ADD-SP/ngx_waf v7.0.0

v7.0.0 Current

on GitHub

[7.0.0] - 2021-08-04 UTC+0800

Changed

• Changed the way Under Attack Mode is implemented. It is no longer implemented using redirects, but by modifying the response body.

• Removed directive uri from configuration item waf_under_attack, see documentation for details.

• Added a directive file to the configuration item waf_under_attack whose value should be the absolute path to an HTML file, see the documentation for details.

• The directive waf_cc_deny is not allowed at the context http。

[7.0.0] - 2021-08-04 UTC+0800

变动

• 改变了 Under Attack Mode 的实现方式。不再使用重定向实现，而是通过修改响应体实现。

• 删除了配置项 waf_under_attack 的参数 uri，详情见文档。

• 为配置项 waf_under_attack 增加了一个参数 file，该参数的值应该是一个 HTML 文件的绝对路径，详情见文档。

• 不允许在 http 这一级中使用配置项 waf_cc_deny。