Keeping safe
Category: Security
Setting Up App Security as-a-Service for NGINX in Under 5 Minutes with F5 Essential App Protect
Modern applications require modern app security solutions. With the ever‑increasing pace of framework‑based app development, the growth of microservices topologies, and the ever‑changing security landscape, app security is becoming increasingly challenging for developer teams.…
Achieving FIPS Compliance with NGINX Plus
If you work in government or a regulated industry, you’ve no doubt heard of the Federal Information Processing Standards, perhaps better known by the acronym FIPS.…
Integrating Fortanix Self-Defending KMS with NGINX and NGINX Plus
If you have a large number of NGINX servers, it can be a challenge to manage their TLS keys and certificates. One solution is to manage them centrally with a key management system (KMS), one example of which is a hardware security module (HSM).…
Securing Your Apps in Kubernetes with NGINX App Protect
Businesses know they need to bring services and applications to market quickly because if they don’t, a competitor surely will. But web applications are prime targets for cyberattacks, and updating them fast and furiously increases the risk that potential security vulnerabilities slip through QA and make their way into production.…
Agile Perimeter Security with NGINX App Protect
In the context of computer security, the perimeter is a conceptual line that establishes a “zone of trust” for applications and other infrastructure components inside it.…
WordPress SEO: the definitive guide
A tutorial to higher rankings for WordPress sites This is the original WordPress SEO article since 2008, fully updated for 2020! WordPress is one of the best content management systems when it comes to SEO.…
Introducing NGINX App Protect: Advanced F5 Application Security for NGINX Plus
Companies going through digital transformation have clear business imperatives. They include improving the customer experience with modern business applications, adopting agile practices to outpace competitors in the market, and leveraging market advantages to drive new revenue streams.…
Using the NGINX Plus Key-Value Store to Secure Ephemeral SSL Keys from HashiCorp Vault
In the first two posts in our series about securing SSL keys and certificates during transport and storage, we discussed using tools such as HashiCorp Vault and hardware security modules (HSMs) to secure SSL key and certificate data on disk for NGINX: Secure Distribution of SSL Private Keys with NGINX Protecting SSL Private Keys in NGINX with HashiCorp Vault In many situations, storing SSL certificate data on disk is a tolerable risk as long as additional security guardrails are used to govern access to those certificates.…
NGINX Updates Mitigate the August 2019 HTTP/2 Vulnerabilities
Today we are releasing updates to NGINX Open Source and NGINX Plus in response to the recent discovery of vulnerabilities in many implementations of HTTP/2. We strongly recommend upgrading all systems that have HTTP/2 enabled.…
Ask NGINX | April 2019
Every month, we take a moment to share the expertise of our team, and answer a number of great questions we’ve received from both our customers and open source users.…