No Image

Global Server Load Balancing with NS1 and NGINX Plus

2019-09-14 KENNETH 0

Global Server Load Balancing with NS1 and NGINX Plus Global server load balancing (GSLB) is the practice of balancing load (connections or requests) across two or more distinct data centers or points of presence (PoPs). It is used to achieve several goals: Improving high availability (HA) – Route traffic away from a failed data center to operational ones. Reducing latency –Route each client to the data center that is closest to it. Improving performance by balancing load – Route connections to the data center that has the most capacity. Managing cost –Route traffic to the lowest‑cost data center. Most commonly used in a ‘cloud‑bursting’ scenario, when a higher‑cost data center is brought online only when its capacity is required. GSLB is generally implemented by managing the DNS resolution process; when a client makes a DNS lookup, it is given one or more IP addresses [ more… ]

No Image

USN-4129-2: curl vulnerability

2019-09-13 KENNETH 0

USN-4129-2: curl vulnerability curl vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 ESM Ubuntu 12.04 ESM Summary curl could be made to crash or possibly execute arbitrary code if it incorrectly handled memory during TFTP transfers. Software Description curl – HTTP, HTTPS, and FTP client and client libraries Details USN-4129-1 fixed a vulnerability in curl. This update provides the corresponding update for Ubuntu 12.04 ESM and 14.04 ESM. Original advisory details: Thomas Vegas discovered that curl incorrectly handled memory during TFTP transfers. A remote attacker could use this issue to crash curl, resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM curl – 7.35.0-1ubuntu2.20+esm3 libcurl3 – 7.35.0-1ubuntu2.20+esm3 libcurl3-gnutls – 7.35.0-1ubuntu2.20+esm3 libcurl3-nss – 7.35.0-1ubuntu2.20+esm3 [ more… ]

No Image

USN-4132-2: Expat vulnerability

2019-09-13 KENNETH 0

USN-4132-2: Expat vulnerability expat vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 ESM Ubuntu 12.04 ESM Summary Expat could be made to expose sensitive information if it received a specially crafted XML file. Software Description expat – XML parsing C library Details USN-4132-1 fixed a vulnerability in Expat. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that Expat incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM lib64expat1 – 2.1.0-4ubuntu1.4+esm2 libexpat1 – 2.1.0-4ubuntu1.4+esm2 Ubuntu 12.04 ESM lib64expat1 – 2.0.1-7.2ubuntu1.7 libexpat1 – 2.0.1-7.2ubuntu1.7 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system [ more… ]

No Image

USN-4132-1: Expat vulnerability

2019-09-13 KENNETH 0

USN-4132-1: Expat vulnerability expat vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary Expat could be made to expose sensitive information if it received a specially crafted XML file. Software Description expat – XML parsing C library Details It was discovered that Expat incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04 libexpat1 – 2.2.6-1ubuntu0.19.5 Ubuntu 18.04 LTS libexpat1 – 2.2.5-3ubuntu0.2 Ubuntu 16.04 LTS lib64expat1 – 2.1.0-7ubuntu0.16.04.5 libexpat1 – 2.1.0-7ubuntu0.16.04.5 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2019-15903 Source: USN-4132-1: Expat vulnerability

No Image

NGINX Conf 2019 Day 2: Empowering the Full Range of Today’s Architectures

2019-09-12 KENNETH 0

NGINX Conf 2019 Day 2: Empowering the Full Range of Today’s Architectures Day 1 at NGINX Conf 2019 in Seattle was packed with insights into how the application landscape is evolving, and how F5 and NGINX are coming together to create the industry’s most comprehensive offering for app delivery, from code to customer. On Day 2, F5 CEO François Locoh-Donou kicked things off, reiterating F5’s commitment to continuing NGINX’s strong legacy of open source contribution while bringing new innovations to market that combine the best the companies have to offer. The rest of the morning’s sessions featured a lineup of experts and special guests, with product demos and customer case studies outlining the scope of NGINX’s accomplishments over the past year. Here are three of my key takeaways from Day 2. Takeaway #1: With NGINX, F5 Is Investing in the Open Source Community [ more… ]