Abyss Web Server is a compact web server available for Windows, Mac OS X, and Linux operating systems. Despite its small footprint, it supports HTTP/1.1, secure SSL/TLS connections (HTTPS), IPv6, on-the-fly HTTP compression, dynamic content generation through CGI/FastCGI scripts, ISAPI extensions, native ASP.NET, reverse proxying, eXtended Side Includes (XSSI), custom error pages, password protection, IP address control, anti-leeching, bandwidth throttling, and log rotation.
It also features an automatic antihacking system as well as a multilingual remote web management interface that makes its configuration as easy as browsing a web site.
What's new in this version
The new releases improves the SSL/TLS support while hardening it against recently discovered SSL/TLS vulnerabilities:
- Updated the SSL/TLS engine to fix the Heartbleed issue (CVE-2014-0160)
- Disabled SSL/TLS compression support to mitigate CRIME attacks
- Changed the default cipher lists as a countermeasure against BEAST attacks
- Disabled client initiated SSL renegotiation and added secure TLS renegotiation to mitigate client initiated SSL/TLS renegotiation denial of service attacks
- Cipher choice during SSL/TLS handshakes is now imposed by the server
- Removed support for the insecure SSL version 2 protocol
The new releases add the following features:
- Added support for 3072 and 4096-bit private keys generation
- Added a parameter to control the size of script/Web application output buffer
- Updated documentation
The new releases also include several minor internal enhancements and fix the issues that have been reported with previous versions.