1. lclarke

    LiteSpeed servers are NOT vulnerable to Rapid Reset

    The details about the recent HTTP/2 CVE, and why you can rest easy with LiteSpeed Enterprise Web Server, LiteSpeed Web ADC, and OpenLiteSpeed:
  2. R

    What's the correct way to block non-Cloudflare traffic now that their IPs are trusted by default?

    I read that as of v5.4.9, Cf's IPs are trusted by default, so how do I block traffic that doesn't come from them? In .htaccess, I've tried this: Require all denied Require ip
  3. J


    I am the Owner of webgames business and I have found security holes in this plugin. read this carefully! Subject: Security Vulnerability in LiteSpeed Cache Plugin and Malicious Popads Malware Infection on Dear LiteSpeed Cache Plugin Support, I hope this letter...
  4. H

    How to Secure a Linux Server and Website Project [WIP] [Learning Project]

    I plan to do the same post in a few different forums to receive different opinions and I don't speak English natively, I hope this isn't a problem. I will be grouping and placing all current learning links for secure linux server and website security in this post in an organized manner. My Goal...
  5. S

    problem with setting of cgi umask

    hello my problem is when i want to set the umask setting of cgi under security tab in admin panel of litespeed. i need to set it as 0022 but it just accept a value in range of 000-777 so i tried 002 as said in the forums posts but when i check the result of "echo exec('umask');" by php, it...
  6. A

    Unethical Use of the Server! Some Attention needed.

    Hi, I love this web server and I have used it many a times to make small test projects and such. But today something fishy happened. I was just browsing a website : "", an anime website I landed on through Google. Now when I clicked on play button of the video ...