分类: 技术源码

nginx 开发版本1.1.4 放出

Changes with nginx 1.1.4                                         20 Sep 2011

*) Feature: the ngx_http_upstream_keepalive module.

*) Feature: the "proxy_http_version" directive.

*) Feature: the "fastcgi_keep_conn" directive.

*) Feature: the "worker_aio_requests" directive.

*) Bugfix: if nginx was built –with-file-aio it could not be run on
Linux kernel which did not support AIO.

*) Bugfix: in Linux AIO error processing.
Thanks to Hagai Avrahami.

*) Bugfix: reduced memory consumption for long-lived requests.

*) Bugfix: the module ngx_http_mp4_module did not support 64-bit MP4
"co64" atom.

准备升级主站varnish到3.0.1,主要看上最后一句了

Summary of changes from 3.0.0 to 3.0.1

    • Objects with grace and keep set were mistakenly seen as candidates for the shortlived storage, but would not be cleaned up quickly, something that manifested as if there was a memory leak. This is now fixed.
    • When multiple clients were waiting for an object, all clients would be woken up when an object became available, leading to stuck threads. This has now been fixed
    • A bug in how XML entities were handled with ESI has been fixed
    • The documentation has seen numerous updates
    • varnishncsa is now more stable and has support for showing arbitrary request and response fields、

期待varnishncsa有更好的表现

 

nginx 更新新的开发版本 1.1.2

Changes with nginx 1.1.2                                         05 Sep 2011

    *) Change: now if total size of all ranges is greater than source
       response size, then nginx disables ranges and returns just the source
       response.

    *) Feature: the "max_ranges" directive.

    *) Bugfix: the "ssl_verify_client", "ssl_verify_depth", and
       "ssl_prefer_server_ciphers" directives might work incorrectly if SNI
       was used.

    *) Bugfix: in the "proxy/fastcgi/scgi/uwsgi_ignore_client_abort"
       directives.

nginx 1.1.0 已发布,本站已更新

Changes with nginx 1.1.0                                         01 Aug 2011

    *) Feature: cache loader run time decrease.

    *) Feature: "loader_files", "loader_sleep", and "loader_threshold"
       options of the "proxy/fastcgi/scgi/uwsgi_cache_path" directives.

    *) Feature: loading time decrease of configuration with large number of
       HTTPS sites.

    *) Feature: now nginx supports ECDHE key exchange ciphers.
       Thanks to Adrian Kotelba.

    *) Feature: the "lingering_close" directive.
       Thanks to Maxim Dounin.

    *) Bugfix: in closing connection for pipelined requests.
       Thanks to Maxim Dounin.

    *) Bugfix: nginx did not disable gzipping if client sent "gzip;q=0" in
       "Accept-Encoding" request header line.

    *) Bugfix: in timeout in unbuffered proxied mode.
       Thanks to Maxim Dounin.

    *) Bugfix: memory leaks when a "proxy_pass" directive contains
       variables and proxies to an HTTPS backend.
       Thanks to Maxim Dounin.

    *) Bugfix: in parameter validaiton of a "proxy_pass" directive with
       variables.
       Thanks to Lanshun Zhou.

    *) Bugfix: SSL did not work on QNX.
       Thanks to Maxim Dounin.

    *) Bugfix: SSL modules could not be built by gcc 4.6 without
       –with-debug option.

nginx 1.0.5 放出,修正如下

Changes with nginx 1.0.5                                         19 Jul 2011

    *) Change: now default SSL ciphers are "HIGH:!aNULL:!MD5".
       Thanks to Rob Stradling.

    *) Feature: the "referer_hash_max_size" and "referer_hash_bucket_size"
       directives.
       Thanks to Witold Filipczyk.

    *) Feature: $uid_reset variable.

    *) Bugfix: a segmentation fault might occur in a worker process, if a
       caching was used.
       Thanks to Lanshun Zhou.

    *) Bugfix: worker processes may got caught in an endless loop during
       reconfiguration, if a caching was used; the bug had appeared in
       0.8.48.
       Thanks to Maxim Dounin.

    *) Bugfix: "stalled cache updating" alert.
       Thanks to Maxim Dounin.

WordPress.org 密码重置

2011 年 6 月 22 日, Jiehan

今天早些时候,WordPress 开发团队注意到部分热门插件(AddThis、WPtouch 及 W3 Total Cache)的代码库中出现可疑的代码提交,且包含伪装巧妙的后门。开发团队断定,这些代码的提交操作并非出自作者之手,因此将代码库回滚,并为这些插件推送更新。同时开发团队也关闭了插件代码库的存权限,继续查找其他可疑内容。

开发团队尚在研究具体情况,但作为预防措施,他们决定强制所有 WordPress.org 用户重置密码。用户在使用论坛、trac 或对插件或主题提交代码之前均需重置密码。(bbPress.org 与 BuddyPress.org 也受到影响)

作为用户,请确保同一密码不用于多个服务。开发团队还奉劝用户不要重置为原密码。

其次,如果安装有 AddThisWPtouchW3 Total Cache 并有可能在过去一天内进行了更新,请确保访问更新页面并升级各插件为最新版。

参见 WordPress Development Blog,多谢 xslidian 提供翻译稿。