SafeLine-CE 6.10.2

Improvements

• Add Limit High-Frequency Error. Allow blocking clients that request a large number of errors. It can effectively prevent attacks such as directory traversal and 401 (HTTP Basic Auth) brute force:

Fix

• If a request is judged as an attack, but released because whitelist, it will now be recorded. The attack type will be recorded as 'Allow List'
• SSL Cert allow renewing the free cert in advance
• In Attacks Events and Attack Logs, Attack IP allow fuzzy query (#378)
• When a ssl site does not exist (SafeLine cannot find the host) , return a built-in cert to avoid leaking domain name (#978)
• Challenge (Anti-Bot) page display CN or EN according to the browser language now.
• Optimize the log processing module, remove container mario, improve performance and reduce resource usage.

SafeLine-CE 6.9.0

Added

• In Protection Log->Attack Detection->Attack Log, "View IP Profile" has been added, which allows you to directly jump to Changting IP Intelligence and comprehensively analyze the attack behavior of the IP
• Sites that support adding "redirection"
• Sites built with static files support setting default pages and behaviors when pages do not exist. Can be used to adapt History routing mode (#1049)
• System Settings -> Data Cleanup supports separate configuration of protection log and statistics cleanup
• Site global configuration, site advanced configuration, support enabling HTTP/1.0 (new installation is not enabled by default):
• Site global configuration, site advanced configuration, support resetting XFF
• Professional version supports customizing global and site Header operations and SSL cipher:
• Professional version supports customizing authentication pages

Fixed

• Fix the problem that HSTS configuration does not take effect when requesting 404
• Fix the problem that the site details->website routing page occasionally times out

SafeLine-CE 6.8.0

Improvements

• Change the code of Challenge to 468 to avoid being cached by CDN
• Reduce the probability of deadlock in luigi

Fix

• Mistakenly return 504 error when 502 Bad Gateway
• Access log and error log in site detail do not refresh automatically
• Advanced statistics sometimes have data of 0
• Sites Serving as Static Files mistakenly record some rate-limiting logs caused by 127.0.0.1

SafeLine-CE 6.6.0

Improvements:

• Allow building a site using static files:
• Add API Token in System:

Fix:

• Always create a new Let's Encrypt account abnormally when get a free cert (#759)

SafeLine-CE 6.5.0

Improvements:

• Allow setting Global (Protections ->Rate Limiting) and Site (Web Services -> Web Services) Rate limiting at the same time:
• Improve the speed of Tengine when loading site configuration after restart service

SafeLine-CE 6.4.1

Optimized

• UI optimizations

SafeLine-CE 6.4.0

Added

• Pro Edition supports recording CAPTCHA challenge logs

Fixed

• Fixed the problem that html dynamic protection sometimes does not protect the root path / (#1002)

Optimized

• Major optimization of international version
• Other UI optimizations

SafeLine-CE 6.3.0

Added

• Dynamic protection adds image watermarks, which can add domain name watermarks to images. In the professional version, you can customize the watermark text or image
• Supports configuring frequency limits for each site
• The high-frequency access restrictions of the professional version support setting the excluded Content-Type when counting
• The frequency limit log is now moved to the "Protection Log" menu.
  Optimize some UI interaction details

Fixed

• Fixed the problem that Data Statistics -> Basic Statistics -> 30-day interception data is not updated
• Fixed the problem that too much data is calculated in Data Statistics -> Today's interception of independent IP
• Fixed the problem that the interception and attack blocking counts of Data Statistics include the release request

SafeLine-CE 6.2.4

Fixes

• Fixed the problem that the attack blocking statistics of interception statistics include whitelist, resulting in incorrect display.
  Subsequent allowed attacks will no longer be counted in the attack blocking count.
• Fixed advanced statistics 4xx percentage display issue

SafeLine-CE 6.2.3

Improvements:

• Dashboard add the Interception counts caused by different reasons, such as attack blocking and Rate Limiting
• Custom Rules add 'Source IP' - 'Not In CIDR' (#980)
• Site Upstream allow Underline in hostname (#985)

Fixes:

• TOTP username of the Built-in user does not appear correctly when it's modified
• The content of AI Analysis is sometimes formatted incorrectly