 |
 |
If you're running nginx there's a few serious security advisories for this web server, if not you can stop reading now and delete this message. :) Advisories: http://nginx.org/en/security_advisories.html The default nginx package in Ubuntu 12.04 LTS uses version Version: 1.1.19, however the latest stable version that is patched is version 1.4.1. To update Ubuntu to use this latest version you'd need to add a new repository that has the latest builds released faster then Canonical releases them. Do the following: sudo add-apt-repository ppa:nginx/stable -yes sudo apt-get -y update sudo apt-get -y upgrade Also, if you haven't already, you might disable the server tokens so nginx doesn't report to the browser what version it is with every web request. nano /etc/nginx/nginx.conf Uncomment or add: server_tokens off sudo service nginx reload Troy Murray Information Technologist II Michigan State University College of Medicine Life Science 1355 Bogue St, B-136D East Lansing, MI 48824 E: [log in to unmask] P: 517-432-2760 F: 517-355-7254 CompTIA Security+ certified RedHat 5 Certified Technician RedHat 5 Certified Systems Administrator HL7 V2.6/2.5 Certified Control Specialist