ukukhululwa kweseva ye-http engasindi . Inguqulo entsha inezinguquko ezingu-149, ikakhulukazi ukufakwa kokujwayelekile kwe-URL ngokuzenzakalelayo, ukusetshenzwa kabusha kwe-mod_webdav, nomsebenzi wokuthuthukisa ukusebenza.
Kusukela ku-lighttpd 1.4.54 Ukuziphatha kweseva okuhlobene nokwenza kube jwayelekile kwe-URL lapho kucutshungulwa izicelo ze-HTTP. Izinketho zokuhlolwa okuqinile kwamanani kusihloko Sosokhaya ziyasebenza, ukwenziwa kwezixhumanisi ezijwayelekile ezithunyelwe ngezihloko kanye nokuvinjwa kwezixhumanisi ezinezinhlamvu zokulawula ezingaphunyuki nakho kunikwe amandla. Inqubo yokujwayela ihlanganisa ukuguqulwa okuzenzakalelayo kwe-'\' kuya ku-'/', '%2F' kuya ku-'/', '%20' kuya ku-'+', ukulungiswa nokususwa kwezingxenye zezindlela zefayela ezinezinkomba '.'. kanye no-'..', ehlukanisa izinhlamvu eziphunyukile '-', '.', '_' kanye ne-'~'.
Uma kuthanda, ukuziphatha kokucubungula i-URL kungashintshwa kuzilungiselelo kusetshenziswa izinketho ezithi “header-strict”, “host-strict”, “host-normalize”, “url-normalize”, “url-normalize-unreserved”, “url -okujwayelekile-okudingekayo” ",
"url-ctrls-reject", "url-path-2f-decode", "url-path-dotseg-remove" kanye "url-query-20-plus", manje asethwe ukuthi "vumela".
Ezinye izinguquko zihlanganisa ukuhlelwa kabusha okuphelele kwemojula ye-mod_webdav, okwenze kwaba nokwenzeka ukufeza ukuhambisana okugcwele nokucaciswa, ukuthuthukisa ukusebenza nokuthembeka. Phakathi kwezinguquko eziphula ukuhambisana ku-mod_webdav ukuvinjwa kwezicelo ze-PUT ezingaphelele. I-Mod_auth yengeza usekelo lwe-algorithm ye-SHA-256 yamapharamitha wokuqinisekisa we-hashing (HTTP Auth Digest).
Imojuli entsha, i-mod_maxminddb, iphakanyiswe ukuthi ithathelwe indawo i-mod_geoip (i-mod_geoip manje isihoxisiwe).
Source: opennet.ru