Softpedia >Mac >Internet Utilities >LiteSpeed Web Server >  Changelog

LiteSpeed Web Server Changelog

What's new in LiteSpeed Web Server 4.2.24

Jul 19, 2016
  • Updated OpenSSL to 1.0.1p to address (CVE-2015-1793).
  • Improved mod_security engine to work better with OWASP core rule set.
  • Improved compatibility with Plesk 12 control panel.
  • Fixed a bug in Rewrite engine that may trigger 503 errors by cPanel autoconfig/autodiscover feature.

New in LiteSpeed Web Server 4.2.23 (Apr 18, 2015)

  • New Feature: Added support for Apache directive Allow/Deny env=[!]env-variable.
  • Improvement: ModSecurity audit logging can log request body now.
  • Bug Fix: Changes in SSL renegotiation protection broke HTTPS proxy backend.
  • Bug Fix: Autoindex script used wrong encoding for "&" character in directory name.

New in LiteSpeed Web Server 4.2.22 (Mar 18, 2015)

  • Improvement: Added option to select default DH Key size to avoid SSL handshake error with older Java clients.
  • Improvement: Apache configuration compatibility with SuexecUserGroup and SSLInsecureRenegotiation directives.
  • Improvement: Avoid parsing bad shtml files that can cause server memory problem.
  • Bug Fix: causes PHP suEXEC malfunction.
  • Bug Fix: Slow memory leak in ModSecurity engine.
  • Bug Fix: Crash caused by long variable value in mod_security engine.
  • Other minor improvements and bug fixes.

New in LiteSpeed Web Server 4.2.21 (Jan 20, 2015)

  • Improved DirectAdmin compatibility — added ability to change user ID inside context of Apache configuration.
  • Fixed bugs in Server Side Include engine.
  • Fixed a bug causing Apache Header directive to not work properly when used inside a directive.
  • Fixed a bug in HTTP authentication using Apache htpasswd generated password hash.
  • Fixed a bug in handling MIME-type strings with upper-case letters.
  • Fixed a bug in AIO logging causing an infinity loop.
  • Fixed a bug in Aho-Corasick string search implementation.

New in LiteSpeed Web Server 4.2.20 (Dec 20, 2014)

  • New feature: Automatically redirect to HTTPS if a HTTPS port is accessed as HTTP.
  • Fixed a bug in Apache configuration parsing that disables mod_secuirty engine.
  • Fixed Apache httpd wrapper script bug that causes problem with cPanel 11.46 ModSecurity Tools.
  • Fixed a bug that creates swap directory with wrong permission mask.
  • Fixed a bug that causes trouble for serving cached gzipped content to Facebook Crawler.

New in LiteSpeed Web Server 4.2.19 (Nov 26, 2014)

  • New features to improve server performance when I/O wait is high: asynchronous logging mode and start external process in asynchronous mode through CGI daemon.
  • Improved ModSecurity engine to allow using variables in depricatevar and expirevar actions.
  • Fixed a bug in HTTPS proxy that causes 503 errors.
  • Fixed a bug that causes GZIP compression not to be used for certain dynamic pages.
  • Fixed a bug in parsing CacheEnable/CacheDisable directives.

New in LiteSpeed Web Server 4.2.18 (Nov 26, 2014)

  • Upgraded OpenSSL to 1.0.1j to address vulnerabilities in 1.0.1i.
  • SSLv3 turned off by default for HTTPS virtual hosts.
  • Improved bandwidth logging by combining write() system calls.
  • Improved autoindexing script.
  • Fixed systemd unit description script.
  • Fixed minor bug in ModSecurity engine.

New in LiteSpeed Web Server 4.2.17 (Oct 7, 2014)

  • Added more CGI environment variables for SSL Client authentication.
  • Fixed a bug that breaks "Require user user1 user2" Apache directive.
  • Fixed a bug causing 403 error for Server Side Include pages.
  • Fixed a bug causing issues when one user misses a tag in one .htaccess file.
  • Fixed a bug causing Smart Keep-Alive feature to not work for js files with MIME type application/javascript.
  • Fixed a bug in MP4 random seek.
  • Removed an OpenSSL patch which broke SSL handshake with some clients.

