Skip to content

Releases: ADD-SP/ngx_waf

v5.1.1-beta.1

23 Apr 09:06
@ADD-SP ADD-SP
v5.1.1-beta.1
23e9951
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.1.1-beta.1 Pre-release
Pre-release

[v5.1.1-beta.1] - 2021-04-23 GMT+0800

Fixed

  • URL and Referer whitelist are not working.

[v5.1.1-beta.1] - 2021-04-23 GMT+0800

修复

  • URL 和 Referer 白名单规则失效。
Assets 2
Loading

v5.1.0

20 Apr 08:59
@ADD-SP ADD-SP
v5.1.0
c8d3332
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.1.0

[5.1.0] - 2021-04-20 GMT+0800

Added

  • New built-in variable waf_log, which is not an empty string when this module has performed a inspection, but an empty string otherwise, mainly used in the directive access_log.

  • New built-in variable waf_spend, which records the time (in milliseconds) taken by this module to perform the inspection.

[5.1.0] - 2021-04-20 GMT+0800

新增

  • 新的内置变量 waf_log,当本模块进行了检查时不为空字符串,反之则为空字符串,主要用于 access_log 指令。

  • 新的内置变量 waf_spend,记录本模块执行检查花费的时间(毫秒)。

Assets 2
Loading

v5.0.0

06 Apr 16:49
@ADD-SP ADD-SP
v5.0.0
c4dd394
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.0.0

[5.0.0] - 2021-04-07 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

  • The Retry-Afte response header is appended when the CC protection returns a 503 status code.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.

[5.0.0] - 2021-04-07 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。

  • 新增了配置 waf_cache 用于设置缓存相关的参数。

  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。

  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

  • 当 CC 防护返回 503 状态码时会附上 Retry-After 响应头。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

Assets 2
Loading

v5.0.0-beta.5

06 Apr 03:04
@ADD-SP ADD-SP
v5.0.0-beta.5
71bf8c5
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.0.0-beta.5 Pre-release
Pre-release

[5.0.0-beta.5] - 2021-04-05 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

  • The Retry-Afte response header is appended when the CC protection returns a 503 status code.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.

[5.0.0-beta.5] - 2021-04-05 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。

  • 新增了配置 waf_cache 用于设置缓存相关的参数。

  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。

  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

  • 当 CC 防护返回 503 状态码时会附上 Retry-After 响应头。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

Assets 2
Loading

v5.0.0-beta.4

05 Apr 08:05
@ADD-SP ADD-SP
v5.0.0-beta.4
d3bb237
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.0.0-beta.4 Pre-release
Pre-release

[5.0.0-beta.4] - 2021-04-05 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

  • The Retry-Afte response header is appended when the CC protection returns a 503 status code.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.

  • Fixed an IP blacklist failure issue, which only exists in v4.1.0-beta.4 ~ v5.0.0-beta.3.

[5.0.0-beta.4] - 2021-04-05 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。

  • 新增了配置 waf_cache 用于设置缓存相关的参数。

  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。

  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

  • 当 CC 防护返回 503 状态码时会附上 Retry-After 响应头。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

  • 修复了 IP 黑白名单失效的错误,此错误只存在于 v4.1.0-beta.4 ~ v5.0.0-beta.3 中。

Assets 2
Loading

v5.0.0-beta.3

05 Apr 05:47
@ADD-SP ADD-SP
v5.0.0-beta.3
c697a5a
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.0.0-beta.3 Pre-release
Pre-release

[5.0.0-beta.3] - 2021-04-05 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

  • The Retry-Afte response header is appended when the CC protection returns a 503 status code.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.

  • Fixed a memory leak and a potential segmentation fault that only existed in v4.1.0-beta.4, v5.0.0-beta.1 and v5.0.0-beta.2.

