Search results

Great news! Managed to connect Lucee (CFM) to OLS via Tomcat AJP/1.3 (as Servlet Engine) and also trough UDS (as Web Server), with somewhat limited results. For anyone interested, here are the server.xml connectors config settings for Tomcat (v9) - they can coexist: <Connector...

Noted. Alas, cached static files trough (basic) CDN services are significantly slower than same, non-cached JS/CSS/image files served directly from OLS w.s. While these CDN services might have higher tiers of subscription that can prioritize their caching for you, if one would be inclined to...

Even though LScache is enabled, it only seems to affect dynamic files (CFM) and HTML files. How do I set it to also cache JS, CSS & image files? Is there a setting for it I missed? My cache settings (Server settings -> Modules): checkPrivateCache 1 checkPublicCache 1 maxCacheObjSize...

Still haven't found a solution to this issue, still encounter it sporadically. Wonder if someone else is facing the same and maybe they found a workaround. The displayed content (directly from LS cache) is indeed NOT UTF-8, which is the problem. The dynamically generated HTML however -...

Thank you for testing it. Happens randomly. When I restart now (without any change whatsoever to the OLS settings or the directory structure) now everything works fine. Went over all my domains/pages, error does not repeat for now, but likely will reoccur at some point. What could be causing it?

New error. Screenshot (could it be the path? 2 slashes): Server level settings: Virtualhost level OCSP stapling settings: OpenLiteSpeed 1.8.2 on Alma Linux 9.5 (x64)

and that's why I <3 U (team OLS)

A lossless compressed data format, newer, faster (in de/compressing) than Brotli. Cloudfare uses it. https://github.com/facebook/zstd/blob/dev/doc/zstd_compression_format.md https://facebook.github.io/zstd/

it's http://e6.o.lencr.org now. For future reference just test your SSL enabled domain here to find out its OCSP address

( compared to using sprites + CSS )

Indeed, I managed to make it work from within the OLS webadmin console: Virtual Host -> Context: Type Static | URI: exp:^.*(jpg|jpeg|gif|png|ico|webp|avif|mp4|webm)$ You can add both "Header unset ETag" and "Header unset Set-Cookie" here just be careful which file extensions you list in the...

So in the end what worked? Setting up a listener for IPv4 or just separating it from IPv6 or downgrading to OLS 1.7.15 and then re-upgrading to OLS 1.7.16? I have the same issue with HTTP/3 & QUIC not working, in OLS 1.8.2. Some HTTP/3 checkers like ralfvanveen.com and domsignal.com pass the...

Excellent update @LiteCache ! Is there any other way to implement these 2 unset headers in the OLS Webadmin console, instead of the .htaccess file ? Maybe at the Virtual Host level? Would it work setting them in the Context section of VH as headers, something like in this example of OLS docs ?

5 years later I encounter the same issue. Anyone found a fix for this? (disabling CBC ciphers)

For the moment I downgraded the ModSecurity module to v3.0.12 found in the previous OLS release. So OLS 1.8.2 + mod_security v3.0.12 still works, for anyone encountering this same issue. Take your time devs, but please fix its implementation, going forward. Thank you.

wanted to ask the same thing :) we've been running OLS without mod_security for almost a month now. Should we downgrade or still hold out for a soon to be released update, patch maybe?

Well if you already installed/upgraded to v1.8.2 and you have to ask... you probably don't have it. This would be surprising, if not everybody is affected, meaning probably the issue could be int the rule list? Or perhaps you don't have mod_security plugin activated in the OLS webserver?

Any updates on this issue, please? We have been running the v1.8.2 OLS webserver without ModSecurity, just so it actually displays pages. This is how any and all our web pages are returned (index.html) in Firefox 115.14.0esr (64-bit) when trying to access them (with ModSecurity module enabled):

I also wrote to the ModSecurity dev team on Github: https://github.com/owasp-modsecurity/ModSecurity/issues/3259