This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to update Modsecurity version

We have UTM version 9.605-1 on our webservers at our hosting company. I see in the WAF logs it appears we're using CRS 2.2.7 (it says OWASP_CRS/2.2.7 against security2 errors)

I've asked our hosting company if they can update to a later version of CRS but they suggested theres nothing they can do, it just comes with the new versions of UTM. Is that true?

I was expecting we should be on at least version 2.9.1 given this post

This thread was automatically locked due to age.

0 Jaydeep over 4 years ago

Hi Mark Chamberman

These CRS versions can only be updated with the Firmware update of UTM. If you would like to suggest an upgrade, please create a feature request here: https://ideas.sophos.com/forums/17359-sg-utm

Regards

Jaydeep
Cancel
Vote Up 0 Vote Down

Cancel
0 Mark Chamberman over 4 years ago in reply to Jaydeep

Hi, can you confirm I'm on the latest version (2.2.7) for my firmware version then?
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 4 years ago in reply to Mark Chamberman

Hi Mark and welcome to the UTM Community!

If you read my comment on that thread, you know that what applies generally to components used in UTM usually does not apply to the modified version in the UTM.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel