PHP agent Release Notes


Sqreen PHP extension

[1.0.2] 2017-10-12

  • Improve XSS detection

[1.0.1] 2017-10-06

  • Logging improvement

[1.0] 2017-10-06

  • Fix log file permissions
  • Better handling of network issues
  • Fix spurious error messages

[0.12.2] 2017-10-05

  • Correctly close log file after apache2 reload

[0.12.1] 2017-10-03

  • Fix apache graceful restart
  • Log in only one file

[0.12] 2017-09-27

  • Add support for composer packages
  • Add support for the protection mode
  • Support for eval injection protection
  • Improve performance of backtrace fetching
  • Fix an issue with the PostreSQL hook
  • Fix wrong metrics being sent

[0.11] 2017-09-18

  • Support whitelist
  • Global performance improvement
  • Send parsed params to the daemon
  • Performance improvement on PHP processes creation
  • Support for PostgreSQL

[0.10.1] 2017-09-06

  • Fix Debian setup issues
  • Support backtraces
  • Better connection failure handling
  • Fix extension version dislpay
  • Do not require mysqnld anymore

[0.10] 2017-09-04

  • Faster XSS protection
  • Shell injection protection
  • Blacklist support
  • Extension is not enabled on CLI
  • Support for sqreen.disable option
  • Remove package dependencies

[0.9] 2017-08-24

  • Authentication SDK support
  • Improve memory management
  • Allow to use hostnames in daemon address

[0.8] 2017-08-21

  • Add support for PHP 5.5 and 5.6
  • Add support for ZTS
  • Fix memory leaks
  • Improve log management

[0.7.3] 2017-08-11

  • Fix mysql instrumentation for PDO

[0.7.2] 2017-08-08

  • Improve TCP communication with the daemon

[0.7.1] 2017-08-06

  • Read configuration after module initialization

[0.7] 2017-08-03

  • Improve logs
  • Improve memory management
  • Improve reliability on agent / daemon communication
  • Add the ability to dynamically update the security rules

[0.6.6] 2017-07-27

  • Make build compatible with CentOS6
  • Fix closing socket on module exit

[0.6.5] 2017-07-18

  • Fix issue on request initialization endpoint

[0.6.4] 2017-07-17

  • Fix issue on path transmitted to the daemon

[0.5]

  • Fix HTTP headers read in FPM

[0.4] 2017-06-13

  • Public release of the PHP agent

Sqreen daemon for PHP

[1.0.3] 2017-10-18

  • Improve performance on long parameters

[1.0.2] 2017-10-16

  • Better handling of big payload
  • Fix encoding issues in JS callbacks
  • Improve IP address detection

[1.0.1] 2017-10-13

  • Correctly handle disconnected client
  • Better handling of IP address

[1.0.0] 2017-10-06

  • Better handling of network issues

[0.9.3] 2017-10-05

  • Correctly handle HTTP request without IP

[0.9.2] 2017-09-28

  • Better detection of vulnerability discovery

[0.9.1] 2017-09-21

  • Better connection failure handling

[0.9.0] 2017-09-18

  • Support record of PHP traceback
  • Global performance improvement

[0.8.2] 2017-09-08

  • Fix rules reload behaviour

[0.8.1] 2017-09-01

  • Correctly fetch the headers

[0.8.0] 2017-09-01

  • Correctly record IP address
  • Add whitelist support
  • Better handling of HTTP request
  • Memory improvement
  • Correctly handle systemd service

[0.7.9] 2017-08-25

  • Better handling of non unicode data
  • Better handling of error

[0.7.8] 2017-08-18

  • Prevent leak of file descriptor

[0.7.7] 2017-08-17

  • Be more resilient on socket creation

[0.7.6] 2017-08-16

  • Fix memory leak

[0.7.5] 2017-08-11

  • Correctly handle cargs

[0.7.4] 2017-08-10

  • Better handling of package removing
  • Better handling of invalid msg_pack command

[0.7.3] 2017-08-08

  • Improve TCP communication with the extension

[0.7.2] 2017-08-03

  • Remove unexpected logging messages

[0.7.1] 2017-08-03

  • Better logging when using a proxy

[0.7.0] 2017-08-03

  • Improve logging messages
  • Improve communication between the agent and the extension