Improve security for your website and web apps with the NGINX Cookbook, Part 2, from O'Reilly Media. Topics include JWTs, the ModSecurity WAF, and more.
Tag: security
Tag: security
Third-Party Content and Old Software Pose Security Risks
Ways to sharply reduce security risks include: keeping your software up to date, using NGINX Amplify, and switching to NGINX Plus.
Authenticating Users to Existing Applications with OpenID Connect and NGINX Plus
NGINX Plus R10 adds support for the JSON Web Token (JWT) standard. Learn how to use JWTs and OpenID Connect to control access to your applications.
nginx.conf 2016 Preview 2: Customer and Partner Speakers
Take advantage of the early bird discount for nginx.conf 2016 now! Read about customer and partner speakers in this blog post.
Updating the GPG Key for NGINX Products
The current GPG key for NGINX, Inc. products expires on August 17, 2016. Learn how to update the key so you can continue to verify software signatures.
Securing URLs with the Secure Link Module in NGINX and NGINX Plus
Learn how to secure resources with NGINX and NGINX Plus, by requiring clients to include a hashed value in request URLs, optionally with an expiration date
Mitigating the HTTPoxy Vulnerability with NGINX
Use NGINX/NGINX Plus to prevent the HTTPoxy vulnerability, which attacks CGI and FastCGI-like application interfaces, from being exploited on your servers.
NGINX + HTTPS 101: The Basics & Getting Started
What are HTTPS and SSL/TLS? Learn about protocol versions, cipher suites, and how to configure NGINX for HTTPS and SSL/TLS.
NGINX and the 5 June 2014 OpenSSL Security Advisory
The OpenSSL project announced fixes to 7 security vulnerabilities on 5 June 2014. An update to OpenSSL is generally sufficient to address this.