Improvements
- Add Limit High-Frequency Error. Allow blocking clients that request a large number of errors. It can effectively prevent attacks such as directory traversal and 401 (HTTP Basic Auth) brute force:
Fix
- If a request is judged as an attack, but released because whitelist, it will now be recorded. The attack type will be recorded as 'Allow List'
- SSL Cert allow renewing the free cert in advance
- In Attacks Events and Attack Logs, Attack IP allow fuzzy query (#378)
- When a ssl site does not exist (SafeLine cannot find the host) , return a built-in cert to avoid leaking domain name (#978)
- Challenge (Anti-Bot) page display CN or EN according to the browser language now.
- Optimize the log processing module, remove container mario, improve performance and reduce resource usage.