Announcing:
LiteSpeed Web Server v6.3.2
In this release: security updates, bug fixes, and more!
RELEASE LOG:
[Security] Update lsquic to address hash flood vulnerability and other bug fixes.
[New Feature] Improve HTTP/2 implementation to block aggressive robots when under attack.
[New Feature] Improve LiteSpeed Containers and Redis support for control panels.
[New Feature] Add environment variable "noantiddos" to selectively disable anti-DDoS detection via rewrite rule or setenvif.
[Improvement] Add support for access log format "%{c}a" to log connection peer address.
[Improvement] Allow TX variable for modsecurity @inspectFile operator.
[Bug Fix] Correct outdated CloudFlare IP range whitelist.
[Bug Fix] Address a regression in IPv6 ACL handling.
[Bug Fix] Address an MT race condition in mod_security engine.
[Bug Fix] Increase verification strictness for SSL client authentication.
[Bug Fix] Address issues when mod_security response body scan is enabled.
[Bug Fix] Address failure to enable PROXY protocol.
[Bug Fix] Make NodeJS configuration more closely match Apache's behavior.
[Bug Fix] Make cPanel live site transfer work properly when WP toolkit is enabled.
[Bug Fix] Detect file suffixes longer than 15 characters.
[Misc] Adjust PHP processor auto tuning for Apache suEXEC PHP handlers.
[Bug Fix] Address two lsquic busy loop corner cases.
[Bug Fix] Address a problem with long unix domain sockets for ruby/python/node applications.
https://www.litespeedtech.com/products/litespeed-web-server/release-log
Please remember, there may be some delay between this announcement and the ability to auto-update. If you don't want to wait, you can update manually via the following command: `/usr/local/lsws/admin/misc/lsup.sh -f -v 6.3.2`
Cheers!
LiteSpeed Web Server v6.3.2
In this release: security updates, bug fixes, and more!
RELEASE LOG:
[Security] Update lsquic to address hash flood vulnerability and other bug fixes.
[New Feature] Improve HTTP/2 implementation to block aggressive robots when under attack.
[New Feature] Improve LiteSpeed Containers and Redis support for control panels.
[New Feature] Add environment variable "noantiddos" to selectively disable anti-DDoS detection via rewrite rule or setenvif.
[Improvement] Add support for access log format "%{c}a" to log connection peer address.
[Improvement] Allow TX variable for modsecurity @inspectFile operator.
[Bug Fix] Correct outdated CloudFlare IP range whitelist.
[Bug Fix] Address a regression in IPv6 ACL handling.
[Bug Fix] Address an MT race condition in mod_security engine.
[Bug Fix] Increase verification strictness for SSL client authentication.
[Bug Fix] Address issues when mod_security response body scan is enabled.
[Bug Fix] Address failure to enable PROXY protocol.
[Bug Fix] Make NodeJS configuration more closely match Apache's behavior.
[Bug Fix] Make cPanel live site transfer work properly when WP toolkit is enabled.
[Bug Fix] Detect file suffixes longer than 15 characters.
[Misc] Adjust PHP processor auto tuning for Apache suEXEC PHP handlers.
[Bug Fix] Address two lsquic busy loop corner cases.
[Bug Fix] Address a problem with long unix domain sockets for ruby/python/node applications.
https://www.litespeedtech.com/products/litespeed-web-server/release-log
Please remember, there may be some delay between this announcement and the ability to auto-update. If you don't want to wait, you can update manually via the following command: `/usr/local/lsws/admin/misc/lsup.sh -f -v 6.3.2`
Cheers!