Previously, we wrote how to upgrade Ubuntu 14.04 LTS running Nginx to support HTTP/2 avoiding recompilation or actual stopping the server. Here is a Handy Guide For the New Users Around Ubuntu 14.04 Nginx HTTP/2 Directive, NPN & ALPN. Sadly, HTTP/2 is Not Exactly Easy Like SPDY. The reasons are obvious - SPDY, as well QUIC, HTTP/1.1 is within HTTP/2. Sadly, what we have not said in that easy … [Read more...]
Upgrading Ubuntu 14.04 to Latest Nginx to Support HTTP2
Most webmaster and sysadmins has upgraded their setup to Ubuntu 16.04 LTS now. But Not all has upgraded, some of them wants HTTP/2 on Ubuntu 14.04 LTS. Here Are Steps For Upgrading Ubuntu 14.04 to Latest Nginx to Support HTTP2 With Troubleshooting Error. Removal of current Nginx not needed.. Nginx Has No Support For this Upgrade. This is not recommended, we can not give whether HTTP/2 will work or … [Read more...]
Nginx Brotli : Compression for HTTPS
Previously, we talked about various new methods for speed-up Nginx. Nginx Brotli Compression is a Modern Loseless Compression Algorithm Like gzip. ngx_brotli is a Set of 2 Nginx Modules. Nginx Brotli was not discussed so far as it was not exactly stable. Replacing gzip deflate with Nginx Brotli Compression typically gives an increase of 20% in compression density for text files, while compression … [Read more...]
Fix Nginx OCSP ERROR : OCSP Response Expired
Previously we written in details on How to Enable OCSP Stapling Nginx. Here is How to Fix Nginx OCSP ERROR - OCSP Response Expired After Enabling OCSP Stapling on Nginx. Error is Due to Certain Criterion of RFC. This is not quite uncommon error. Why OCSP ERROR : OCSP Response Expired Appears? It is common to get this error in Opera Browser, where the error code is Error 1066. … [Read more...]
Warning : TCP Stack Vulnerability in the Linux Kernel (CVE-2016-5696)
Researchers at the University of California have identified a dangerous vulnerability in the TCP (Transmission Control Protocol) used by Linux. The finding of flaw dates back to the end of 2012 but was discovered only recently. They are working with the community for some preventive measures (like an update for clients and hosts) as a pending official patch. The TCP protocol adopted by Linux is … [Read more...]
Add Content Security Policy (CSP) Header in Nginx With report-uri
In the previous guide, we talked about how to around HTTP Public Key Pinning (HPKP) Nginx With report-uri. Content Security Policy (CSP) header adds control over the resources to be loaded on modern browsers to increase security. Here is How to Add Content Security Policy Header in Nginx. Table of Contents 1 Introduction 2 What is Content Security Policy (CSP) Header? 3 How To Add … [Read more...]
Enable HTTP Public Key Pinning (HPKP) Nginx With report-uri
Previously, we have talked about HTTP Public Key Pinning (HPKP). HPKP is a security feature is to prevent fraud TLS certificates. Here Are the Steps to Enable HTTP Public Key Pinning (HPKP) on Nginx. We are using Ubuntu 16.04 LTS and latest version of Nginx. Reader will need to adjust some come commands for non deb GNU/Linux distro. What is HTTP Public Key Pinning (HPKP) and Why We … [Read more...]
OCSP Stapling Nginx : Working Guide to Enable
Previously, we have talked about how to install SSL certificate on Nginx Server, how to install Let's Encrypt free SSL/TLS certificate in your server. We recommend to read both of them, at least check them. Many Users Complain of Not Working OCSP Stapling in Nginx or Facing Chain Error. Here is Working Step by Step Guide on OCSP Stapling Nginx. We recommend to switch to free Let's Encrypt or use … [Read more...]
Will Brexit Affect Cloud Computing & Server Market?
UK referendum may force to rethink the CIOs about data management & privacy policies. Shift From US to EU in Dedicated, Cloud Server & CDN is Significant After PRISM Scandal. Will Brexit Affect Cloud Computing & Server Market? Will Brexit Affect Cloud Computing & Server Market? Previously, we talked about the inclination towards Swiss Cloud for data security and data privacy. It is … [Read more...]
WordPress Genesis : Add Last Updated Rich Snippet
In the past, we have shown how to edit WordPress Genesis child theme or the main theme to avoid the errors shown by Google Structured Data if you change from default SCHEMA CreativeWork. Google Structured Data Testing Tool Will Show Error For Last Updated Without a Basic Tweak. Here is How to Add Last Updated Rich Snippet on WordPress Genesis. Before You Begin to Edit and Add Last … [Read more...]
NGINX Block Anonymous IP Address in Various Ways
We Sometimes Need to Block Anonymous IP for Security Reason. One regular reader asked us many months ago how to dynamically block anonymous IP address in Nginx. Sadly, we have no easy, free of cost direct straight forward answer to the question. However, Here is a Handy Guide to Make NGINX Block Anonymous IP Address in Various Ways, Which Possibly Will Help in Your Situation. Increasing security … [Read more...]