) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
CIS NGINX Benchmark 2.0.1 Checklist Details (Checklist Revisions)
Supporting Resources:
-
Download Prose - CIS NGINX Benchmark v2.0.1
- Center for Internet Security (CIS)
Target:
| Target | CPE Name |
|---|---|
| NGINX | cpe:/a:nginx:nginx:1.14.0 (View CVEs) |
Checklist Highlights
- Checklist Name:
- CIS NGINX Benchmark
- Checklist ID:
- 900
- Version:
- 2.0.1
- Type:
- Compliance
- Review Status:
- Final
- Authority:
- Third Party: Center for Internet Security (CIS)
- Original Publication Date:
- 03/07/2019
Checklist Summary:
This document, CIS NGINX Benchmark, provides prescriptive guidance for establishing a secure configuration posture for NGINX version 1.14.0 running on Linux.
Checklist Role:
- Web Server
Known Issues:
Not provided.
Target Audience:
This document is intended for system and application administrators, security specialists, auditors, and help desk and platform deployment personnel who plan to develop, deploy, assess, or secure solutions that incorporate NGINX.
Target Operational Environment:
- Managed
Testing Information:
This guide was tested against NGINX version 1.14.0 using the packages installed using yum from nginx.org.
Regulatory Compliance:
Not provided.
Comments/Warnings/Miscellaneous:
Not provided.
Disclaimer:
https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/
Product Support:
Point of Contact:
Sponsor:
Not provided.
Licensing:
https://www.cisecurity.org/cis-securesuite/cis-securesuite-membership-terms-of-use/
Change History:
updated to FINAL - 4/8/19 Updated URLs - 9/24/19 updated benchmark per CIS - 2/22/24
Dependency/Requirements:
| URL | Description |
|---|
References:
| Reference URL | Description |
|---|