Kevin, Thank you for your quick and enlightening response! I've seen your other post today about rule update #1879885 that is to be realesed. Thank you for fixing it for older SA versions (SA 3.3.1 is still the one in CentOS/RHEL 6.10 supported until Nov. 30th).
Best regards, Frédéric. ----- Le 15 Juil 20, à 13:01, kmcgrail <kmcgr...@apache.org> a écrit : > On 7/15/2020 6:29 AM, Frédéric Nass wrote: >> As of today July 15th, sa-update (3.3.1) is trying to install 1879817.tar.gz >> and >> it's still failing to do so. > Hi Frederic, > What's the error you are getting specifically? >> Can you tell us in which revision of the signatures this is expected to be >> fixed? And confirm that this fix will also work for older versions of SA? > I cannot because I don't know what problem you are having and it works for me > with no lint errors on 3.4.5. with ruleset 1879817. I'd like to get it working > and will look at the error from your sa-update. > A couple more points: > 3.3.1 is ancient released over a decade ago. 3.4.4 is significantly better not > to mention more secure with numerous bugs and security issues fixed including > a > few CVEs along the way. > Also are you aware that the project's rule updates are ending for that > version? > We've been working to convey that info and it's on the website:*** On March 1, > 2020, we will stop publishing rulesets with SHA-1 checksums. If you do not > update to 3.4.2 or later, you will be stuck at the last ruleset with SHA-1 > signatures. ***. This change is based on a policy requirement of the > foundation > and security issues with these weak hashes. > Regards, > KAM
smime.p7s
Description: S/MIME Cryptographic Signature
