简体繁体中英

Hardening node.js/nginx

原文 2016-08-24 16:46:58 4 1 node.js/ nginx/ pci-compliance

For PCI requierements I need to hardening a node.js app or nginx server but I only found guides for IIS, Tomcat, operative systems, etc. here you will find the available guides . My questions are:

It's possible to hardening node.js?
It's possible to hardening a nginx server?
Is there any official documentation or trustworthy out there?

1 answers

For example dev-sec provides nginx hardening roles for puppet, ansible etc...

To harden a nodejs server the same principles should apply as hardening tomcat. PCI-DSS lists a couple of things you need to do:

Disable all unnecessary services.
Leave only the necessary ports open. etc.

First make sure you develop your application according to best practises from a security point of view. For instance, SSL/TLS, CSRF, Error handling, use SNYK or similar, as described here .

Talk to your QSA about the requirements.

Nginx + node.js configuration

NGINX as proxy of Node.js

Node.js - Nginx 502

nginx to cdn or node.js

Nginx + Node.js at Heroku

Setup of nginx with node.js

Docker Node.js with nginx

Nginx fallback with Node.js

Node.JS proxy with Nginx and Docker

Getting nginx and node.js to play nice

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Nginx + node.js configuration NGINX as proxy of Node.js Node.js - Nginx 502 nginx to cdn or node.js Nginx + Node.js at Heroku Setup of nginx with node.js Docker Node.js with nginx Nginx fallback with Node.js Node.JS proxy with Nginx and Docker Getting nginx and node.js to play nice

Related Tags

Hardening node.js/nginx

Question

1 answers

solution1 0 2017-06-19 08:28:48

solution1
0 2017-06-19 08:28:48