Category: Security

Keeping safe

blank

Twitter changes its hacked materials policy in wake of New York Post controversy

Twitter has announced an update to its hacked materials policy — saying it will no longer remove hacked content unless it’s directly shared by hackers or those “acting in concert with them”.…

Can Application Security Be Pain Free?

Application security is hard, and it’s even harder to do right. If it were easy and straightforward, executives wouldn’t be held accountable for breaches with jail time!…
blank

Setting Up App Security as-a-Service for NGINX in Under 5 Minutes with F5 Essential App Protect

Modern applications require modern app security solutions. With the ever‑increasing pace of framework‑based app development, the growth of microservices topologies, and the ever‑changing security landscape, app security is becoming increasingly challenging for developer teams.…
blank

Achieving FIPS Compliance with NGINX Plus

If you work in government or a regulated industry, you’ve no doubt heard of the Federal Information Processing Standards, perhaps better known by the acronym FIPS.…
blank

Integrating Fortanix Self-Defending KMS with NGINX and NGINX Plus

If you have a large number of NGINX servers, it can be a challenge to manage their TLS keys and certificates. One solution is to manage them centrally with a key management system (KMS), one example of which is a hardware security module (HSM).…
blank

Securing Your Apps in Kubernetes with NGINX App Protect

Businesses know they need to bring services and applications to market quickly because if they don’t, a competitor surely will. But web applications are prime targets for cyberattacks, and updating them fast and furiously increases the risk that potential security vulnerabilities slip through QA and make their way into production.…
blank

Agile Perimeter Security with NGINX App Protect

In the context of computer security, the perimeter is a conceptual line that establishes a “zone of trust” for applications and other infrastructure components inside it.…
blank

WordPress SEO: the definitive guide

A tutorial to higher rankings for WordPress sites This is the original WordPress SEO article since 2008, fully updated for 2020! WordPress is one of the best content management systems when it comes to SEO.…
blank

Introducing NGINX App Protect: Advanced F5 Application Security for NGINX Plus

Companies going through digital transformation have clear business imperatives. They include improving the customer experience with modern business applications, adopting agile practices to outpace competitors in the market, and leveraging market advantages to drive new revenue streams.…
blank

Using the NGINX Plus Key-Value Store to Secure Ephemeral SSL Keys from HashiCorp Vault

In the first two posts in our series about securing SSL keys and certificates during transport and storage, we discussed using tools such as HashiCorp Vault and hardware security modules (HSMs) to secure SSL key and certificate data on disk for NGINX: Secure Distribution of SSL Private Keys with NGINX Protecting SSL Private Keys in NGINX with HashiCorp Vault In many situations, storing SSL certificate data on disk is a tolerable risk as long as additional security guardrails are used to govern access to those certificates.…