Release Date: October 28, 2021
EZproxy v7.1.17 is a maintenance release building on EZproxy v7.1, one of our biggest releases to date.
EZproxy v7.1.17 fixes several bugs that were introduced in v7.1 and includes an OpenSSL update to provide best-in-class security.
Customer support for versions prior to 7.1 ended 31 August 2021 (stand-alone customers only). OCLC is investigating additional resources to strengthen EZproxy security so you can provide the most secure and continuous access possible. The EZproxy team put together a guide to make upgrading to version 7.1 easy.
Upgrade note: This applies only to sites that have already upgraded to the previously released version of EZproxy v7.1 for Linux AND are starting the software as root with RunAs in config.txt. These sites may have the security directory and/or files contained in the security directory owned by root. In these cases, you will need to manually change the ownership of these files to match the RunAs user if they are owned by root.
If the EZproxy session variables, login:loguser and login:user, are not set in shibuser.txt, then the default username for all users using SAML authentication becomes “shibboleth.” In this case, since groups are tripped at the username level, false trips of rules may
Increasing the watch period from 60 minutes or longer will consume more disk space in the /security directory to store the required evidence in the security database. Please monitor the disk usage in the /security database.
Some of the default rules shipped in EZproxy 7.1 contain monitoring periods longer than 60 minutes. If you find you are having disk space constraints, consider commenting out those rules or shortening the monitoring periods.
Support information for this product and related products can be found at: