Added Threat Management Option for applying Parameter rules to cookies to stop cookie-based SQL injection.
Corrected various problems with handling of POST data, especially for large and/or binary POSTs.
Improved handling of URLEncoding, including N-pass encodings on GET and POST.
Corrected issues with trusted/untrusted IP lists not working as expected.
Behavioral Engine now OFF by default.
Include Parameters option in Behavioral Engine settings now ON by default.
Clarified the Threat Management Option for sending 404 response to requests from blocked IPs (on by default).
Fixed various GUI bugs on Length tab in Rules/Requests/Parameters.
Fixed various local and remote installation issues.
Changes in version 1.3.0 (8/2008):
POST data protection now included. Rules that protect Query String data from SQL injection and XSS attacks are now applied to POST data as well.
Enhanced protection against URL Encoded attacks.
Security Alert Log (SAL) now supports Web sites running without IIS logging enabled.
Changes in version 1.2.0 (6/2008):
Added built-in rules for detecting SQL injection and XSS in query string parameters.
Removed user prompt when switching from training into monitoring mode and made inactive the default monitoring mode.
Fixed various bugs in the Microsoft Management Console user interface.
Fixed issue with WHOIS lookup due to change in RIPE format.
Changes in version 1.1.0 (3/2008):
Added Security Mode right click control to main Settings Manager UI.
Modified post installation default Security Mode and provided on-screen alert to prompt admin to select desired Security Mode once training has been completed.
Modified security functionality and reporting to support local proxy servers using the XFF (X-Forwarded-For) request header.
Enhanced "Use Existing IIS Logs for Training" functionality for better performance and accuracy of log imports.
Modified Trusted IP default settings to make product evaluation easier.
Changed default for HTTP Method signature rule on Trace requests to automatically disable IP addresses that make this type of method request to IIS in the future.
