Caddy v2.10
a year ago
- #Caddy
- #Privacy
- #TLS
- Caddy 2.10 introduces Encrypted ClientHello (ECH) for enhanced TLS privacy.
- Post-quantum (PQC) key exchange support with x25519mlkem768 is now available.
- ACME profiles allow flexible certificate property selection, including 6-day certificates from Let's Encrypt.
- Reverse proxy now sets a Via header instead of duplicating the Server header.
- Global DNS provider configuration simplifies DNS module usage across the config.
- Wildcard certificates are now used by default for subdomains, improving privacy with ECH.
- libdns 1.0 APIs have been updated for better stability and semantics in DNS provider modules.
- New global 'dns' config option centralizes DNS provider settings for ACME challenges and ECH.
- Testing ECH requires a compatible client and DNS-over-HTTPS or DNS-over-TLS for privacy.
- Several bug fixes, dependency updates, and new features like modular network_proxy support.