NGINX.COM

Tag: SSL/TLS

HTTP Strict Transport Security (HSTS) and NGINX

Netcraft recently published a study of the SSL/TLS sites they monitor, and observed that only 5% of them correctly implement HTTP Strict Transport Security (HSTS). This article describes how to configure NGINX and NGINX Plus to implement an HSTS policy. What is HSTS? HTTPS (HTTP encrypted with SSL or TLS) is an essential part of the…

Continue reading ›

DROWN Vulnerability CVE-2016-0800 in OpenSSL Misses Most NGINX Users

A new OpenSSL vulnerability (CVE-2016-0800), called DROWN, was recently announced. It affects older versions of several widely used server technologies: SSLv2, an old version of the Secure Sockets Layer protocol. Most up‑to‑date websites don’t use Secure Sockets Layer (SSL) at all, having moved to TLS (Transport Layer Security) IIS v7. An older version of Microsoft…

Continue reading ›

Using Free SSL/TLS Certificates from Let’s Encrypt with NGINX

Editor – This blog post has been replaced by an updated version that is based on official NGINX support in certbot. Please go to the new blog post for the latest information and instructions. Let’s Encrypt is a new certificate authority (CA) offering free and automated SSL/TLS certificates. Certificates issued by Let’s Encrypt are trusted by most browsers…

Continue reading ›

NGINX Plus and Google Load Balancers on the Google Cloud Platform

[ngx_snippet name='table-style-blog'] [Editor – This post has been updated to refer to the NGINX Plus API, which replaces and deprecates the separate dynamic configuration module mentioned in the original version of the post. For step‑by‑step instructions on deploying a highly available NGINX Plus load‑balancing configuration on GCE, see our deployment guide, All-Active HA for NGINX Plus on…

Continue reading ›

10 Tips for 10x Application Performance

Improving web application performance is more critical than ever. The share of economic activity that's online is growing; more than 5% of the developed world’s economy is now on the Internet (see Resources for Internet Statistics below). And our always‑on, hyper‑connected modern world means that user expectations are higher than ever. If your site does not…

Continue reading ›

HTTP/2 Now Fully Supported in NGINX Plus

Earlier this week we released NGINX Plus Release 7 (R7) with support for HTTP/2. As the latest standard for the HTTP protocol, HTTP/2 is designed to bring increased performance and security to modern web applications. The HTTP/2 implementation in NGINX Plus works seamlessly with existing sites and applications. Minimal changes are required, as NGINX Plus delivers HTTP/1.x and HTTP/2 traffic in…

Continue reading ›

NGINX 1.8 and 1.9 Released

Today we’re happy to share the release of NGINX 1.8, the new stable branch, and NGINX 1.9, the new mainline branch where we’ll be working on development of new features. These branches replace 1.6 and 1.7 respectively. Over the past year, we’ve pushed 12 updates to 1.7, and all the features we added are now available in 1.8, including these:

  • Backend SSL/TLS certificate verification – Protects against “man in the middle” (MITM) attacks by checking and validating certificates presented by upstream servers
  • Logging to syslog – Enables log aggregation over the network from multiple instances using UDP messages
  • Thread pools support for offloading I/O requests – Improves the performance of NGINX when blocking operations are required
  • Hash load balancing method – Allows for a server group where the client‑server mapping is based on the hashed variable
  • Unbuffered upload – Optionally disables the buffering of a request body
For a list of all the features added during the last year, check out the release notes for 1.8.

Continue reading ›

TRY NGINX PLUS!

Download a 30 day free trial and see what you've been missing.

* = Required

We'll take care of your data.

X

Got a question for the NGINX team?

< back

* = Required

X

Tags

No More Tags to display