Beta Branch update nginx 1.27.4 default with optional SSL cert cache support in 140.00beta01

update nginx 1.27.4 default with optional SSL cert cache support in 140.00beta01

- update nginx 1.27.4 default with optional SSL certificate and key cache support as outlined at Optimizing Resource Usage for Complex SSL Configurations in NGINX – NGINX Community Blog.
- existing Centmin Mod 140.00beta01 users can run cmupdate to get update then set in persistent config file /etc/centminmod/custom_config.inc the below variables (latter 2 are optional)
and then run centmin.sh menu option 4 to recompile/update to Nginx 1.27.4 to enable optional SSL certificate caching for Nginx 1.27.4+
- NGINX_SSL_CACHE='y' Set to 'y' to activate caching of SSL certs/keys.
- NGINX_SSL_CACHE_COUNT='1000' which defines the maximum number of cache entries (default: 1000).
- NGINX_SSL_CACHE_TTLS='1m' which specifies the cache entry valid time in minutes (default: 1m).

---

Continue reading...

140.00beta01 branch

• Branch: https://github.com/centminmod/centminmod/tree/140.00beta01
• Commit History: https://github.com/centminmod/centminmod/commits/140.00beta01

 

Yup

in /usr/local/nginx/conf/nginx.conf, you'd see when enabled an include file /usr/local/nginx/conf/nginx_ssl_cert_cache.conf

Code (Text):

http {
 include /usr/local/nginx/conf/nginx_ssl_cert_cache.conf;

and when disabled, commented out include file for /usr/local/nginx/conf/nginx_ssl_cert_cache.conf

Code (Text):

http {
 #include /usr/local/nginx/conf/nginx_ssl_cert_cache.conf;

contents of include file /usr/local/nginx/conf/nginx_ssl_cert_cache.conf is

Code (Text):

ssl_certificate_cache max=1000 inactive=20s valid=1m;

found a found in my implementation, so 140.00beta01 2nd update coming heh. Edit updated 140.00beta01 with fix