DEEP, SOLID ROOTS IN THE PAST, INNOVATING FOR THE FUTURE.

 

 

Quema : Да : Yes, under a development instance of our Metztli Reiser4 GCC14 computing environments we built Nginx 1.31.1-1 especially to address the so-designated HTTP/2 Bomb, a remote denial-of-service (DoS) exploit against most major web servers which was disclosed a few days ago:

Metztli Reiser4 GCC14 build of Nginx 1.31.1-1
Nginx 1.29.8 and upwards addresses the HTTP/2 Bomb DoS exploit

Thus, below are also the additional software components we built and installed:

ModSecurity v3 upgraded library component and development files built with libcurl4-openssl-dev instead of libcurl4-gnutls-dev:

libmodsecurity3t64_3.0.15-1.1_amd64.deb

libmodsecurity-dev_3.0.15-1.1_amd64.deb

The WAF module for Nginx

The ModSecurity-nginx connector is the connection point between nginx and libmodsecurity (ModSecurity v3). Said another way, this project provides a communication channel between nginx and libmodsecurity. This connector is required to use LibModSecurity with nginx:

libnginx-mod-http-modsecurity_1.0.4-3_amd64.deb

GeoIP2 HTTP module for Nginx and GeoIP2 Stream module for Nginx:

libnginx-mod-http-geoip2_3.4-7.3_amd64.deb

libnginx-mod-stream-geoip2_3.4-7.3_amd64.deb

Nginx Development Kit module and Nginx Development Kit module - development files:

libnginx-mod-http-ndk_0.3.4-4.3_amd64.deb

libnginx-mod-http-ndk-dev_0.3.4-4.3_all.deb

Nginx Upstream Fair Proxy Load Balancer:

libnginx-mod-http-upstream-fair_0.0~git20120408.a18b409-7.3_amd64.deb

Substitution filter module for Nginx:

Substitution Nginx module can do both regular expression and fixed string substitutions on response bodies. The module is quite different from Nginx's native Substitution module. It scans the output chains buffer and matches string line by line, just like Apache's mod_substitute:

libnginx-mod-http-subs-filter_0.6.4-8.3_amd64.deb

Bring echo and more shell style goodies to Nginx:

libnginx-mod-http-echo_0.64-1.3_amd64.deb

WebDAV missing commands support for Nginx:

libnginx-mod-http-dav-ext_3.0.0-7.3_amd64.deb

PAM authentication module for Nginx:

libnginx-mod-http-auth-pam_1.5.5-4.3_amd64.deb

And, of course, Nginx, a small, powerful, scalable web/proxy server Nginx ("engine X") is a high-performance web and reverse proxy server created by Igor Sysoev. It can be used both as a standalone web server and as a proxy to reduce the load on back-end HTTP or mail servers:

nginx_1.31.1-1_amd64.deb

nginx-common_1.31.1-1_all.deb

nginx-core_1.31.1-1_all.deb

nginx-dev_1.31.1-1_all.deb

libnginx-mod-stream-geoip_1.31.1-1_amd64.deb

libnginx-mod-stream_1.31.1-1_amd64.deb

libnginx-mod-mail_1.31.1-1_amd64.deb

libnginx-mod-http-xslt-filter_1.31.1-1_amd64.deb

libnginx-mod-http-perl_1.31.1-1_amd64.deb

libnginx-mod-http-image-filter_1.31.1-1_amd64.deb

libnginx-mod-http-geoip_1.31.1-1_amd64.deb

nginx-doc_1.31.1-1_all.deb

nginx-extras_1.31.1-1_amd64.deb

nginx-light_1.31.1-1_all.deb

nginx-full_1.31.1-1_all.deb

Available resources are available on an AS-IS basis, i.e., there are no implicit nor explicit warranties as to their suitability in anyone and/or any group intended use. Resources are published for the sake of illustration of our procedures arriving at our stated security objectives.

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer