nginx

Make Your NGINX Config Even More Modular and Reusable with njs 0.7.7 Since introducing the NGINX JavaScript module (njs) in 2015 (under its original name, nginScript) and making it generally available in 2017, we have steadily continued to add new features and refine our implementation across dozens of version updates. Normally we wait for an NGINX Plus release to discuss the features in a new NGINX JavaScript version, but we’re so excited about version 0.7.7 that this time we can’t wait! The significant enhancements in njs 0.7.7 help make your NGINX configuration even more modular, organized, and reusable: You can now declare njs code in the contexts where it applies rather than globally, bringing your custom code closer to the point of usage. Hooks in the njs code itself enable you to modify behavior depending on the execution context. The new fs.FileHandle object makes [ more… ]

Updating NGINX for Vulnerabilities in the MP4 and HLS Video-Streaming Modules Today, we are releasing updates to NGINX Plus, NGINX Open Source, NGINX Open Source Subscription, and NGINX Ingress Controller in response to recently discovered vulnerabilities in the NGINX modules for video streaming with the MP4 and Apple HTTP Live Streaming (HLS) formats, ngx_http_mp4_module and ngx_http_hls_module. (NGINX Open Source Subscription is a specially packaged edition of NGINX Open Source available in certain geographies.) The vulnerabilities have been registered in the Common Vulnerabilities and Exposures (CVE) database and the F5 Security Incident Response Team (SIRT) has assigned scores to them using the Common Vulnerability Scoring System (CVSS v3.1) scale. The following vulnerabilities in the MP4 module (ngx_http_mp4_module) apply to NGINX Plus, NGINX Open Source, and NGINX Open Source Subscription. CVE-2022-41741 (Memory Corruption) – CVSS score 7.1 (High) CVE-2022-41742 (Memory Disclosure) – CVSS score 7.0 (High) [ more… ]

Back to Basics: Installing NGINX Open Source and NGINX Plus Today, NGINX continues to be the world’s most popular web server – powering more than a third of all websites and nearly half of the 1000 busiest as of this writing. With so many products and solutions, NGINX is like a Swiss Army Knife™ you can use for numerous website and application‑delivery use cases, but it also might seem intimidating if you’re just getting started. If you’re new to NGINX, we want to simplify your first steps. There are many tutorials online, but some can be outdated or contradict each other, only making things more challenging. Here, we’ll quickly point you to the right resources. Resources for Installing NGINX A good place to start is choosing which NGINX offering is right for you: NGINX Open Source – Our free, open source offering [ more… ]