New in LiteSpeed Web Server 4.2.16 (Oct 7, 2014)

  • Addresses Shellshock Bash vulnerability (CVE-2014-6271 and CVE-2014-7169).

New in LiteSpeed Web Server 4.2.15 (Sep 24, 2014)

  • Improved Apache configuration parsing speed and memory efficiency.
  • Default SSL cipher list has been tuned to score an "A" on online SSL tests.
  • Added suffix 'php6' to available PHP suEXEC suffixes.
  • Fixed a bug in OCSP stapling result verification.
  • Fixed a bug in HTTP range request handling.
  • Minor bug fixes and fine tunings.

New in LiteSpeed Web Server 4.2.14 (Aug 8, 2014)

  • Improvement: Added support for Apache mod_env and mod_setenvif.
  • Bug fix: Fixed bug causing cPanel account suspension to erroneously apply to accounts partially matching suspended account name.

New in LiteSpeed Web Server 4.2.13 (Jul 29, 2014)

  • Improvement: Rewrite engine can add a local proxy target automatically if called for in rewrite rules. Node.js hosting on a local server no longer requires manual set up.
  • Improvement: LiteSpeed specific LSPHP_MaxWaitQ directive added. Specifies external application wait queue limit. Exceeding this limit triggers a 508 "Resource Limit Has Been Reached" error.
  • Improvement: IndexIgnore directive for directory autoindexing is now supported.
  • Improvement: "SetEnv PHPRC=" can be used to customize php.ini path in Apache vhost configuration files.
  • Improvement: Fixed issues with mod_userdir caused by cPanel 11.44.
  • Bug Fix: Fixed mod_security bug that caused server crash.

New in LiteSpeed Web Server 4.2.12 (Jun 10, 2014)

  • Security: Updated statically linked OpenSSL library to 1.0.1h to address newly discovered vulnerability in OpenSSL 1.0.1g.
  • Improved LSCache module: Cache storage directory can be set at vhost level.
  • Improved compatibility with Apache configuration when Include directive is used inside a or context.
  • Improved static file handling in NFS to avoid trouble caused by silly rename.
  • Improved HTTPS proxy with client SNI support.
  • Fixed a bug causing a slow memory leak.
  • Fixed a bug in the ModSecurity engine ipMatchFromFile directive. Comments in IP list configuration file are ignored now.
  • Fixed a bug in tracking children processes in FreeBSD when "start through CGI daemon" is used.
  • Fixed a bug in HTTPS proxy which failed to properly handle HTTP/1.0 style connection close to end a response.
  • Other minor bug fixes based isolated bug reports.

New in LiteSpeed Web Server 4.2.11 (May 14, 2014)

  • Fixed a bug with HTTP proxying introduced in 4.2.10 while adding support for HTTPS targets.
  • Fixed a bug with Apache AddType directive introduced in 4.2.10.
  • Fixed a bug with processing of Apache tag.
  • Workaround added for FreeBSD security feature that prevented LSWS server process from checking status of PHP processes when sysctrl security.bsd.see_other_uids was turned off.

New in LiteSpeed Web Server 4.2.10 (May 6, 2014)

  • New feature: Added support for HTTPS proxy backend. (cPanel proxy subdomains over HTTPS work.)
  • New feature: Added logic to tolerate missing "-" at the beginning or ending of an SSL certificate and key file.
  • New feature: Added logic to escape special characters in access log following Apache's method.
  • New feature: Added support for context in Apache httpd.conf.
  • Improved detection of HTTPS request to an HTTP port. Reduces blocking due to "Bad Request".
  • Fixed bug: Running LiteSpeed process could not apply new expiration date for an updated license key.
  • Fixed bug: Apache and LiteSpeed have different values for SERVER_PORT behind an HTTP proxy.
  • Fixed bug: Block Bad Request setting could not be turned off from WebAdmin console.

New in LiteSpeed Web Server 4.2.9 (May 6, 2014)

  • Security patch to fix OpenSSL Heartbleed bug.

