Kev tso tawm ntawm cov ceg tseem ceeb nginx 1.23.4 tau tsim, nyob rau hauv uas txoj kev loj hlob ntawm cov yam ntxwv tshiab txuas ntxiv mus. Nyob rau hauv 1.22.x ruaj khov ceg, uas yog tswj nyob rau hauv parallel, tsuas yog kev hloov pauv cuam tshuam txog kev tshem tawm cov kab mob hnyav thiab qhov tsis zoo. Nyob rau hauv lub neej yav tom ntej, nyob rau hauv lub hauv paus ntawm lub ntsiab ceg 1.23.x, ib tug ruaj khov ceg 1.24 yuav tsim.
Ntawm cov kev hloov pauv:
- Los ntawm lub neej ntawd, TLSv1.3 raws tu qauv tau qhib.
- Cov lus ceeb toom tam sim no tau tshwm sim yog tias qhov teeb tsa ntawm cov txheej txheem siv rau lub mloog pob ntseg yog overridden.
- Thaum tus neeg siv khoom siv hom "pipelining", kev sib txuas raug kaw thaum tos cov ntaub ntawv ntxiv (nyob ze).
- Ntxiv kev txhawb nqa rau byte ntau yam hauv ngx_http_gzip_static_module module.
- Qib kev nkag rau SSL yuam kev "cov ntaub ntawv ntev dhau", "ntev dhau lawm", "phem legacy version", "tsis muaj kev kos npe algorithms", "phem digest length", "sagalgs ploj" tau hloov los ntawm "crit" mus rau "info" extension", "encrypted ntev dhau lawm", "phem ntev", "phem tseem ceeb hloov tshiab", "mixed handshake thiab non handshake data", "ccs tau txais ntxov", "cov ntaub ntawv ntawm ccs thiab tiav", "packet length ntev dhau lawm", "ntau qhov ceeb toom ceeb toom", "sau ntawv me me" thiab "tau txais fin ua ntej ccs".
- Kev ua haujlwm ntawm qhov chaw nres nkoj hauv cov lus qhia mloog tau raug txhim kho.
- Qhov teeb meem ntawm kev xaiv qhov tsis raug qhov chaw thaiv thaum siv qhov chaw ua ntej ntev dua 255 cim tau raug daws.
- ngx_http_autoindex_module thiab ngx_http_dav_module modules, nrog rau cov lus qhia, tam sim no txhawb cov cim tsis yog ASCII hauv cov npe cov ntaub ntawv ntawm lub Windows platform.
- Txhim kho lub qhov (socket) thaum siv HTTP / 2 thiab cov lus qhia error_page rau redirect 400 yuam kev.
Tau qhov twg los: opennet.ru