New Package Nginx 1.10 (nginx1w)

Webtatic has now released Nginx 1.10.3 for RHEL/CentOS 7.3 as a new set of packages and dynamic modules, including pagespeed and headers_more. Significantly it also will support both SPDY 3.1 and HTTP2 (although the latter browsers wont use until a future release of RHEL 7.4).

This release will, unlike Webtatic's previous Nginx releases, follow all Nginx 1 stable minor releases, rather than just bugfix releases. (So for example if Nginx 1.12 is released, these packages will upgrade to that).

Continuing Nginx with the release of 1.10 with SPDY removed and HTTP2 added in gave a complex non-backwards compatible change:
* SPDY removed, so for example older Android devices could no longer benefit from the performance improvements.
* HTTP2 added, however RHEL/CentOS 6 and 7's openssl doesn't yet support the TLS ALPN extension to negotiate http protocol version. This means newer and newest browsers can't yet benefit from HTTP2 on this OS distribution.

For the former, Webtatic has reintroduced SPDY using patches Cloudflare created to add it to their own Nginx servers. Cloudflare provides the patch open source. It may be removed from Webtatic's releases later (e.g. if it becomes unmaintained).

For the latter, Webtatic aims to resolve as soon as an official RHEL/CentOS openssl upgrade becomes available and supported by them. Redhat are planning to do this as part of their RHEL 7.4 release, but this may be released. between half a year to a year from now.

Given Redhat has no plans to provide an openssl upgrade for RHEL/CentOS 6, Webtatic will no longer provide Nginx releases for that distro version.

Latest Updates PHP 5.6.9/5.5.25/5.4.41, Nginx 1.8.0

Here are updated packages in the Yum repository:

Nginx 1.8.0 replaces 1.6.3 as the most up to date stable release of Nginx.

The 5.6.9 release fixes 7 CVEs (along with other bug fixes):
* CVE-2015-2325
* CVE-2015-2326
* CVE-2015-4021
* CVE-2015-4022
* CVE-2015-4024
* CVE-2015-4025
* CVE-2015-4026

The PHP 5.5.25 release fixes 5 CVEs (along with other bug fixes):
* CVE-2015-4021
* CVE-2015-4022
* CVE-2015-4024
* CVE-2015-4025
* CVE-2015-4026

The PHP 5.4.41 release fixes 6 CVEs (along with other bug fixes):
* CVE-2015-2325
* CVE-2015-2326
* CVE-2015-4022
* CVE-2015-4024
* CVE-2015-4025
* CVE-2015-4026

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • nginx18 1.8.0

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Latest Updates PHP 5.6.8/5.5.24/5.4.40, Nginx 1.6.3, MySQL 5.5.43

Here are updated packages in the Yum repository:

The PHP 5.5.24 and 5.6.8 releases fix 5 CVE (along with other bug fixes):
* CVE-2015-1351
* CVE-2015-1352
* CVE-2015-2783
* CVE-2015-3329
* CVE-2015-3330

The PHP 5.4.40 release fixes 5 CVE (along with other bug fixes):
* CVE-2015-1352
* CVE-2015-2783
* CVE-2015-3329
* CVE-2015-3330
* CVE-2014-9709

The PHP 5.4 pecl zendopcache 7.0.5 release fixes 1 CVE (along with other bug fixes):
* CVE-2015-1351

No CVEs were reported as fixed in the Nginx 1.6.3 and MySQL 5.5.43 changelogs.

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • nginx 1.6.3
  • mysql55w 5.5.43
  • php56w 5.6.8
  • php56w-pecl-redis
  • php56w-pecl-xdebug
  • php55w 5.5.24
  • php55w-pecl-redis
  • php55w-pecl-xdebug
  • php54w 5.4.40
  • php54w-pecl-redis
  • php54w-pecl-xdebug
  • php54w-pecl-zendopcache

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Latest Updates - RHEL and CentOS 7.0 packages, and https

They are finally here. Webtatic now has released a Webtatic EL7 Yum repository for RHEL and CentOS 7.0.

The packages that are included in this release are:

* PHP 5.6
* PHP 5.5
* PHP 5.4
* Nginx 1.6

The Webtatic EL7 repository is accessible via https by default, although you can alter the /etc/yum.repos.d/webtatic*.repo files to change to http if needed.

Additionally, the EL6 and EL5 repositories can also be accessible via https, however will default to http due to potential issues in earlier RHEL/CentOS 6.x and 5.x releases. The version of the 'openssl' package determines whether https will work.

The reason for the delay in getting EL7 released was due to the general development and testing frameworks I use to roll out packages being slow to update for CentOS/RHEL 7.0 support, some of which I helped contribute support for.

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php56w 5.6.1
  • nginx16 1.6.2

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php56w 5.6.0RC4
  • php55w 5.5.16RC1
  • php54w 5.4.32RC1
  • nginx16 1.6.1

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing

Latest updates in testing

The following packages are in testing, and available for download in the testing repositories:

  • php55w 5.5.14
  • php54w 5.4.30
  • nginx16 1.6.0 release 2

Assuming you have the Webtatic repositories set up (see Yum Repository), you can update using:

    yum update <package> --enablerepo=webtatic-testing
.