Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering NGINX
  • Table Of Contents Toc
Mastering NGINX

Mastering NGINX - Second Edition

By : Aivaliotis
5 (1)
Buy this Book
close
close
Mastering NGINX

Mastering NGINX

5 (1)
By: Aivaliotis
Buy this Book

Overview of this book

NGINX is a high-performance HTTP server and mail proxy designed to use very few system resources. But despite its power it is often a challenge to properly configure NGINX to meet your expectations. Mastering Nginx is the solution – an insider’s guide that will clarify the murky waters of NGINX’s configuration. Tune NGINX for various situations, improve your NGINX experience with some of the more obscure configuration directives, and discover how to design and personalize a configuration to match your needs. To begin with, quickly brush up on installing and setting up the NGINX server on the OS and its integration with third-party modules. From here, move on to explain NGINX's mail proxy module and its authentication, and reverse proxy to solve scaling issues. Then see how to integrate NGINX with your applications to perform tasks. The latter part of the book focuses on working through techniques to solve common web issues and the know-hows using NGINX modules. Finally, we will also explore different configurations that will help you troubleshoot NGINX server and assist with performance tuning.
Table of Contents (15 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Lock Free Chapter
1
1. Installing NGINX and Third-Party Modules
Icon
1. Installing NGINX and Third-Party Modules
Icon
Installing NGINX using a package manager
Icon
Installing NGINX from source
Icon
Configuring SSL support
Icon
Enabling various modules
Icon
Finding and installing third-party modules
Icon
Adding support for Lua
Icon
Putting it all together
Icon
Summary
2
2. A Configuration Guide
Icon
2. A Configuration Guide
Icon
The basic configuration format
Icon
NGINX global configuration parameters
Icon
Using the include files
Icon
The HTTP server section
Icon
The virtual server section
Icon
Locations – where, when, and how
Icon
Full sample configuration
Icon
Summary
3
3. Using the mail Module
Icon
3. Using the mail Module
Icon
Basic proxy service
Icon
Authentication service
Icon
Combining with memcached
Icon
Interpreting log files
Icon
Operating system limits
Icon
Summary
4
4. NGINX as a Reverse Proxy
Icon
4. NGINX as a Reverse Proxy
Icon
Introducing reverse proxying
Icon
The proxy module
Icon
Legacy servers with cookies
Icon
The upstream module
Icon
Keepalive connections
Icon
Types of upstream servers
Icon
Single upstream server
Icon
Multiple upstream servers
Icon
Non-HTTP upstream servers
Icon
Load-balancing
Icon
Converting an if-fy configuration to a more modern interpretation
Icon
Using error documents to handle upstream problems
Icon
Determining the client's real IP address
Icon
Summary
5
5. Reverse Proxy Advanced Topics
Icon
5. Reverse Proxy Advanced Topics
Icon
Security through separation
Icon
Isolating application components for scalability
Icon
Reverse proxy performance tuning
Icon
Summary
6
6. The NGINX HTTP Server
Icon
6. The NGINX HTTP Server
Icon
NGINX's architecture
Icon
The HTTP core module
Icon
Using limits to prevent abuse
Icon
Restricting access
Icon
Streaming media files
Icon
Predefined variables
Icon
SPDY and HTTP/2
Icon
Using NGINX with PHP-FPM
Icon
Wiring NGINX and uWSGI together
Icon
Summary
7
7. NGINX for the Application Developer
chevron up
Icon
7. NGINX for the Application Developer
Icon
Caching integration
Icon
Changing content on-the-fly
Icon
Using Server Side Includes
Icon
Decision-making in NGINX
Icon
Creating a secure link
Icon
Generating images
Icon
Tracking website visitors
Icon
Preventing inadvertent code execution
Icon
Summary
8
8. Integrating Lua with NGINX
Icon
8. Integrating Lua with NGINX
Icon
The ngx_lua module
Icon
Integrating with Lua
Icon
Logging with Lua
Icon
Summary
9
9. Troubleshooting Techniques
Icon
9. Troubleshooting Techniques
Icon
Analyzing log files
Icon
Configuring advanced logging
Icon
Common configuration errors
Icon
Operating system limits
Icon
Performance problems
Icon
Using the Stub Status module
Icon
Summary
10
A. Directive Reference
Icon
A. Directive Reference
11
B. The Rewrite Rule Guide
Icon
B. The Rewrite Rule Guide
Icon
Introducing the rewrite module
Icon
Creating new rewrite rules
Icon
Translating from Apache
Icon
Summary
12
C. The NGINX Community
Icon
C. The NGINX Community
Icon
NGINX Plus
Icon
Mailing list
Icon
IRC channel
Icon
Web resources
Icon
Writing a good bug report
Icon
Summary
13
D. Persisting Solaris Network Tunings
Icon
D. Persisting Solaris Network Tunings
14
Index
Icon
Index

Preventing inadvertent code execution

When trying to construct a configuration that does what you expect it to do, you may inadvertently enable something that you did not expect. Take the following configuration block, for example:

location ~* \.php {

  include fastcgi_params;

  fastcgi_pass 127.0.0.1:9000;

}

Here we seem to be passing all requests for the PHP files to the FastCGI server responsible for processing them. This would be OK if PHP only processed the file it was given, but due to differences in how PHP is compiled and configured this may not always be the case. This can become a problem if user uploads are made into the same directory structure that PHP files are in.

Users may be prevented from uploading files with a .php extension but are allowed to upload .jpg, .png, and .gif files. A malicious user could upload an image file with embedded PHP code, and cause the FastCGI server to execute this code by passing a URI with the uploaded filename in it.

To prevent this from happening...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Mastering NGINX
End of Section 7
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon