github ADD-SP/ngx_waf v5.0.0

latest releases: v10.1.2, v6.1.9, v10.1.1...
3 years ago

[5.0.0] - 2021-04-07 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

  • The Retry-Afte response header is appended when the CC protection returns a 503 status code.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.


[5.0.0] - 2021-04-07 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。

  • 新增了配置 waf_cache 用于设置缓存相关的参数。

  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。

  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

  • 当 CC 防护返回 503 状态码时会附上 Retry-After 响应头。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

Don't miss a new ngx_waf release

NewReleases is sending notifications on new releases.