Announcing:
LiteSpeed Web ADC v3.1.7
In this release: improvements to reCAPTCHA, bug fixes, and more!
RELEASE LOG:
[New Feature] Add reCAPTCHA trigger from mod_security via "verifycaptcha" environment variable.
[New Feature] Add reCAPTCHA verification timeout.
[Update] Isolate ZeroConf cache roots per domain even if sharing the same directory.
[Update] Increase BF limit to 10 after a successful reCAPTCHA solve to avoid cases where a low BF Limit could block access to the login page.
[Update] Add type-specific cache tags for static content.
[Improvement] Improve mod_security JSON audit log with more rule meta data.
[Improvement] Reduce false positives for anti-ddos detection based on status code.
[Improvement] Add "x-frame-options" header for recaptcha page.
[Bug Fix] Address HTTP/3 corner cases, memory leaks, and high CPU usage bugs.
[Bug Fix] Address a graceful restart bug in chroot environment.
[Bug Fix] Address broken bcrypt verification for HTTP authentication.
[Bug Fix] Address a corner case when handling chunk encoded data.
[Bug Fix] Address a corner case in async mod_security engine.
[Bug Fix] Address HTTP/2 hpack decoder corner cases.
[Bug Fix] Address ZeroConf not properly waiting for the whole request body which sometimes resulted in API failures.
[Bug Fix] Address an corner case where a request could be restarted while in the middle of processing.
[Bug Fix] Address a case where multiple ZeroConf load balancers with multiple backends could interfere with load balancer strategies.
[Bug Fix] Change SSL handshake timeout from request timeout value to 10 seconds to avoid hanging request issues.
[Bug Fix] Other fixes to improve overall server performance and stability.
https://www.litespeedtech.com/products/litespeed-web-adc/release-log
Cheers!
Friday, December 9, 2022