New in LiteSpeed Web Server 4.2.8 (May 6, 2014)

  • Added IP-based licensing.
  • Added ability to purchase LiteSpeed Cache as an add-on. (Coming soon!)
  • Enhanced "external application no abort" feature to allow uninterrupted PHP script execution during server restarts.
  • Updated default error template.
  • Fixed minor bugs in rewrite engine.
  • Fixed bug: Expires headers could not be added to dynamic response.

New in LiteSpeed Web Server 4.2.7 (May 6, 2014)

  • Allow root owned file in PHP suEXEC mode.
  • Improved mod_security compatibility.
  • Enabled custom php.ini via PP_CUSTOM_PHP_INI environment variable (used in Plesk PHP-FPM Apache configuration).
  • Added support for VH_USER variable in external application environment variable configuration.
  • Apache binary wrapper will remove itself if LSWS is uninstalled.
  • Improved SSI engine.
  • Minor Apache .htaccess compatibility fixes.

New in LiteSpeed Web Server 4.2.6 (May 6, 2014)

  • Improved handling of resource limits to avoid generating 508 error pages when possible. After resource limits have been reached, requests will instead be re-queued until resources become available.
  • Fixed bug: Failure to detect all IPv6 addresses.
  • Fixed bug: Multiple directives in different .htaccess files along a path were processed in the wrong order.
  • Fixed bug: Server crash when an .htaccess file has been updated while it is still referenced by a long running request.
  • Fixed bug: suEXEC ProcessGroup mode set at the virtual host level fails to override server level suEXEC Daemon mode.

New in LiteSpeed Web Server 4.2.5 (Nov 1, 2013)

  • Added just in time Apache vhost configuration to improve server startup speed.
  • Major improvements and bug fixes and in mod_security engine: added more transform functions, better variable collection handling, added IP match operators, added MATCHED_VARS support.
  • Added new PHP suEXEC WorkerGroup mode to create per-account worker groups using the LiteSpeed-specific Apache-style directives "LSPHP_ProcessGroup" and "LSPHP_Workers". It is PHP selector-compatible and opcode caching friendly.
  • Improved CloundLinux compatibility — return 508 error page when resource limit has been reached.
  • Rack/Rails: added per-application environment configurations for Rack/Rails context to better support RVM gemset setup.
  • Bundled OpenSSL library has been upgraded to 1.0.1e with support for TLSv1.1 & TLSv1.2 ciphers.
  • Automatically detect and skip very large .htaccess file that can stall server processes.
  • Enabled skipping "File Not Found" logging in error log via rewrite environment variable "dontlog".
  • Added support for "Charset" in Content-Type header for autoindex pages.
  • Fixed bug in handling symbolic race condition when "Strict File Ownership" (equivalent to CloudLinux SecureLink) is enabled. (Special thanks to Rack911.)
  • Fixed bug allowing create/overwrite arbitrary file as root user via crafted symbolic link. (Special thanks to Rack911.)
  • Fixed bug in handling IPv6 address used in Apache httpd.conf.
  • Fixed bug in SSI engine causing LAST_MODIFIED variable to use wrong timestamp.
  • Fixed bug in rewrite engine with URL encoding.

New in LiteSpeed Web Server 4.2.4 (Aug 7, 2013)

  • Added Python WSGI support (Apache mod_wsgi equivalent).
  • LSWS will now switch back to Apache automatically when license expires.
  • Added OCSP stapling support for SSL.
  • Added a feature that moves realtime status reports to the RAM disk to avoid blocking lshttpd process in high I/O wait situations.
  • Automatically restart PHP suEXEC daemon if killed or crashed to avoid 503 errors.
  • OpenSSL AESNI hardware acceleration enabled for x86_64-Linux platform.
  • LSAPI STDERR logging is now disabled when STDERR logging is disabled in configuration.
  • Improved Redirect directive processing to make "Redirect 301/..." work in sub-directory .htaccess files.
  • Fixed a bug causing authentication failure when password is blank.
  • Fixed a bug in IPv4 Access Control configuration causing the smaller subnet to overshadow the larger subnet when two subnets overlapped.
  • Fixed a bug in STDERR logging, which may cause interlocking between lscgid and lshttpd worker processes.
  • Fixed a bug causing MIME types such as "text/css; charset=..." to not be gzipped when GZIP is enabled for "text/*".
  • Fixed a bug in SecRuleRemoveById directive.
  • Fixed a bug in ModSec engine when handling collections directives.
  • Fixed a bug in graceful restarting with over 1000 listeners.
  • Fixed a bug causing log rotation not to be disabled when rotating limit is set to 0.

