Re: Vulnerability related Doubts in Nginx

2016-03-22 Thread Maxim Konovalov
On 3/22/16 3:17 PM, Zeal Vora wrote: > @Maxim :- > > Thanks. Actually we compile Nginx so to include additional modules. > The solution mentioned in Amazon page is " yum update nginx " is > something which will not help as we will need the tar.gz / SRPM file > for that version. > > @Valentin :- >

Re: Vulnerability related Doubts in Nginx

2016-03-22 Thread Zeal Vora
@Maxim :- Thanks. Actually we compile Nginx so to include additional modules. The solution mentioned in Amazon page is " yum update nginx " is something which will not help as we will need the tar.gz / SRPM file for that version. @Valentin :- Thanks, actually we already have 1.8.1 but the report

Re: Vulnerability related Doubts in Nginx

2016-03-22 Thread Valentin V. Bartenev
On Tuesday 22 March 2016 17:35:19 Zeal Vora wrote: > Hi > > We are running Nginx version 1.8 ( nginx-1.8.1-1.amzn1.ngx.x86_64 ) in our > servers. So in the Vulnerability Assessment, Nessus gave report that it is > vulnerable. > > *Current version :-*nginx-1.8.1-1.amzn1.ngx.x86_64 > > *Fi

Re: Vulnerability related Doubts in Nginx

2016-03-22 Thread Maxim Konovalov
Hi Zeal, On 3/22/16 3:05 PM, Zeal Vora wrote: > Hi > > We are running Nginx version 1.8 ( nginx-1.8.1-1.amzn1.ngx.x86_64 ) > in our servers. So in the Vulnerability Assessment, Nessus gave > report that it is vulnerable. > > *Current version :-*nginx-1.8.1-1.amzn1.ngx.x86_64 > > *Fix Ve

Vulnerability related Doubts in Nginx

2016-03-22 Thread Zeal Vora
Hi We are running Nginx version 1.8 ( nginx-1.8.1-1.amzn1.ngx.x86_64 ) in our servers. So in the Vulnerability Assessment, Nessus gave report that it is vulnerable. *Current version :-*nginx-1.8.1-1.amzn1.ngx.x86_64 *Fix Version ( According to Nessus ) :-* nginx-1.8.1-1.26.amzn1 I don