Timo Stark

We describe security vulnerabilities recently discovered in the NGINX LDAP reference implementation, and how to mitigate them. NGINX Open Source and NGINX Plus are not affected, and no corrective action is required if you do not use the reference implementation.

We help you avoid the 10 most common NGINX configuration errors, explaining the problems caused by each and how to fix them. Errors include insufficient file descriptors per worker, disabling proxy buffering, and not using upstream groups and keepalive connections.

NGINX can help you protect your apps against the Log4Shell vulnerability in Apache log4j (CVE-2021-44228), with NGINX App Protect, NGINX ModSecurity WAF, or a script using the NGINX JavaScript Module.

NGINX Open Source 1.21.4 introduces support for kernel TLS (kTLS), which boosts performance by significantly reducing the need to copy data between user space and the kernel. We provide complete instructions for enabling kTLS in NGINX and share results of our performance testing.

NGINX Unit makes supporting HTTPS simple and completely application-agnostic, because encryption is applied at the level of the listener, not the application. No need to dig into language‑specific details! In this blog we illustrate HTTPS configuration for a Spring Boot application.

Learn about the latest release of NGINX Plus and how it can help you solve your most pressing traffic management and security challenges.

We show how to build an application stack with NGINX Unit, enabling automated deployment of production environments with custom‑built language runtime versions, libraries, modules, and extensions. The sample app is WordPress deployed in a Docker container.