New in LiteSpeed Web Server 4.2.3 (May 23, 2013)

  • Added setting to hide the LiteSpeed signature in the default error pages.
  • Added ability to use sendfile() to send back dynamic responses.
  • Updated in-GUI settings explanations.
  • Added option to stop the server from aborting external application processes even when the client connection has been broken.
  • Added PHP suEXEC daemon ability to kill runaway child processes.
  • Reserved connections for the WebAdmin console to ensure accessibility regardless of the current number of connections.
  • Added CGI daemon ability to log processes killed by signals to stderr.
  • Fixed FileETag directive and rewrite rule incompatibility.
  • Fixed FreeBSD realtime stats error.
  • Updated PHP build utility to support up to PHP 5.3.25 and 5.4.15.
  • Discontinued support for Solaris SPARC.

New in LiteSpeed Web Server 4.2.2 (Jan 31, 2013)

  • Added HTTP "PATCH" method support.
  • FileEtag directives have been fully supported.
  • Added "Cache-Control:no-cache, no-store, must-revalidate" response header to 302 response.
  • Improved Ruby Rack/Rails support along with new ruby-lsapi 4.1. "RewindableInput" interface has been natively implemented to maximize Rack performance.
  • LiteSpeed Cache improvement: added max-stale age support, stale cache copy can be served while updating the cache; added "REFRESH" method to serve existing cached copy while updating the cache.
  • Improved mod_security compatibility with gotroot ruleset.
  • Fixed CageFS mount point issue with litespeed.
  • Fixed rewrite variable "%{TIME}" parsing error.
  • Updated PHP build utility to include PHP 5.4.11 and 5.3.21.

New in LiteSpeed Web Server 4.2.1 (Nov 22, 2012)

  • PHP suEXEC daemon mode will be auto disabled when different php.ini required via PHPRC or PHPIniDir due to internal limitation of PHP engine.
  • Improved error handling in case of LSWS swap directory out of space.
  • Fixed a bug in SSI encoding.
  • Updated PHP build utility to include PHP 5.4.8 and 5.3.18.

New in LiteSpeed Web Server 4.2 (Sep 11, 2012)

  • Added support for PHP suEXEC daemon mode to improve performance and memory efficiency (LSAPI 6.0 required).
  • Improved compatibility of Apache mod_security by adding support for variable collections.
  • Improved symbolic link security for shared hosting by introducing LiteSpeed specific directives "DisableSymlinkOverride" and "VhostRestrained".
  • Updated PHP build utility to include PHP 5.4.6 and 5.3.16.

New in LiteSpeed Web Server 4.1.13 (Jul 3, 2012)

  • Improved compatibility of Apache mod_rewrite.
  • Improved compatibility of Apache mod_security.
  • Fixed a bug that will bypass URL security check when rewrite rule is triggered.
  • Enforce RC4 cipher to get around SSL BEAST attack.
  • Added a script tool for cache purge.
  • cPanel whm plugin: Added a script to build matching php from command line.
  • Updated openssl to 0.9.8x.
  • Updated PHP build utility to include PHP 5.4.4 and 5.3.14.

New in LiteSpeed Web Server 4.1.12 (Mar 27, 2012)

  • Fixed a XSS security issue in Real-time graphs of Web Admin Console.
  • Fixed a bug in .htaccess handling that may cause server crash.
  • Fixed a bug in rewrite rules when handling encoding/decoding url.
  • Added 2 commonly used configurations in cPanel WHM plugin – Configure LiteSpeed.
  • Improved performance and reduced cost of PHP process start-up.
  • Improved compatibility/bug fix of mod_security related to skip-after action handling.
  • Added flag B support in rewrite rules.
  • Added no-cache-domains support in cache configuration.
  • Updated PHP build utility to include PHP 5.4.0.

