-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
I am proxy maintaining the nginx package on Gentoo.
Regarding the recent "httpoxy" problem (you already published a blog
posting [1] with instructions how to mitigate the problem) we are
unsure if we should update our package to ship your mitig
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
thank you for your response.
For the sake of completeness: For Gentoo we decided to patch the
default configuration, see [1].
[1]
https://gitweb.gentoo.org/repo/gentoo.git/tree/www-servers/nginx/files/nginx-httpoxy-mitigation.patch?id=c4b897d
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 2016-08-10 11:00, Valentin V. Bartenev wrote:
> Why have you decided to patch "fastcgi_params" and left untouched
> other similar protocols like scgi, uwsgi?
Uhm, good catch. Thanks!
Will update our patch to https://git.io/v6Wp9 (i.e. patch wil
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Hi,
nginx-1.11.5 introduced a new configure option "--with-compat" however
I don't find any documentation regarding this option.
Could you please give us some insight when you expect that this option
should be used (especially from distribution vie
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
On 2016-10-12 16:33, Maxim Dounin wrote:
> [...]
>
> From package maintaining point of view it should be a good idea to
> add the option to nginx builds. This will allow others to easily
> compile dynamic modules to be loaded into nginx shipped i