Lighttpd 1.4.30 发布，比圣诞老人还快

编者注：此新闻的标题是官方新闻的直译，我估计其开发者也有点自嘲的意思，毕竟 lighttpd 好久都没有更新了。

Lighttpd 是一个德国人领导的开源Web服务器软件，其根本的目的是提供一个专门针对高性能网站，安全、快速、兼容性好并且灵活的web server环境。具有非常低的内存开销，cpu占用率低，效能好，以及丰富的模块等特点。

Lighttpd 1.4 还活着，特别是对使用 SSL 的用户下面这个设置非常重要：

ssl.cipher-list = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM"

Lighttpd 1.4.30 主要变化：

下载地址

与 1.4.29 版本的比较

Always use our ‘own’ md5 implementation, fixes linking issues on MacOS (fixes #2331)
Limit amount of bytes we send in one go; fixes stalling in one connection and timeouts on slow systems.
[ssl] fix build errors when Elliptic-Curve Diffie-Hellman is disabled
Add static-file.disable-pathinfo option to prevent handling of urls like …/secret.PHP/image.jpg as static file
Don’t overwrite 401 (auth required) with 501 (unknown method) (fixes #2341)
Fix mod_status bug: always showed “0/0” in the “Read” column for uploads (fixes #2351)
[mod_auth] Fix signedness error in http_auth (fixes #2370, CVE-2011-4362)
[ssl] count renegotiations to prevent client renegotiations
[ssl] add option to honor server cipher order (fixes #2364, BEAST attack)
[core] accept dots in ipv6 addresses in host header (fixes #2359)
[ssl] fix ssl connection aborts if files are larger than the MAX_WRITE_LIMIT (256kb)
[libev/cgi] fix waitpid ECHILD errors in cgi with libev (fixes #2324)