New in LiteSpeed Web Server 4.1.11 (Feb 22, 2012)

  • Added a security feature of “Force Strict Ownership Checking”, similar to “Secure Link” in Cloud Linux.
  • Added version management in cPanel WHM plugin.
  • Fixed a bug that may cause frequent crash when trying to detect Mime-type based on file suffix.
  • Updated openssl to 0.9.8t.
  • Updated PHP build utility to include PHP 5.3.10.

New in LiteSpeed Web Server 4.1.10 (Jan 7, 2012)

  • Fixed wordpress garbage output when SuperCache GZIP compression is enabled.
  • Lifted the limit for Max Request Body Size for 64Bit OS.
  • Updated openssl to 0.9.8s.

New in LiteSpeed Web Server 4.1.9 (Dec 19, 2011)

  • Fixed a bug that causes random 503 error.
  • Improved mod_security audit logging.

New in LiteSpeed Web Server 4.1.8 (Nov 21, 2011)

  • Fixed a bug that causes 100% CPU utilization once connection limit has been reached.
  • Added command line upgrade script admin/misc/lsup.sh .
  • Added license status information in version managment page of web console

New in LiteSpeed Web Server 4.1.7 (Oct 29, 2011)

  • Fixed a bug that may cause 100% CPU utilization randomly.
  • Added a feature to throttle the number of SSL handshakes that can be made by a client. This is anti-DDoS enhancement against SSL negotiation DDoS attack.

New in LiteSpeed Web Server 4.1.6 (Oct 18, 2011)

  • Fixed bugs that introduced in 4.1.5 release such as 403 error, access log permission issue.
  • Security feature of suphp-like file permission introduced in 4.1.5 has been turned off by default. User can manually turn it on if needed.

New in LiteSpeed Web Server 4.1.5 (Oct 7, 2011)

  • Added an option to prevent serving unsafe scripts.
  • Fixed a bug related to userdir URL and suEXEC.
  • Fixed a bug that causes periodic 100% cpu usage by lshttpd.
  • Improved licensing by accessing a second license server if the primary fails.

New in LiteSpeed Web Server 4.1.4 (Oct 7, 2011)

  • Fixed a bug that cause LSWS crash when cache is enabled.
  • Fixed a bug in SSI engine.
  • PHP 5.3.8 has been added to PHP build utility.

New in LiteSpeed Web Server 4.1.3 (Aug 3, 2011)

  • Improved IPv6 support when loading Apache httpd.conf.
  • Improved bad request detection to avoid accidentally blocking IP while accessing non-configured HTTPS web site.
  • Fixed a bug that causes problem when uploading a large file.
  • Fixed a bug that causes file descriptor leak when page cache is in use.
  • Fixed a bug in SSI engine.
  • Fixed a bug in tracking HTTPS connections in-use.
  • Fixed bugs in real-time statistics.

New in LiteSpeed Web Server 4.1.2 (Jul 16, 2011)

  • Improved cache hash algorithm.
  • Fixed various bugs reported from 4.1.1 release.

New in LiteSpeed Web Server 4.1.1 (May 21, 2011)

  • Added private cache support.
  • Display cache related statistics in real-time status report.
  • Fixed various bugs reported from 4.0 release.

New in LiteSpeed Web Server 4.1 (Apr 14, 2011)

  • Added support for AIO (Asynchronized disk I/O) to greatly improve performance for servers with heavy Disk I/O.
  • Added support for HTTPS SNI (Server Name Indication), allowing multiple secured sites sharing one IP.
  • Added support for mod_security 2.5 rule sets.
  • Added connection level detailed status in real-time status page of web admin console.
  • Compatible with upload progress bar.
  • Added support for H.264 streaming.
  • Reduced memory usage when thousands of virtual hosts configured through Apache httpd.conf.
  • All bug fixes in 4.0.x branch have been included.

