Managing NGINX Configuration at Scale with Instance Manager

2023-03-21 KENNETH 0

Managing NGINX Configuration at Scale with Instance Manager Since releasing NGINX Instance Manager in early 2021, we have continually added functionality based on feedback from our users about their top priorities and pain points. Instance Manager is now the core module of NGINX Management Suite, our collection of management‑plane modules which make it easier to manage and monitor NGINX at scale. After two years of focused work, today’s Instance Manager is, quite simply, better than ever. Some of the most notable recent enhancements to Instance Manager are: Remote configuration and configuration groups to help you scale Robust and granular role‑based access control (RBAC) to empower multiple teams to manage their deployments Improved monitoring options that offer more flexibility and deeper insight Enhanced security with capabilities for monitoring and managing NGINX App Protect WAF In this post we focus on the enhancements [ more… ]

[도서] 성공하는 상세페이지의 9+1 전략

2023-03-20 KENNETH 0

[도서] 성공하는 상세페이지의 9+1 전략 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]성공하는 상세페이지의 9+1 전략 나재영 저 | e비즈북스 | 2023년 03월 판매가 16,200원 (10%할인) | YES포인트 900원(5%지급) 잘 팔리는 상세페이지에 숨어 있는 디테일을 밝힌다! 유입부터 구매까지 고객을 사로잡는 상세페이지 9+1 전략! 상세페이지는 그저 경쟁자를 벤치마킹해서 멋지고 예쁘게만 만들면 된다고 생각하는 온라인 셀러 Source: [도서] 성공하는 상세페이지의 9+1 전략

No Image

USN-5964-1: curl vulnerabilities

2023-03-20 KENNETH 0

USN-5964-1: curl vulnerabilities Harry Sintonen discovered that curl incorrectly handled certain TELNET connection options. Due to lack of proper input scrubbing, curl could pass on user name and telnet options to the server as provided, contrary to expectations. (CVE-2023-27533) Harry Sintonen discovered that curl incorrectly handled special tilde characters when used with SFTP paths. A remote attacker could possibly use this issue to circumvent filtering. (CVE-2023-27534) Harry Sintonen discovered that curl incorrectly reused certain FTP connections. This could lead to the wrong credentials being reused, contrary to expectations. (CVE-2023-27535) Harry Sintonen discovered that curl incorrectly reused connections when the GSS delegation option had been changed. This could lead to the option being reused, contrary to expectations. (CVE-2023-27536) Harry Sintonen discovered that curl incorrectly reused certain SSH connections. This could lead to the wrong credentials being reused, contrary to expectations. (CVE-2023-27538) [ more… ]

No Image

USN-5963-1: Vim vulnerabilities

2023-03-20 KENNETH 0

USN-5963-1: Vim vulnerabilities It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-47024, CVE-2023-0049, CVE-2023-0054, CVE-2023-0288, CVE-2023-0433) It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2023-0051) It was discovered that Vim was not properly performing memory management operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2023-1170, CVE-2023-1175) It was discovered that Vim was not properly performing memory management operations. An attacker could possibly [ more… ]

Amazon Linux 2023 – 클라우드에 최적화된 Linux 배포판 출시 (장기 지원 제공)

2023-03-20 KENNETH 0

Amazon Linux 2023 – 클라우드에 최적화된 Linux 배포판 출시 (장기 지원 제공) Amazon Linux 2023(AL2023)의 상용 출시를 발표하게 되어 기쁩니다. AWS는 2010년부터 클라우드에 최적화된 Linux 배포판을 제공해왔습니다. 이 배포판은 3세대 Amazon Linux 배포판입니다. 모든 세대의 Amazon Linux 배포판은 보안이 적용되고 클라우드에 최적화되며 장기적인 AWS 지원을 받습니다. 이러한 원칙에 따라 Amazon Linux 2023을 구축했으며 기능을 더욱 개선하고 있습니다. Amazon Linux 2023에 워크로드를 배포하면 세 가지 주요 이점, 즉 엄격한 보안 표준, 예측 가능한 수명 주기 및 일관된 업데이트 경험을 얻을 수 있습니다. 먼저 보안에 대해 살펴보겠습니다. Amazon Linux 2023에는 일반적인 업계 지침을 손쉽게 구현할 수 있도록 사전 구성된 보안 정책이 포함되어 있습니다. 시작 시 또는 런타임에 이러한 정책을 구성할 수 있습니다. 예를 들어 시스템 전체에서 특정 암호화 스위트 세트, TLS 버전 또는 인증서와 키 교환에서 허용되는 파라미터를 사용하도록 시스템 암호화 정책을 구성할 수 있습니다. 또한 Linux 커널에는 기본적으로 많은 강화 기능이 [ more… ]