Well installing #Brotli on #NGINX IS A #PITA like really

Odoo multiple database issues #2004 #python #nginx #postgresql #odoo

https://askubuntu.com/q/1553441/612

WordPress-Seite hinter Nginx ReverseProxy

Eine saubere Infrastruktur und nur zwei offene Ports? Genau das ermöglicht ein Reverse Proxy! Doch nicht alle Webanwendungen spielen direkt mit. Besonders WordPress benötigt eine spezielle Konfiguration, wenn es hinter einem Nginx Reverse Proxy läuft. Hier zeige ich dir Schritt für Schr...

https://www.cleveradmin.de/blog/2025/07/wordpress-mit-nginx-reverseproxy/
#Linux #Apache #Hosting #Letsencrypt #Nginx #ReverseProxy #server #SSL #wordpress

[Released] zen.nginx – NGINX Docker image with OpenSSL 3.3.4 + post-quantum Falcon/OQS support, based on Alpine.

Features:
* NGINX 1.29.x+
* OpenSSL 3.3.4 with oqs-provider (Falcon512/1024)
* Built for strict mTLS and Zero Trust
* Minimal, ready for production use

Try it:
https://github.com/zenthracore/zen.nginx
https://hub.docker.com/r/zenthracore/zen.nginx

Open for feedback & contributions!

@cloudflare

#docker #nginx #openssl #pqc #falcon #linux #devops #security #opensource

How to Setup a Reverse #Proxy with HTTPS Using #Nginx and #Certbot (5 Minute Quick-Start Guide)

This article outlines how to setup a reverse proxy with HTTPS using Nginx and Certbot.
What is a Reverse Proxy?
A reverse proxy is a server that sits between client devices and a backend server, forwarding client requests to the backend server and returning the server's response to the clients. Unlike a forward proxy, ...
Continued https://blog.radwebhosting.com/how-to-setup-a-reverse-proxy-with-https-using-nginx-and-certbot-5-minute-quick-start-guide/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #proxyserver #reverseproxy #letsencrypt

Por cierto, por fin he conseguido que funcione la combinación del CIS de #F5, con #IngressLink y #Nginx Controller, sobre Kubernetes. Todo un parto oiga.

New from Olvy:
Olvy Cache Purger - a lightweight, open-source WordPress plugin to manage your Nginx FastCGI cache the right way.

- Automatic cache purging for posts, pages, WooCommerce products & categories
- Global purge button
- No bloat, just speed
- Ideal for high-performance WordPress & WooCommerce sites

https://olvy.io/835nN

Oh no, 12ft.io has been banished to the digital abyss with a "403 Forbidden" courtesy of our favorite web server, #nginx. Meanwhile, the collective internet shrugs and resumes its eternal quest for distractions.
https://www.newsmediaalliance.org/takedown-of-12ftio/ #12ftio #403forbidden #digitalabyss #internetdistractions #webdevelopment #HackerNews #ngated

Automation isn't safe by default. Lock it down. Semaphore behind SSL - for Operators only. #Semaphore #SSL #CyberSecurity #NginX

http://tomsitcafe.com/2025/07/21/protecting-the-wire-semaphore-behind-ssl-proxy/

I finally tried to replace #openssl with #aws-lc on some of my services. Unfortunately, #nginx and #mosquitto lack support for it. Instead, I successfully switched #BIND to use aws-lc.

I later also noticed that the #rustls compatibility shim is in nixpkgs 25.05, but here BIND is missing some variables. And despite the wrapper being explicitly made for nginx, it also fails here with

/nix/store/mkvc0lnnpmi604rqsjdlv1pmhr638nbd-binutils-2.44/bin/ld: objs/src/stream/ngx_stream_ssl_module.o: in function `ngx_stream_ssl_servername':
/build/nginx-1.28.0/src/stream/ngx_stream_ssl_module.c:606:(.text+0xd59): undefined reference to `SSL_SESSION_get0_hostname'

A shame. I wanted to change to more modern libraries.

Untested: #dovecot and #postfix (they lack a services.(dovecot2|postfix).package variable to easily change the used package. A PR for dovecot is already open to add support for it.

I got some feedback about how slow my #blog is to load. I decided to try my hand at setting up an #nginx #cache so that the requests can be satisfied by the cache instead of being generated by the blog software itself.

Just doing a few quick tests myself, it seems the like responses come a bit quicker, but I still think some of the delay is just due to the garbage residential Spectrum service.

If anyone would like to poke at my blog and share any observations on load time and potential cache performance, that'd be cool. :-)
#homelab #selfhost #selfhosting

enabled #HTTP3 / #QUIC on my #nginx homeserver

By today, it was just adding two lines to my #DockerCompose config and allowing also UDP for 443 on my firewall.

I'm using this image as reverse-proxy in front of all my containers:
https://hub.docker.com/r/jwilder/nginx-proxy/

So, I just had to add the environment variable ENABLE_HTTP3=true and the port declaration 443:443/udp

In a stunning display of overzealous #gatekeeping, the web gods have spoken: your quest for knowledge shall end at the 'nginx' wall of doom. Because who needs access when you can just admire the cryptic majesty of "403 Forbidden"?
https://lore.kernel.org/all/CA+55aFy98A+LJK4+GWMcbzaa1zsPBRo76q+ioEjbx-uaMKH6Uw@mail.gmail.com/ #websecurity #nginx #403forbidden #techhumor #accessdenied #HackerNews #ngated

Nginx not providing certificate #nginx #ssl #certificates #nextcloud

https://askubuntu.com/q/1553116/612

Install and Run Self-hosted #Mattermost Instance on Linux #VPS This article provides a comprehensive guide to install and run self-hosted Mattermost instance on Linux VPS (Ubuntu/Debian). This guide will set up Mattermost with #PostgreSQL and #NGINX as a reverse proxy with HTTPS.
What is Mattermost?
Mattermost is a self-hosted, open-source collaboration platform ...
Continued https://blog.radwebhosting.com/install-and-run-self-hosted-mattermost-instance-on-linux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #reverseproxy #selfhosted #opensource #unifiedcommunications #selfhosting #letsencrypt

A recent apache update broke a bunch of nginx-based sites this morning. If you're getting a 421 error, you'll need to add some proxy_ssl config to nginx's setup quickly.

https://support.plesk.com/hc/en-us/articles/33500191748887-Websites-hosted-in-Plesk-are-not-accessible-after-a-recent-Apache-update-421-Misdirected-Request

Today has been a busy day. In addition to regular work, I helped a friend determine the cause of #nginx crashing on their #HardenedBSD 15-CURRENT server.

Turns out, #brotli is buggy.

For others chasing the moving target of post-quantum cryptography, it seems that openssl-oqs-provider changed the name of the hybrid algorithm p384_mlkem1024 to SecP384r1MLKEM1024 at version 0.9.0, making my nginx.conf file suddenly invalid. Meanwhile, I *think* that Microsoft's indexing bots were about the only clients using pure p384r1.
#OQS #PQC #PostQuantum #QuantumSafe #cryptography #Nginx