New in LiteSpeed Web Server 4.0.20 (Feb 25, 2011)

  • Added support for Cloud Linux SecureLVE.
  • Added a new response header "x-litespeed-cache-control" to allow program to control LiteSpeed page cache behavior.
  • Common cache control values are supported like no-cache, no-store, public, private, max-ages.
  • Changed the status code of "Request Timeout" from 408 to 500; this is to avoid client retrying automatically.
  • Retrying requests are limited to 30 seconds to avoid being processed for too long.
  • Updated openssl to 0.9.8r.
  • Fixed missing download url of mail header, suhosin patch for latest php version in web admin console – phpbuild.

New in LiteSpeed Web Server 4.0.19 (Jan 21, 2011)

  • Improved internal Cache feature:
  • Last modified header will be checked and return 304 if it has not changed.
  • Added response header “X-LiteSpeed-Cache hit” if content is served from cache.
  • Added “CACHE_HIT=1” environment variable, this can be used in customized access log.
  • Fixed encoding error related to gzip handling of cached copy.
  • Improved cPanel whm EasyApache Hooks handling.
  • Improved compatibility with ISPconfig.
  • Improved performance under LVE.
  • Upgraded openssl to 0.9.8q, php build to 5.2.17 and 5.3.5.

New in LiteSpeed Web Server 4.0.18 (Dec 9, 2010)

  • Improved mod_security compatibility.
  • Add timeout option for graceful restart.
  • Added logic to take care of orphaned php processes.
  • Improved cache functionality.
  • Improved clean up logic for temporary files.
  • New features in cPanel WHM plug-in: Added EasyApache Integration: Build new php binary through EasyApache will automatically build matching php for LiteSpeed, and manual switch between Apache and LiteSpeed while building php is no longer needed. Fixed directory issues in building matching php add-on modules.

New in LiteSpeed Web Server 4.0.17 (Oct 6, 2010)

  • Added Apache mod_actions support.
  • Added configurable option "Ignore Apache Modules" to bypass unwanted Apache modules.
  • Added configurable option for turning off ModSecurity directives in htaccess.
  • Improved Web Admin PHP build tool, which can build multiple opcode cache at same time, also added memcache build option.
  • Improved rewrite engine.
  • Improved lswsctrl script.

New in LiteSpeed Web Server 4.0.15 (Jun 14, 2010)

  • Security fix for null-byte exploit from script.
  • Enabled wswatch script for cPanel servers, it will monitor and launch lsws if it got killed by cPanel.
  • Fixed a bug in SSI engine.
  • A bug in web admin has been fixed that when there is only one external app for status page.

New in LiteSpeed Web Server 4.0.14 (Apr 16, 2010)

  • CloudLinux Lightweight Virtual Environment (LVE) support has been added.
  • Support for Interworx hosting control panel has been added.
  • A bug in Server Side Include runtime has been fixed.
  • License management in cPanel WHM plugin has been improved
  • There are minor bug fixes and tuning.

New in LiteSpeed Web Server 4.0.12 (Dec 16, 2009)

  • Updated OpenSSL to 0.9.8l to address TLS man-in-the-middle renegotiation attack.
  • Fixed a bug in handling HEAD request.
  • Fixed a bug in SSL error handling.
  • Fixed a bug that prevents LSWS from reloading Apache httpd.conf when an include file was removed.
  • Minor improvements in Web Admin console.
  • Fixed a few minor Apache compatibility issues.

New in LiteSpeed Web Server 4.0.10 (Aug 19, 2009)

  • Fixed 503 errors and can tolerant PHP crash under certain situation.
  • Changed admin console to suEXEC mode, which is more secure and stricter on file permissions.
  • Improved PHP build script in admin console.
  • Fixed a bug that causes 403 access deny when access file containing symbolic link.
  • Fixed a few minor Apache compatibility issues.

New in LiteSpeed Web Server 4.0.9 (Jul 28, 2009)

  • Fixed a bug causes random 503 errors in 4.0.7 and 4.0.8 .

New in LiteSpeed Web Server 4.0.8 (Jul 27, 2009)

  • Addressed a few bug introduced in 4.0.7.