[5.0.0-beta.3] - 2021-04-05 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。

  • 新增了配置 waf_cache 用于设置缓存相关的参数。

  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。

  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

  • 当 CC 防护返回 503 状态码时会附上 Retry-After 响应头。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

  • 修复了一个内存泄漏的问题和一个潜在的段故障,此问题只存在于 v4.1.0-beta.4v5.0.0-beta.1v5.0.0-beta.2 中。

Assets 2
Loading

v5.0.0-beta.2

04 Apr 19:17
@ADD-SP ADD-SP
v5.0.0-beta.2
7f9e858
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.0.0-beta.2 Pre-release
Pre-release

[5.0.0-beta.2] - 2021-04-05 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

  • The Retry-Afte response header is appended when the CC protection returns a 503 status code.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.

[5.0.0-beta.2] - 2021-04-05 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。

  • 新增了配置 waf_cache 用于设置缓存相关的参数。

  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。

  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

  • 当 CC 防护返回 503 状态码时会附上 Retry-After 响应头。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

Assets 2
Loading

v5.0.0-beta.1

04 Apr 13:32
@ADD-SP ADD-SP
v5.0.0-beta.1
4c4fd2f
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v5.0.0-beta.1 Pre-release
Pre-release

[5.0.0-beta.1] - 2021-04-04 GMT+0800

WARNING

This version contains breaking changes.

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

  • Added directive waf_cc_deny to set CC protection related parameters.

  • New directive waf_priority has been added to set the priority of all checks except for POST checks.

Removed

  • The directive waf_cc_deny_limit is deprecated and replaced with the new directive waf_cc_deny.

Changed

  • Swaps the default priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a bug where CC protection statistics were sometimes inaccurate.

[5.0.0-beta.1] - 2021-04-04 GMT+0800

警告

此版本包含不兼容的更新(breaking changes)。

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。
  • 新增了配置 waf_cache 用于设置缓存相关的参数。
  • 新增了配置 waf_cc_deny,用于设置 CC 防护相关的参数。
  • 新增了配置 waf_priority,用来设置除了 POST 检查以外所有的检查项目的优先级。

移除

  • 废弃了配置 waf_cc_deny_limit,使用新的配置 waf_cc_deny 替代。

变动

  • 互换了 CC 防护和 IP 白名单检查的默认优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了 CC 防护统计有时不准的错误。

Assets 2
Loading

v4.1.0-beta.4

02 Apr 18:50
@ADD-SP ADD-SP
v4.1.0-beta.4
4edb97c
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.1.0-beta.4 Pre-release
Pre-release

[4.1.0-beta.4] - 2021-04-03 GMT+0800

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache has been added to set parameters related to cache.

Changed

  • Swaps the priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

[4.1.0-beta.4] - 2021-04-03 GMT+0800

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。
  • 新增了配置项 waf_cache 用于设置缓存相关的参数。

变动

  • 互换了 CC 防护和 IP 白名单检查的优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。
Assets 2
Loading

v4.1.0-beta.3

01 Apr 22:54
@ADD-SP ADD-SP
v4.1.0-beta.3
0d2cf9f
This commit was signed with the committer’s verified signature. The key has expired.
ADD-SP Qi
GPG key ID: 862622C024F598B4
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.1.0-beta.3 Pre-release
Pre-release

[4.1.0-beta.3] - 2021-04-02 GMT+0800

Added

  • A new mode CACHE has been added, enabling this mode will cache the results of each inspection to improve performance.

  • New configuration waf_cache_size has been added to set parameters related to cache cleaning.

Changed

  • Swaps the priority of CC protection and IP whitelist inspection.

Fixed

  • Fixed a segmentation fault when the number of worker processes is greater than one.

  • Fixed a cache failure bug, this bug only exists in v4.1.0-beta.1 and v4.1.0-beta.2 .

[4.1.0-beta.3] - 2021-04-02 GMT+0800

新增

  • 新增了模式 CACHE,启用此模式后会缓存每次检查的结果,提高性能。
  • 新增了配置项 waf_cache_size 用于设置缓存清理相关的参数。

变动

  • 互换了 CC 防护和 IP 白名单检查的优先级。

修复

  • 修复了当 worker 进程数量大于一时的段错误。

  • 修复了缓存失败的问题。这个错误只存在于 v4.1.0-beta.1v4.1.0-beta.2 中。

Assets 2
Loading