Category: Uncategorized

Small is beautiful when it comes to containers in test and dev environments: they take less time to build, use less memory, and have a smaller attack surface. We explore tools and provides instructions for building images that are a small as possible.

NGINX Unit makes supporting HTTPS simple and completely application-agnostic, because encryption is applied at the level of the listener, not the application. No need to dig into language‑specific details! In this blog we illustrate HTTPS configuration for a Spring Boot application.

NGINX Unit 1.23.0 and 1.24.0 introduce support for the SNI extension to TLS, definition of OpenSSL configuration commands, MIME filtering and path restrictions for static content, and multiple Python scripts in one app. Also, you no longer need to modify Node.js apps to run them in Unit.

Not just another variant in the ever-growing set of “X-Ops” practices, Platform Ops is a way to balance developer freedom and corporate compliance for technology teams across the enterprise, helping you achieve digital transformation with the right blend of shifted left and buttoned down.

Research shows that many prefer live streaming to recorded video, blogs, and other media. Join NGINX Content Manager Marco Martinez for a backstage tour of how he creates live-streamed content at NGINX. We welcome your input on what you want to see on the NGINX live stream.

Preview the seven demos presented by the NGINX team on August 24 at NGINX Sprint 2021, our annual virtual event. We show how NGINX solutions accelerate just about every step in your app development journey, from deploying the first reverse proxy to launching a service mesh.

Dive deep into two Linux features that underlie containers: namespaces and cgroups. They enable process isolation, ensuring that multiple processes running on a system don’t interfere with one another. Our NGINX Unit application server also uses them for application isolation.

We describe the state of our QUIC+HTTP/3 implementation, starting with a review of the work we’ve done so far. Our roadmap includes merging the nginx-quic development branch into the NGINX mainline and implementing performance optimizations. You can help by testing the implementation.

This Pride Month, Scott De Buitléir reflects on life lessons he’s learned on his LGBTQ+ rugby team, and reviews some projects undertaken by NGINX and F5 over the past year to benefit our local and global communities.

NGINX recently became the most popular web server in the world, according to W3Techs. We’re profoundly grateful to the NGINX community, who’ve brought us to this milestone, and look forward to providing even more tools to help you optimize delivery of your modern and cloud-native apps.

We have released updates to NGINX Open Source, NGINX Plus, and NGINX Ingress Controller to fix a vulnerability in DNS resolution (CVE-2021-23017). We consider the vulnerability to be low-severity, but encourage users to upgrade to the latest versions.

Strategies for shifting security left usually ignore WAF and other traditional tools for enforcing run‑time security policies. A complete modern solution needs to include WAF, but one that fits into your CI/CD pipelines and helps smooth friction between Security and DevOps.

NGINX, a part of F5, Inc., is pleased to announce that we have become the first Gold sponsor of the OWASP ModSecurity Core Rule Set (CRS) project. We look forward to working with the CRS team and helping ensure the CRS project’s long-term success.

NGINX Ingress Controller now supports single sign-on with OpenID Connect. Release 1.10.0 also introduces new configuration queue metrics, annotations on log entries, better validation of annotations and secrets, support for NGINX App Protect user-defined signatures, and more.

Guest blogger Brian Gleason advises #NetOps managers on a couple ways to get the most from, and for, their greatest asset: their people. First, make sure they have time for focus on their own priorities. Second, learn enough about network technologies to communicate well.

The modern market’s demand for speed has heightened the tension between DevOps and NetOps/SecOps teams. But you can have both developer productivity and infrastructure reliability — bridge the divide with self-service app delivery tools from NGINX.

Guest blogger Jeremy Schulman explains for network engineers (or anyone!) how to get started with an API. He outlines the different types of documentation and their pros and cons, how to take advantage of client libraries, and the ins-and-outs of authentication.

We compare the reverse proxying performance of HAProxy and NGINX. Performance is similar until the request rate is large enough for HAProxy to hit 100% CPU utilization. At that point, its performance degrades significantly while NGINX continues to experience almost no latency.