At BitNinja, we continue to innovate and enhance our security framework, ensuring your server infrastructure remains robust and secure. In our latest release, version 3.16.8, we introduce significant updates to the WAF Pro module, providing more adaptive and flexible security control.
We have removed the previous Location header normalization to improve header integrity and processing. This change enhances the accuracy and reliability of the HTTP response headers used by web applications.
An exciting new feature introduced in this release is the delete_x_forwarded_host option. When enabled (default setting: 1 or true), this option strips the X-Forwarded-Host header from incoming reverse proxy requests. This adjustment addresses compatibility challenges with some back-end services like Plesk, which previously encountered issues with malformed Location headers.
delete_x_forwarded_host configurable option, defaulting to 1 (true), to strip problematic headers in some backend configurations like Plesk.To ensure you’re running the latest version, check your update channel settings in the BitNinja Console using RAU. If you have specific configurations or applications preventing automatic updates, please refer to our documentation for instructions on manual updates and RAU configuration.
If you'd like to read more about previous releases, check the Changelog anytime.
Alternatively, if you would like to see your feature request show up here, don't forget to cast your vote.




