Main Features
-
Per-IP Throttling
LiteSpeed Web Server has per-IP connection, request, and bandwidth throttling. With these customizable features, IPs that make too many connections or requests or ask for too much bandwidth will be blocked, stopping attackers before they overrun your server. -
Scalability
LiteSpeed Web Server handles much more traffic with far less resources, allowing it to survive larger attacks than less scalable solutions. This is especially important for very distributed attacks, where it is harder to isolate and block each attacker. Against such attacks, the best defense may be a scalable server. -
SSL Renegotiation Protection
Generating an SSL key incurs substantial overhead, and may bring down a server if executed continuously. LiteSpeed Web Server's SSL Renegotiation Protection caps the number of times a client can renegotiate SSL materials, closing this loophole. -
reCAPTCHA
Our server-side reCAPTCHA implementation is scalable, unlike application-level plugins. Provide protection for your entire server without the overhead of PHP! LiteSpeed reCAPTCHA is flexible and rewrite-rule-controlled. -
ModSecurity
Enabling extensive WAF rulesets on other servers can result in a prohibitively high CPU load, but LiteSpeed's ModSecurity implementation is different. LSWS gives you all of the protection of ModSecurity rulesets with minimal CPU impact. Learn more.
How it Works
LiteSpeed Web Server's event-driven architecture handles all connections with a single process (or very few processes). Because of this, LiteSpeed is able to easily gather connection and bandwidth data from an IP, allowing the server to impose limits with efficiency.
Thread- or processed-based applications, like Apache, have trouble implementing such security features, because they must collect information across many processes. By the time these applications know which IP to block, it's too late.
