- Update to version 10.6:
* Added PublicKeyPins option.
* Added renewal-scripts to Let's Encrypt script.
* Small changes to CMake build system.
* Added CustomHeaderBackend option.
* Renamed CustomHeader option to CustomHeaderClient. Old name still works.
* Hiawatha ignores FileHashes and ReverseProxy for Let's Encrypt
authentication requests.
* Small improvements and bugfixes.
OBS-URL: https://build.opensuse.org/request/show/504539
OBS-URL: https://build.opensuse.org/package/show/server:http/hiawatha?expand=0&rev=87
- Update to 9.10:
* Support for banning bad clients who connect via a proxy.
* UrlToolkit option Do added. Changed how Call and Skip should be called.
* General UrlToolkit improvements. See config/toolkit.conf for syntax.
* Hiawatha now prefers reverse proxies with a scheme matching the one of the
client connection. See config/toolkit.conf for syntax.
* Hiawatha will now first process UrlToolkit rules before using ReverseProxy.
* Small bugfixes and improvements.
OBS-URL: https://build.opensuse.org/request/show/280813
OBS-URL: https://build.opensuse.org/package/show/server:http/hiawatha?expand=0&rev=73
- Update to 9.7:
* UseToolkit now possible in .hiawatha file at root of website.
* Method option added to URL Toolkit.
* SetResourceLimit option added.
* ThreadKillRate option added.
* Improved SQL injection detection.
* Default value for DHsize set to 2048.
* PolarSSL updated to version 1.3.8.
* Memory allocation debugger module added.
* Small bugfixes and improvements.
* Bugfix: incorrect file hash printing by wigwam with directory as symlink.
OBS-URL: https://build.opensuse.org/request/show/247931
OBS-URL: https://build.opensuse.org/package/show/server:http/hiawatha?expand=0&rev=65
- Update to 9.6:
* Logfile rotation for access logfiles.
* HTTP Strict Transport Security header made optional for RequireSSL.
* Support for chunked transfer encoded requests (not for PUT).
* Support for improved server statistics in Hiawatha Monitor.
* The Hiawatha Monitor is now supported without the need for XSLT.
* PolarSSL updated to version 1.3.7.
* A few bugfixes as reported by Coverity.
* Bugfix: SQL injection detection was broken since 8.6.
* Bugfix: XSS detection didn't work for reverse proxy.
* Small bugfixes.
OBS-URL: https://build.opensuse.org/request/show/236592
OBS-URL: https://build.opensuse.org/package/show/server:http/hiawatha?expand=0&rev=63
- Update to 9.4:
* Keep-Alive connections for reverse proxy made optional.
* ErrorXSLTfile option added.
* IgnoreDotHiawatha option added.
* RandomHeader option added.
* Dropped support for RC4.
* PolarSSL updated to version 1.3.4.
* Added support for Hyper Text Coffee Pot Control Protocol (RFC2324).
* Added SSL_CIPHER to CGI environment.
* Added Public/Private to UrlToolkit expire option.
* Small improvements.
OBS-URL: https://build.opensuse.org/request/show/227405
OBS-URL: https://build.opensuse.org/package/show/server:http/hiawatha?expand=0&rev=59
- update to 8.8.1 (changes since 7.7):
* Bugfix: Incorrect size of buffer for poll() can lead to a crash when using
Tomahawk.
* Caching for Reverse Proxy. CacheRProxyExtensions option added.
* Basic HTTP authentication now supports the glibc2 version of crypt().
* Hostname in ImageReferer can now contain a wildcard.
* DenyBody matching is now case insensitive.
* PolarSSL updated to version 1.2.5.
* Support for HTTP Strict Transport Security (RFC 6797). Integrated in
RequireSSL option.
* DHsize option added.
* PolarSSL updated to version 1.2.3.
* CloudFlare headers placed in environment variables.
* Removed php-fcgi.
* Bugfix: slow page loading via Reverse Proxy.
* PolarSSL updated to version 1.2. Added support for TLS 1.2 and secure
renegotiation.
* Added support for Server Name Indication.
* MinSSLversion option added.
* ServerRoot option removed.
* Improved MacOS X package building script.
* Marked php-fcgi as deprecated. Use php-fpm instead.
* Improved Reverse Proxy.
* Changed error message style.
* Renamed Command Channel to Tomahawk.
* Return 403 instead of 401 upon correct password for HTTP authentication but
user not in right group.
* Bugfix: replaced select() with poll() to prevent crashes in case of large
amount of simultaneous connections. Thanks to Peter Bex.
* MaxServerLoad option added.
OBS-URL: https://build.opensuse.org/request/show/160006
OBS-URL: https://build.opensuse.org/package/show/server:http/hiawatha?expand=0&rev=42
