Some security scanning applications will flag EOL or "obsolete" software versions when scanning web applications. As a result, scans of the Delphix Engine may be flagged by the general vendor recommendation to always run the latest release.
Applicable Delphix Versions
- Click here to view the versions of the Delphix engine to which this article applies
Major Release All Sub Releases 6.0 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206
It is not always possible to render security decisions based on the general version of a given application scan result. Although the Delphix NginX distribution is detected as 1.14, at the time of this article publish the actual NginX version installed is 1.14.0-0ubuntu1.9, which is part of the Canonical Ubuntu 18.04 LTS distribution, from which the Delphix Engine OS is based. This includes numerous security updates beyond the base 1.14.0 release, and as such, many general concerns about security vulnerabilities may not be relevant.
Beyond this, the generic recommendations of security vendors to always run the latest releases of a given software package are not always preferred, especially in the appliance-based applications such as Delphix Masking or Virtualization. Delphix strives to deliver a secure and stable application, and as such some third party software in use may be selected for their overall stability and long term support while still addressing security concerns as they arise through product updates.
The following articles may provide more information or related information to this article:
- Ubuntu - Nginx 1.14.0-0ubuntu1.9 changelog