Nginx 1.23.4 Released with Default TLSv1.3

Nginx Releases Main Branch 1.23.4 with New Features

Nginx, a popular web server software, has released its main branch 1.23.4 with new features and improvements. The release is aimed at continuing the development of new opportunities. In contrast, the parallel supported stable branch 1.22.x receives only changes associated with getting rid of significant errors and vulnerabilities. In the future, the 1.24 stable branch will be formed on the basis of the main branch.

Among the notable changes in the main branch are:

Default Protocol TLSV1.3: The protocol TLSV1.3 is now enabled by default.

Redevelopment Warning: A redevelopment warning is triggered when changing the settings of the protocols used for the listening socket.

Lingering Close: The use of the Pipelining mode by the client ensures the closing of compounds with the expectation of additional data (Lingering Close).

Byte Range: In the ngx_http_gzip_static_module module, byte range support has been added.

Critical Logs: The logging levels for the SSL-SSL “Data Length to Long,” “Length too Short,” “Bad Legacy Version,” “No Shared Signature Algorithms,” “Bad Digest Length,” “Missing Sigalgs Extension,” “Encrypted Length Too Long,” “Bad Length,” “Bad Key Update,” “Mixed Handshake and Non Handhyke Data,” “CCS RECEIDED EARLY,” “DATA BETWEEN CCCS ADIS Too Long,” “Too many Warn Alerts,” “Record too Small,” and “Got a Fin Before a CCS” have been changed from “Crit” to “Info.”

Port Range: The directive Listen now works with port ranges.

Location Unit: The problem with the selection of the wrong location unit in the case of using the prefix location longer than 255 characters has been fixed.

Non-ASCII Characters: The modules gx_http_autoindex_module, ngx_http_dav_module, and the league of Include gained support for non-ASCII characters in file names on the Windows platform.

Socket Leaks: The use of HTTP/2 and the Error_Page directives now prevents socket leaks and redirects errors with the code 400.

These new features and improvements are indicative of Nginx’s commitment to providing a secure and efficient web server software. To download the latest version of Nginx, visit their website at nginx.org.

/Reports, release notes, official announcements.