
  • Minor changes when interacting with Nemesida AI MLC;
  • Minor changes in Nemesida AI MLA;
  • Other fixes and improvements.
Nemesida AI MLC 5.7.535 (nwaf-mlc)
  • Changing the format of transmitted messages to the dynamic module Nemesida WAF;
  • Outputting information about WAF ID to a log file;
  • Other minor changes.
Nemesida WAF API 1.428 (nwaf-api)
  • Fixed the problem of duplicating records saved in the database when using Nemesida AI MLC in MTP mode;
  • Expanded output of events to the log file;
  • Other improvements.

21.02.2021

Nemesida WAF 4.3.271 (nwaf-dyn)
  • The add_banned_ip parameter has been added to the Nemesida WAF Management API, which allows you to include IP addresses in the list of temporarily blocked for block_time in the nwaf_limit parameter;
  • Improved interaction with the Nemesida WAF API module;
  • Added the ability to log messages to a separate file in the Nemesida WAF Management API management interface;
  • Added the ability to use the NoAPI and LM options when creating personal signatures;
  • Added support for Nginx 1.19.7 Mainline;
  • Improved stability of the Nemesida AI MLA module;
  • Other fixes and improvements.

19.02.2021

Nemesida AI MLC 5.7.535 (nwaf-mlc)
  • The mechanism for applying exported requests from Nemesida WAF Signtest has been updated;
  • Added the [training] section to the mlc.conf file to manage the training process;
  • Other minor improvements.

15.02.2021

Nemesida AI MLC 5.7.526 (nwaf-mlc)
  • The problem with incorrect updating of the mlc.conf file after training has been fixed;
  • Other minor improvements.
Nemesida WAF API 1.417 (nwaf-api)
  • Fixed a problem when receiving many messages from the dynamic module Nemesida WAF and Nemesida WAF Scanner.

09.02.2021

Nemesida WAF Cabinet 2.3.30 (nwaf-cabinet)
  • Added Summary page with total summary information about blocked attacks;
  • It changed the mechanism to display an indicator of behavioral models;
  • Optimized module operation with a large number of events;
  • Improved search engine;
  • Added filter for Rule ID and zone BODY;
  • Other minor changes.

09.02.2021

Nemesida WAF 4.3.223 (nwaf-dyn)
  • Cumulative package of fixes and improvements for the Nemesida AI MLA module.
Nemesida AI MLC 5.7.519 (nwaf-mlc)
  • Cumulative package of fixes and improvements.

29.01.2021

Nemesida WAF 4.3.175 (nwaf-dyn)
  • Added functional for using captcha (parameters nwaf_bf_ban_captcha_host and nwaf_bf_ban_captcha_path in nwaf.conf) to unblock the IP-address that received BT 7 (brute force attack);
  • Added functional for Base64 decoding of the request content by the Nemesida AI MLA module (section [deep_inspection] in mla.conf);
  • Other minor changes.
Nemesida AI MLC 5.7.495 (nwaf-mlc)
  • Added functional for Base64 decoding of the request content by the Nemesida AI MLC module (section [deep_inspection] in mlc.conf);
  • Optimized module operation under heavy loads;
  • Implemented the functional of saving the training sample for further training;
  • Other minor changes.

27.01.2021

Nemesida WAF API 1.407 (nwaf-api)
  • Cumulative update package that includes fixes related to receiving events from Nemesida WAF Scanner.

11.01.2021

Nemesida AI MLC 5.7.456 (nwaf-mlc)
  • Improved stability of the module;
  • Improved mechanism for detecting anomalies;
  • Optimized module operation under heavy loads;
  • Multiple fixes and improvements.
Nemesida WAF 4.3.93 (nwaf-dyn)
  • Improved processing of requests coming from the Nemesida AI MLC module;
  • Changed the format of messages sent to the Nemesida WAF API;
  • Improved mechanism for detecting anomalies by the Nemesida AI MLA module, improved stability of operation;
  • Other minor changes.
Nemesida WAF API 1.388 (nwaf-api)
  • Cumulative update package.