Get the most out of your Centmin Mod LEMP stack
Become a Member

Nginx 1.17.3 Security Update for HTTP/2 Vulnerabilities

Discussion in 'Centmin Mod News' started by eva2000, Aug 14, 2019.

Thread Status:
Not open for further replies.
  1. eva2000

    eva2000 Administrator Staff Member

    42,359
    9,564
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +14,738
    Local Time:
    6:22 AM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    Nginx has released 1.17.3 mainline and 1.16.1 stable releases for HTTP/2 security vulnerabilities found by Netflix. Centmin Mod users should update their Nginx versions to 1.17.3 mainline ASAP - details linked below. To discuss use thread at https://community.centminmod.com/threads/nginx-announce-nginx-1-17-3.18154/

    For Nginx HTTP/2 vulnerability details https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/.

    Updating Centmin Mod Nginx to 1.17.3
    • Centmin Mod 123.09beta01 users run cmupdate command and then centmin.sh menu option 4 and upgrade to nginx 1.17.3 specified version
    • Centmin Mod 123.08stable users run centmin.sh menu option 23 submenu option 2, exit centmin.sh, re-run centmin.sh for menu option 4 and upgrade to nginx 1.17.3 specified version
    Example Centmin Mod 123.09beta01 cmupdate command to update local server's Centmin Mod code
    Code (Text):
    cmupdate
    No local changes to save
    Updating 25cfb1f..adb1e6a
    Fast-forward
     centmin.sh                | 4 ++--
     example/custom_config.inc | 2 +-
     2 files changed, 3 insertions(+), 3 deletions(-)
    

    Example centmin.sh menu option 4 run from Centmin Mod 123.09beta01

    Code (Text):
    --------------------------------------------------------
         Centmin Mod Menu 123.09beta01 centminmod.com  
    --------------------------------------------------------
    1).  Centmin Install
    2).  Add Nginx vhost domain
    3).  NSD setup domain name DNS
    4).  Nginx Upgrade / Downgrade
    5).  PHP Upgrade / Downgrade
    6).  XCache Re-install
    7).  APC Cache Re-install
    8).  XCache Install
    9).  APC Cache Install
    10). Memcached Server Re-install
    11). MariaDB MySQL Upgrade & Management
    12). Zend OpCache Install/Re-install
    13). Install/Reinstall Redis PHP Extension
    14). SELinux disable
    15). Install/Reinstall ImagicK PHP Extension
    16). Change SSHD Port Number
    17). Multi-thread compression: zstd,pigz,pbzip2,lbzip2
    18). Suhosin PHP Extension install
    19). Install FFMPEG and FFMPEG PHP Extension
    20). NSD Install/Re-Install
    21). Update - Nginx + PHP-FPM + Siege
    22). Add Wordpress Nginx vhost + Cache Plugin
    23). Update Centmin Mod Code Base
    24). Exit
    --------------------------------------------------------
    Enter option [ 1 - 24 ] 4
    --------------------------------------------------------
    

    Code (Text):
    Do you want to run YUM install checks ?  [y/n]
    
    This will increase your upgrade duration time wise.
    Check the change log centminmod.com/changelog.html
    to see if any Nginx or PHP related new additions
    which require checking YUM prequisites are met.
    If no new additions made, you can skip the
    YUM install check to speed up upgrade time.
    
     [y/n]: n
    

    Code (Text):
    Nginx Upgrade - Would you like to continue? [y/n] y
    
    Current Nginx Version: 1.17.2 (030819-232601-centos7-kvm)
    
    Install which version of Nginx? (version i.e. type 1.17.3): 1.17.3
    
    Do you still want to continue? [y/n] y
    


     
    Last edited: Aug 14, 2019
    • Like Like x 6
Thread Status:
Not open for further replies.