分类: 热点新闻

Organizations on the frontlines of the COVID-19 pandemic are experiencing increased website traffic from users who now must access resources remotely. NGINX and F5 are offering free software, documentation, and training to help websites scale easily to meet increased demand, and calling on our open source community members to lend their expertise too.

NGINX Controller 3.0 is a complete platform upgrade that introduces application-centric management of your NGINX Plus-based infrastructure. It includes a self‑service portal for RBAC-based collaboration, a DevOps-optimized API, and a built-in certificate manager.

NGINX Plus R20 builds on the enhancements made in R19 to rate limiting, adding real-time monitoring and logging; connection limiting now has the same features. We also added prefix matching in the key-value store, DNS resolution per upstream group, new PROXY Protocol variables, and improved security for HTTP/2.

We provide guidance on using NGINX to mitigate the recently discovered vulnerability in PHP-FPM (CVE-2019-11043). The vulnerability is triggered when the PATH_INFO variable passed to PHP-FPM with an invalid value, which can happen in a common NGINX configuration.

NGINX Unit 1.11.0 introduces support for static file serving, a much requested feature ever since NGINX Unit debuted. It also includes application (process) isolation using Linux namespaces and a WebSocket server implementation for Java Servlet Containers. NGINX Unit 1.12.0 adds support for PHP 7.4.

NGINX Plus R19 extends our monitoring capabilities, both with a larger set of metrics and new ways to analyze them; adds a dry-run mode for testing the effect of rate limiting; enhances the key-value store to support IP address ranges; and makes rate limiting more dynamic.

We have released updates to NGINX Open Source and NGINX Plus to fix vulnerabilities in the HTTP/2 protocol that were announced today (CVE-2019-9511, CVE-2019-9513, and CVE-2019-9516). Upgrade as soon as possible to NGINX 1.17.3, NGINX 1.16.1, or NGINX Plus R18 P1.

NGINX is now officially a part of F5. In his new role as head of the NGINX business unit at F5, Gus Robertson outlines the value of merging the people, culture, and vision of the two companies as we work together to enhance NGINX's open source and commercial offerings.

NGINX is expanding its offerings for the public cloud. Enhancements include support for Amazon EC2 A1 Instances, CentOS 8, and RHEL 8; the NGINX Plus Enterprise Edition; a developer marketplace in partnership with DigitalOcean; and new NGINX Plus Certified Modules.

NGINX Plus R18 introduces dynamic loading of SSL/TLS certificates, enhances our OpenID Connect reference implementation, and supports port ranges for virtual servers. It also includes enhancements to the key-value store, health checks, NGINX Plus clustering, and the NGINX JavaScript module.