VSI-I64VMS-CSWS-V0204-3K-1 RELNOTES.PDF

This document announces the release of Secure Web Server (SWS) for OpenVMS Version 2.4-3K, a significant update based on Apache HTTP Server 2.4-12 and including OpenSSL 1.0.2n.

Key highlights include:

• Enhanced Security: Supports higher encryption levels due to updated OpenSSL.
• Performance & Flexibility: Offers reduced memory utilization, more flexible configuration, and improved support for custom loadable modules.
• New Functionality: Introduces new loadable modules for session management, request filtering, and rate limiting.
• Configuration Changes: Upgrading users must update httpd.conf and ssl.conf, as the authentication/authorization model has changed (e.g., AcceptMutex replaced by Mutex), and some older dynamically loaded modules are no longer available by default.
• Developer Impact: Custom-written dynamically loaded modules must be rebuilt for Version 2.4, potentially requiring code changes and specific compiler/linker options.
• New Utilities: Includes log2rabbitmq.exe for publishing web server logs to a RabbitMQ broker.
• Bug Fixes: Addresses numerous issues from previous releases, including problems with user-specific public_html, large file transfers, IPv6 configuration, MOD_SSL warnings, CGI script loops, and DAV functionality.
• Known Issues/Restrictions: Incompatible with older SWS optional kits (Perl V2.1-, PHP V5.2-17A-, Java), requires installation on an ODS-5 volume, and fails to start if the audit server is not running.