What's new in Abyss Web Server X1 2.11
Apr 8, 2016
- NEW FEATURES:
- SNI support (virtual hosting of HTTPS sites on the same IP);
- HTTP/1.1 reverse-proxy with connection pooling;
- Responsive console to make it accessible on mobiles/tablets as well as normal computers.
- SECURITY ENHANCEMENTS:
- This update improves SSL/TLS support by:
- Adding support for SHA2 signed certificates;
- Disabling the now obsolete RC4 cipher;
- Providing default SSL/TLS parameters with high levels of encryption.
New in Abyss Web Server X1 2.9.3.6 (Nov 11, 2014)
- This update improves SSL/TLS support by:
- Adding support for elliptic curve Diffie–Hellman-based perfect forward secrecy (ECDHE-RSA)
- Implementing the TLS fallback SCSV mechanism
- Providing default SSL/TLS parameters with SSLv3 disabled and high levels of encryption.
- Providing an optional SSL/TLS set of parameters to continue support SSLv3 clients while ensuring mitigation of POODLE and BEAST attacks.
New in Abyss Web Server X1 2.9.3.2 (Apr 15, 2014)
- Security Enhancements:
- The new releases improves the SSL/TLS support while hardening it against recently discovered SSL/TLS vulnerabilities:
- Updated the SSL/TLS engine to fix the Heartbleed issue (CVE-2014-0160)
- Disabled SSL/TLS compression support to mitigate CRIME attacks
- Changed the default cipher lists as a countermeasure against BEAST attacks
- Disabled client initiated SSL renegotiation and added secure TLS renegotiation to mitigate client initiated SSL/TLS renegotiation denial of service attacks
- Cipher choice during SSL/TLS handshakes is now imposed by the server
- Removed support for the insecure SSL version 2 protocol
- New Features:
- The new releases add the following features:
- Added support for 3072 and 4096-bit private keys generation
- Added a parameter to control the size of script/Web application output buffer
- Updated documentation
- The new releases also include several minor internal enhancements and fix the issues that have been reported with previous versions.
New in Abyss Web Server X1 2.9 (Jun 20, 2013)
- New Features:
- Added IDN (International Domain Names) support to declare domain names with diacritics or non-latin scripts such as bücher.de
- Added log rotation based on size or time (hourly, daily, weekly, monthly, yearly)
- Added support for automatic generation of the Expire HTTP header based on current time or the file last modification time
- Added support for the special CGI header X-Sendfile to accelerate file service from scripts or Web applications
- Added ability to recycle FastCGI processes when a given file changes
- Added an default internal MIME types table with 400 common MIME types already declared.
- Added support for restricted downloads/token-based downloads: special URLs which offer downloads which cannot be hotlinked and which are time limited and possibly IP limited. Such URLs are to be generated by very simple scripts.
- Improved reverse-proxy compatibility with several back-end servers (especially application servers such as Alpha Five and RealBasic generated Web applications)
- Improved support for ASP.NET (added support for IsClientConnected() and reduced the number of required worker processes in some cases.)
- Updated SSL/TLS engine
- Updated documentation
- The new releases also include several internal enhancements and fix the problems that have been reported with previous versions.
New in Abyss Web Server X1 2.8 (Jun 1, 2012)
- IPv6 support
- Reverse-proxy support
- Back-end operation: support for operation behind reverse proxies (X-Host/X-Forwarded-Host support - Host-wide : support for the use of the actual IP X-Forwarded-For - X-Forwarded-Proto)
- Configurable log
- Limit accesses per IP
- Server Activity: "Live" requests view in the console
- Added private keys dump in the console
- Detection of double instances and the presence of the Windows Service
- Added an optional base parameter to URL Rewriting rules
- Added timestamps to CGI error logs
- Support for chunked POSTs with HTTP trailer headers support
- Added full HTTP "Expect" header support
- Added request body restrictions : Added a parameter to limit the size of a request line, Added a parameter to limit the size of request headers length, Report error 414 or 400 for request length overflow
- Added ASP.NET/FastCGI processes recycling based on the process lifetime
- Full preload of ASP.NET applications (using an internal HTTP HEAD request)
- Added the capability to ASP.NET applications to handle all the virtual paths inside an application directory (useful for ASP.NET applications using MVC/AJAX/routes.)
- Updated SSL/TLS engine
- Updated documentation
New in Abyss Web Server X1 2.7 (May 24, 2011)
- Native support for 64-bit platforms on Windows and Linux;
- Accurate control over the FastCGI processes creation rate and use through a new set of parameters. These will help control the load of heavy Web sites and limit the processing resources for a particular Web application;
- Updated ASP.NET connector for the Windows version with support for legacy ASP.NET 1.1 applications as well as 32-bit and 64-bit editions of ASP.NET 2.0, 3.5, and 4.0;
- Support for AJAX and RIA/Silverlight ASP.NET frameworks;
- Ability to preload FastCGI interpreters or applications as well as the ASP.NET framework for faster first request processing;
- Updated SSL/TLS engine;
- Updated documentation.
New in Abyss Web Server X1 2.6 (Jan 22, 2009)
- EXtended Server Side Includes (XSSI) support through the addition of new directives (#if, #elif, #else, #endif, and #set) to enable flow control and advanced variables setting and substitution constructs.
- On-the-fly HTTP compression to save bandwidth by automatically sending GZipped output to browsers which support HTTP compression.
- Advanced URL Rewriting rules with support for back-references from matched conditions (%1 ... %9).
- Full control over accepted SSL Ciphers.
- Updated ASP.NET connector for the Windows version with support for ASP.NET 1.1, 2.0, and 3.5.
- Improved support for multicore processors.
- Updated documentation.
New in Abyss Web Server X1 2.5 (Sep 20, 2007)
- Secure SSL/TLS connections (HTTPS) support.
- Integrated interface to manage, import, self-sign, and request the signature of SSL certificates.
- A tool to setup automatic start up on computer boot time for the Linux and FreeBSD versions.
- Updated documentation.
- The new releases also include several internal enhancements and fix the problems that have been reported with previous versions.