高性能Web服务器,Lighttpd 1.4.36 发布

jopen 9年前


Lighttpd 是一个德国人领导的开源Web服务器软件,其根本的目的是提供一个专门针对高性能网站,安全、快速、兼容性好并且灵活的web server环境。具有非常低的内存开销,cpu占用率低,效能好,以及丰富的模块等特点。

Lighttpd是众多OpenSource轻量级的web server中较为优秀的一个。支持FastCGI, CGI, Auth, 输出压缩(output compress), URL重写, Alias等重要功能,而Apache之所以流行,很大程度也是因为功能丰富,在lighttpd上很多功能都有相应的实现了,这点对于apache的用 户是非常重要的,因为迁移到lighttpd就必须面对这些问题。

Lighttpd 1.4.36 发布了,该版本主要是 Bug 的修复,重要的改变包括:

  • 默认禁用 SSL 3.0
  • 对日志中的所有字符串进行转义
  • 修复了上传时无法创建临时文件导致的段错误
  • 改变内部缓冲、chunks 等方面的 API,可能导致第三方插件的兼容问题

下载地址:

  • lighttpd-1.4.36.tar.gz (GPG signature)
    • SHA256: 8afc12cd40412cd94679f08725c68e4f5a3d91dfff7abc12d217c4f489b1819b
    </li>
  • lighttpd-1.4.36.tar.xz (GPG signature)
    • SHA256: 897ab6b1cc7bd51671f8af759e7846245fbbca0685c30017e93a5882a9ac1a53
    • </ul> </li>
    • SHA256 checksums
    • </ul>

      与 1.4.35 版本比较,详细改进内容包括:

      • use keep-alive timeout while waiting for HTTP headers; use always the read timeout while waiting for the HTTP body
      • fix bad shift in conditional netmask “…/0” handling
      • add more mime types and a script to generate mime.conf (fixes #2579)
      • add support for (Free)BSD extended attributes
      • [build] use fortify flags with “extra-warnings”
      • [mod_dirlisting,mod_redirect,mod_rewrite] abort config parsing if pcre-compile fails or isn’t available
      • [ssl] disable SSL3.0 by default
      • fixed typo in example config found by openSUSE user (boo# 907709)
      • [network] fix compile break in calculation of sockaddr_un size if SUN_LEN is not defined (fixes #2609)
      • [connections] fix bug in connection state handling
      • print backtrace in assert logging with libunwind
      • major refactoring of internal buffer/chunk handling
      • [mod_auth] use crypt_r instead of crypt if available
      • fix error message for T_CONFIG_ARRAY config values if an entry value is not a string
      • fix segfaults in many plugins if they failed configuration
      • escape all strings for logging (fixes #2646 log file injection, reported by Jaanus Kääp)
      • fix hex escape in accesslog (fixes #2559)
      • show extforward re-run warning only with debug.log-request-handling (fixes #2561)
      • parse If-None-Match for ETag validation (fixes #2578)
      • fix memory leak in mod_status when no counters are set (found by coverity)
      • [mod_magnet] fix segfault when accessing not existing lighty.req_env[] entry (found by coverity)
      • fix segfault when temp file for upload couldn’t be created (found by coverity)
      • mime.conf: add some new mime types, remove .dat, .sha1, .md5, update .vcf
      • [mod_proxy] add unix domain socket support (fixes #2653)
      • [configfile] fix reading uninitialized variable (found by Willian B.)