Release 1326: CVE-2015-3428 mitigation
This release implements a filter that prevents SQL injection attacks made possible by a security flaw in aheadWorks Blog.
Read moreRelease 1283: New n98-magerun, php in skin dir
We have updated n98-magerun to version 1.95, which is the latest. Also, we fixed an issue with some themes that place PHP files in the skin or js directory. The themes use these to dynamically generate CSS or JS and will now be properly executed. Lastly, we improved the way we automatically filter shoplift attacks.
Read moreRelease 1209: SUPEE 5344 mitigation, Pip, Ruby, Sphinx
We have added filter rules to mitigate the Magento SUPEE 5344 attack for most cases. Be advised, if you haven’t patched your Magento installation yet, we strongly advise you to do this. Also in this release: Added the Python “pip” package manager on all nodes; Added the Ruby executable on all nodes; Added support for the Sphinx…
Read moreRelease 656: Thuiswinkel.org scans
Thuiswinkel.org security scan now succeeds The scans Qualys performs for Thuiswinkel.org often ran afoul of our intrusion detection system (IDS). We’ve now tweaked the IDS so, that Qualys can pass the test. Thanks for working with us on this, Pieter!
Read moreRelease 629: storefront overview, midnight commander, git-flow, improved filtering
Storefront overview For shops with many storefronts, it can be a tedious job to make sure all domain names are correctly configured. One by one the domain settings would have to be visited and verified. This frequently caused mistakes and misconfigured domains. A new tool was added to the Byte service panel to show the…
Read more