Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
|
litespeed_wiki:changelog [2020/02/05 14:39] Lucas Rolff Add latest versions |
litespeed_wiki:changelog [2020/03/25 14:50] Lucas Rolff Add latest builds |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| ====== LiteSpeed Web Server Changelog ====== | ====== LiteSpeed Web Server Changelog ====== | ||
| + | |||
| + | ===== Version 5.4.6 ===== | ||
| + | |||
| + | === Build 2 === | ||
| + | |||
| + | [New Feature] Added strict suEXEC and ownership checks for scripts. | ||
| + | [New Feature] Added ability to configure static/dynamic request per second limit for Apache vhost. | ||
| + | [Tuning] Added after=lve_namespaces.service to systemd unit file. | ||
| + | [Bug Fix] Fixed a bug when switching vhost log file. | ||
| + | [Bug Fix] Fixed an HTTP/3 timestamp/ACK ping-pong bug. | ||
| + | [Bug Fix] Fixed a bug causing extra delay when response has content length = 0. | ||
| + | |||
| + | === Build 1 === | ||
| + | |||
| + | [Bug fix] Fixed a bug causing delayed .htaccess loading. | ||
| + | [Bug fix] Fixed an HTTP/2 bug that sometimes delayed server response. | ||
| + | [Bug fix] Fixed a bug in NodeJS websocket backend configuration. | ||
| + | [Bug fix] Shared lib for lscmctl is now updated on server install/update. | ||
| + | [Tuning] Prevent ports 443 and 80 for use as a WebAdmin listener. | ||
| + | |||
| + | === Build 0 === | ||
| + | |||
| + | [New Feature] Updated HTTP/3 support to include h3-27. | ||
| + | [Bug Fix] Fixed a bug that caused ProxyPass ws:// target to stop working for certain configuration combination. | ||
| + | [Bug Fix] Fixed a bug in HTTP/2 handling mismatched response content-length and actual reponse body size. | ||
| + | [Bug Fix] Fixed a false positive that triggered ACL denied for Plesk. | ||
| + | [Bug Fix] Fixed a regression that broke /tmp/lshttpd/swap auto cleanup. | ||
| + | [Bug Fix] Fixed a false positive when handling ModSecrurity SecRemoteRule. | ||
| + | [Bug Fix] Fixed a crash in ModSecurity using libinjection. | ||
| + | [Tuning] Set mod_security RBL DNS cache to 60 seconds. | ||
| + | [Tuning] Disable TLSv1.1 by default. | ||
| + | [Tuning] Enable SSL session tickets by default. | ||
| + | [Tuning] No longer add ECDHE-RSA-AES128-SHA cipher automatically. | ||
| + | |||
| + | ===== Version 5.4.5 ===== | ||
| + | |||
| + | === Build 3 === | ||
| + | |||
| + | [Bug Fix] Fixed a false positive that triggered ACL denied for Plesk. | ||
| + | [Bug Fix] Fixed a regression that broke /tmp/lshttpd/swap auto cleanup. | ||
| + | [Bug Fix] Fixed a false positive when handling ModSecrurity SecRemoteRule. | ||
| + | [Bug Fix] Fixed a crash in ModSecurity using libinjection. | ||
| + | [Tuning] No longer add ECDHE-RSA-AES128-SHA cipher automatically. | ||
| + | |||
| + | === Build 2 === | ||
| + | |||
| + | [Bug Fix] Minor ModSecurity compatibility fixes. | ||
| + | [Bug Fix] Prevent WebAdmin Console 503 error on centos8 by installing libnsl package automatically. | ||
| + | [Bug Fix] Minor bug fixes in HTTP/3 (QUIC) engine. | ||
| + | [Tuning] Added add "SameSite=Strict" attribute to ls_smartpush cookie. | ||
| + | [Tuning] Update cp_switch_ws.sh script to work independently of any installed control panel plugins. | ||
| + | [Bug Fix] Update uninstall.sh script to work properly when a control panel plugin is not installed. | ||
| + | [Tuning] Downgraded some modsec log messages from "error" to "warning". | ||
| + | [Bug Fix] Fixed a rewrite engine compatibility regression introduced in v5.4.4. | ||
| + | |||
| + | === Build 1 === | ||
| + | |||
| + | [Bug Fix] mod_security @validateUrlEncoding operator has been turned off to avoid unnecessary false positives. | ||
| + | [Bug Fix] Fixed a cache engine bug that broke the "Respect Cacheable" feature. | ||
| + | [Bug Fix] Fixed a crash bug when detecting server startup time. | ||
| + | [Tuning] Made HTML pages generated by the auto index script responsive. | ||
| + | [Tuning] Hid confusing required/restricted permission mask configurations in WebAdmin Console. | ||
| + | |||
| + | === Build 0 === | ||
| + | |||
| + | [New Feature] Added support for IETF HTTP/3 draft 25 (h3-25). | ||
| + | [New Feature] Populate GEOIP_COUNTRY_CODE environment variable using IP2Location database. | ||
| + | [New Feature] Added full Captcha protection for WordPress login page. | ||
| + | [New Feature] Optionally skip rewrite processing for Let's Encrypt verification requests. | ||
| + | [New Feature] Automatically patch Set-Cookie with 'secure' flag when served over HTTPS. | ||
| + | [Improvement] Added 'cssDecode' and 'utf8toUnicode' transformations to ModSecurity engine. | ||
| + | [Improvement] Added support for 'REQUEST_SCHEME' request variable. | ||
| + | [Improvement] Added '-vb' command line option to print out version and build number. | ||
| + | [Update] Updated WHM plugin to v3.3.7. | ||
| + | [Bug Fix] Fixed websockets hanging on upgrade. | ||
| + | [Bug Fix] Fixed a WebAdmin Console socket address validation bug. | ||
| + | [Bug Fix] Fixed .htaccess configuration changes failing to apply for Python/Ruby/NodeJS applications. | ||
| + | [Bug Fix] Environment variable names are no longer converted to uppercase for Apache SetEnv directive. | ||
| + | [Bug Fix] Fixed a NodeJS wrapper script bug that failed to handle startup files with absolute paths. | ||
| + | [Bug Fix] External application process startup time is now reliably detected. | ||
| + | [Bug Fix] Fixed a minor regression with AHO string search. | ||
| + | [Bug Fix] Fixed a bug using wrong log ID in error log. | ||
| ===== Version 5.4.4 ===== | ===== Version 5.4.4 ===== | ||