Releases: Safe3/uusec-waf
Releases · Safe3/uusec-waf
UUSEC WAF v7.1.1
UUSEC WAF v7.1.0
Feature Updates
-
Enhanced plugin functionality: Now supports setting plugin priority and controlling plugin behavior via return values. Each filter stage can return two boolean values:
- If the first value is
true, subsequent plugins in the current stage will not be executed. - If the second value is
true, the system immediately returns and skips all subsequent security rules.
- If the first value is
Bug Fixes:
- Resolved an issue where free SSL certificates failed to auto-renew.
UUSEC WAF v7.0.6
Bug Fixes:
- Fixed display issues on certain screen resolutions
UUSEC WAF v7.0.5
Feature Updates:
- Optimized interface display, adjusted delete icon
Bug Fixes:
- Fixed issue where cache acceleration cleanup didn't take effect in certain scenarios
- Fixed inability to use underscores in domain names when adding domains
- Fixed issue where IP threat intelligence plugin continued logging after triggering high-frequency attack rules
UUSEC WAF v7.0.4
Bug Fixes
- Fixed the issue of free certificate renewal failures
UUSEC WAF v7.0.3
Bug Fixes
- Resolved the problem that prevented viewing certain logs when the log level filter was set to 'Info'
UUSEC WAF v7.0.2
Bug Fixes
- Fixed slow website access caused by IP threat intelligence updates under poor network conditions
- Fixed error reporting issues with some frontend UI elements
Improvements
- Update GEO IP database to the latest version
UUSEC WAF v7.0.1
Bug Fixes
- Fixed inability to modify DSL rules after adding them
- Fixed issue where HTTP/2 toggle didn't take effect
- Fixed incorrect regex pattern matching warning for cache acceleration paths
UUSEC WAF v7.0.0
Feature Updates
Warning
This version can't be updated from older versions, you need to reinstall UUSEC WAF!
Interface & Management
- Redesigned main program and management interface with improved aesthetics and usability, supports UI language switching (English/Chinese)
- Added Rule Collections functionality: Create custom rule templates for batch configuration
- Introduced whitelist rules that terminate further rule matching upon success
- UUSEC WAF Rules API intelligent suggestions during advanced rule editing
- New plugin management supporting hot-reloaded plugins to extend WAF capabilities
Protocol & Optimization
- Supports streaming responses for continuous data push (e.g., LLM stream outputs)
- Enables Host header modification during proxying for upstream service access
- Search engine validation:
waf.searchEngineValid(dns,ip,ua)prevents high-frequency rules from affecting SEO indexing - Interception log report generation (HTML/PDF exports)
- Automatic rotation of UUSEC WAF error/access logs to prevent performance issues
Security & Infrastructure
- Expanded free SSL certificate support: HTTP-01 & DNS-01 verification across 50+ domain providers
- Customizable advanced WAF settings: HTTP2, GZIP, HTTP Caching, SSL protocols, etc
- Cluster configuration: Manage UUSEC WAF nodes and ML servers via web UI
UUSEC WAF Community Edition v6.8.0 LTS
Improvements
- New support for adding multiple domain names while creating new sites
- Added support for automatically creating uuwaf database structures
- Beautiful web management interface and optimized functionality
Bugfix
- Resolve the host version authentication failure issue of reconnecting after disconnecting database
- Fix nginx CVE-225-23419 vulnerability