View Single Post
  #4   (View Single Post)  
Old 16th September 2019
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
Join Date: May 2008
Location: USA
Posts: 7,093

Consider maintaining your systems, especially those exposed directly to the Internet.
On the server, it is OpenBsd, it is a older version... 6.1,
nginx version: nginx/1.10.2 ----
There have been 131 security, reliability, and availability patches to the OS since 6.1 was published. Support ended for OpenBSD 6.1 on April 15, 2018 with the release of OpenBSD 6.3.

Consider your webserver software, too:
  1. There was a -stable port of nginx for 6.1 published on October 9, 2017: an update to version 1.12.1 for CVE-2017-7529.
  2. Support for 6.1 packages ended on October 9, 2017 with the release of OpenBSD 6.2. There have been nine (9) additional nginx CVEs specifically addressed by name in the CVS update logs for the port/package since support ended.
Reply With Quote