Editor – This is an update to a previous blog post about using Let's Encrypt certificates with NGINX. This blog covers the newly added NGINX support in certbot. Also see our blog post from nginx.conf 2015, in which Peter Eckersley and Yan Zhu of the Electronic Frontier Foundation introduce the then‑new Let's Encrypt certificate authority. It's well known that SSL/TLS encryption…
Continue reading ›What’s New in NGINX Plus R10?
This post is adapted from a webinar by Owen Garrett, Head of Products at NGINX, Inc. Table of Contents 0:00 Introduction 0:34 NGINX Plus R9 Recap 2:34 NGINX Plus R10 New Features 3:01 ModSecurity WAF 6:03 Why ModSecurity? 7:12 ModSecurity 101 8:49 Comprehensive Protection for Critical Apps and Data 9:37 NGINX Plus with ModSecurity WAF Details 12:44 Why NGINX Plus with ModSecurity WAF?…
Continue reading ›Announcing NGINX Plus R10
We are excited to announce NGINX Plus Release 10 (R10), our most significant release yet. NGINX Plus extends the open source NGINX software with advanced functionality and award‑winning support, providing customers with a complete application delivery solution. With this release we are providing a number of new features to dramatically improve the security and performance of applications delivered by…
Continue reading ›Let’s Encrypt: TLS for NGINX
The following is adapted from a presentation given by Yan Zhu and Peter Eckersley from the Electronic Frontier Foundation (EFF) at nginx.conf 2015, held in San Francisco in September. You can watch the video of the complete talk on YouTube. Table of Contents 0:00 Introduction 0:29 Problem #1 – TLS is Not Ubiquitous 2:10 Problem #2 – Setting up TLS 2:52 How Long…
Continue reading ›Announcing a Change to the Certificate for the NGINX Plus Repository
In our ongoing efforts to improve the security of our products, we’ve made a change that affects the way NGINX Plus is installed and updated. We are replacing the self‑signed certificate we previously used to secure the NGINX Plus repository with a certificate from GlobalSign, a well‑known and trusted Certificate Authority (CA). With a CA‑signed certificate, clients…
Continue reading ›Using Free SSL/TLS Certificates from Let’s Encrypt with NGINX
Editor – This blog post has been replaced by an updated version that is based on official NGINX support in certbot. Please go to the new blog post for the latest information and instructions. Let’s Encrypt is a new certificate authority (CA) offering free and automated SSL/TLS certificates. Certificates issued by Let’s Encrypt are trusted by most browsers…
Continue reading ›SSL/TLS Offloading, Encryption, and Certificates with NGINX and NGINX Plus
NGINX and NGINX Plus provide a number of features that enable it to handle most SSL/TLS requirements. They use OpenSSL and the power of standard processor chips to provide cost‑effective SSL/TLS performance. As the power of standard processor chips continues to increase and as chip vendors add cryptographic acceleration support, the cost advantage of using standard processor…
Continue reading ›