Tag
The author migrated their blog from a 10-year-old Ubuntu 16.04 VPS to a more cost-effective FreeBSD VPS, detailing the motivation, setup, and introduction to FreeBSD Jails with Bastille.
This article describes how to set up a private FreeBSD package repository secured with mutual TLS, including creating a custom certificate authority and configuring nginx to require client certificates.
A critical heap buffer overflow vulnerability in Nginx's rewrite module (CVE-2026-42945) allows unauthenticated remote code execution, with a proof-of-concept exploit released. The bug affects Nginx versions from 0.6.27 to 1.30.0 and various Nginx Plus releases.
Researchers used an autonomous system to discover a critical heap buffer overflow vulnerability in NGINX's rewrite module (CVE-2026-42945), present since 2008, enabling remote code execution. Multiple CVEs were confirmed by NGINX.