]> cat aescling's git repositories - mastodon.git/commit
cat aescling's git repositories / mastodon.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9ac7e6f) | patch
Disable nginx ssl_session_tickets for better security (#16632)
authorPeter Dave Hello <hsu@peterdavehello.org>
Fri, 20 Aug 2021 07:15:07 +0000 (15:15 +0800)
committerGitHub <noreply@github.com>
Fri, 20 Aug 2021 07:15:07 +0000 (08:15 +0100)
commite03dc3956f8c7c20914775ca1aca19decf61b616
tree12dfe08e125b48fc61c7580ff5c5386f48e0af24tree | snapshot
parent9ac7e6fef770c0627c14d704fdf525c9515d6a6ccommit | diff
Disable nginx ssl_session_tickets for better security (#16632)

It's default turned on, but it's better to turn it off for security reason.

Reference:
- https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_tickets
- https://github.com/mozilla/server-side-tls/issues/135
dist/nginx.conf diff | blob | history
source code fur Kibicat Mastodon