New in LiteSpeed Web Server 4.0.7 (Jul 27, 2009)

  • Added support for compressed Wordpress super cache.
  • Fixed a bug in RewriteMap handling
  • Improved compatibility with Apache configuration directives, "AddHandler", "SetHandler".

New in LiteSpeed Web Server 4.0.6 (Jul 13, 2009)

  • Fixed a buffer overflow bug, which was detected by the hacking shield introduced in 4.0.5.

New in LiteSpeed Web Server 4.0.5 (Jun 29, 2009)

  • Added support for mod_auth_passthrough to seamlessly integrate with cPanel FrontPage extension.
  • Implemented hacking shield to actively defend hacking attempts of buffer overflow.
  • Fixed a browser compatibility issue by turning off GZIP compression when there is a custom "Content-Encoding" response header added by CGI script.
  • Added license management in cPanel/WHM plug-in.

New in LiteSpeed Web Server 4.0.4 (Jun 10, 2009)

  • Imporved external redirect handling by detecting possible loop redirections.
  • Improved error page handling, avoid extra rewrite processing which results in problem with authentication.
  • Improved compatibility of mod_security rules handling.
  • Fixed a bug in WHM plugin that prevent uninstall from working properly.

New in LiteSpeed Web Server 4.0.3 (Jun 10, 2009)

  • Fixed a bug in symbolic link checking.
  • Improved Auto Index script on handling special characters.
  • Improved compatibility of mod_security rules handling.
  • Improved graceful restart.
  • www.domain and domain are now treated as different domains.
  • Added a few xml related mime types to the default configuration.

New in LiteSpeed Web Server 4.0.2 (Jun 10, 2009)

  • Fixed a bug in SSI implementation that may cause lshttpd crash.
  • Fixed a bug in constrained option for virtual host.
  • Improved Apache config file loading speed.
  • (For suEXEC only) Added support for PHPIniDir directive at virtual host level to allow customized php.ini.
  • (For suEXEC only) Added support for PHPRC environment variable to customize php.ini.
  • Added suEXEC configuration for server level external applications such as FastCGI, LSAPI.

New in LiteSpeed Web Server 4.0.1 (Jun 10, 2009)

  • Fixed a bug in Process Manager that failed to stop unused processes.
  • Fixed a bug that causes crash when accessing certain UserDir URL.
  • Improved cPanel/WHM plug-in.
  • Minor bug fixes and improvements.

New in LiteSpeed Web Server 4.0 (Mar 18, 2009)

  • mod_cache support
  • Server Side Include support
  • mod_security 2.x rule support
  • Improved mod_security audit log, compatible with cPanel mod_security plugin.
  • Large file support for 32bit Linux
  • Reorganized real-time status page
  • Improved loggoing (stderr log control, piped logger, file lock for access logging)
  • Added Rails 2.3 support script using Rack framework.
  • Improved "Build matching PHP" feature in WHM LSWS plugin.
  • Improved mod_rewrite compatibilities.
  • Minor bug fixes and improvements.

New in LiteSpeed Web Server 3.3.24 (Jan 12, 2009)

  • Fixed mailman problem with some cPanel releases.
  • Improved cPanel RubyOnRail support.
  • Improved mod_rewrite compatibilities.
  • Minor bug fixes and improvements.

New in LiteSpeed Web Server 3.3.23 (Dec 11, 2008)

  • Fixed a bug that may cause lshttpd crash when access certain page via userdir format URL.
  • Fixed a bug that cause fixed 256MB memory limit on non-suEXEC lsphp processes when used with cPanel.
  • Fixed a bug in RailsRunner.rb that causes compatibility problem with Rails 2.2.1
  • Fixed a bug in virtual host template when referencing $VH_DOMAIN.

New in LiteSpeed Web Server 3.3.22 (Nov 3, 2008)

  • Fixed a bug introduced in 3.3.21 that may cause lshttpd crash during server shutdown.

New in LiteSpeed Web Server 3.3.21 (Oct 28, 2008)

  • Improved access logging, support for pipe logger setup in Plesk.
  • Improved memory usage when hosting massive amount of virtual hosts through Apache httpd.conf .

New in LiteSpeed Web Server 3.3.20 (Oct 15, 2008)

  • Fixed a bug in VMware detection code that causes LSWS crash on mostly X86_64 server.

New in LiteSpeed Web Server 3.3.19 (Oct 1, 2008)

  • IP to geo location feature has been updated to match new changes in Apache mod_geoip.
  • Special care has been added to handle 1xx response from proxied back-end web servers.
  • Fixed a bug that cause LSWS not to reload license key after the key being updated.
  • Fixed a few bugs that may rarely cause LSWS to crash.

New in LiteSpeed Web Server 3.3.18 (Sep 9, 2008)

  • New feature: support subdomain for cpanel.*, webmail.*, whm.* and webdisk.* newly added by cPanel.
  • Improved script being used to override cPenal HTTP restart script.
  • Fixed a few minor bugs.

New in LiteSpeed Web Server 3.3.17 (Aug 26, 2008)

  • Improved Apache compatibilities for PHP environment variables, PHP_SELF, SCRIPT_NAME, etc.
  • Fixed a bug in the default XML configuration file.

New in LiteSpeed Web Server 3.3.16 (Aug 19, 2008)

  • New feature: added support for "Header" directive.
  • New feature: added timestamp for std error log entries.
  • Ignore signal SIGXFSZ to avoid core dump when log file reaches 2GB.
  • Update PHP to 4.4.9.
  • Improved AWStats log file handling.
  • Fixed a bug in handling IP configuration when server has over 100 IP addresses assigned.

New in LiteSpeed Web Server 3.3.15 (Jul 8, 2008)

  • New feature: Add cPanel WHM LSWS plug-in for cPanel users.
  • Add a feature that allows disabling gzip compression via URL rewrite.
  • Fixed a bug in request filter that may cause LSWS crash.
  • Improved sorting in version management of web console.
  • Improved compatibility with Apache configuration for vhost with dedicated IP.

New in LiteSpeed Web Server 3.3.14 (Jun 4, 2008)

  • Fixed a problem introduced by 3.3.13 that causes LSWS being stopped by control panels
  • cPanel compatibilities has been improved, cPanel should not kill lshttpd during update or account administration.

New in LiteSpeed Web Server 3.3.12 (May 20, 2008)

  • Improved UNICODE support for the web console.
  • Added PHP 5.2.6 option to the PHP build script.
  • SSLv2 has ben disabled by default, improved Apache SSL configuration compatibilities.

New in LiteSpeed Web Server 3.3.9 (Mar 25, 2008)

  • Fixed a bug in parsing custom access log format string.
  • Fixed a bug in generating mod_security compatible audit log.
  • Fixed a bug in handling SSLCertificateChainFile configuration.
  • Fixed a bug in web console when editing a text field containing some special characters.
  • Improved 30x custom error page handling.

New in LiteSpeed Web Server 3.3.8 (Mar 14, 2008)

  • Due to cPanel changes, an option to replace Apache at server wide with a wrapper script has been added. This solution should work with all control panels
  • Fixed a problem with using a PHP script as custom error page for status code 30x.
  • Apache configuration compatibilities has been improved

New in LiteSpeed Web Server 3.3.6 (Feb 29, 2008)

  • A bug that cause inappropriate CPU resource limit applied to PHP/Ruby processes has been fixed.
  • Added a default MIME type for ".rar".

New in LiteSpeed Web Server 3.3.5 (Feb 27, 2008)

  • A dedicate security audit log compatible with csf has been added
  • Add an option in web console to explicitly enabled frontpage extension.
  • Support for H-Sphere mod_psoft_traffic log file has been added.
  • Improved Apache compatibilities with 'Include' and 'DirectoryIndex' directives.
  • Apache custom access log format has fully supported.
  • A resource limit problem for PHP suEXEC has been fixed.
  • ATTENTION: if you set Process soft/hard limit for lsphp external app less than 50, you should increase it.
  • Minor improvements in web GUI.
  • Improvements in reducing server load during server startup.