Alan Orth b284098485

roles/nginx: Add mitigation for HTTPoxy vulnerability ...

Malicious requests including the HTTP_PROXY value will be able to
manipulate some server-side libraries. Better to just block them
in nginx.

See: https://httpoxy.org/
See: https://www.nginx.com/blog/mitigating-the-httpoxy-vulnerability-with-nginx/

2016-07-21 14:45:41 +03:00

..

blank-vhost.conf.j2

roles/nginx: Add "ansible managed" string to configs

2016-06-27 17:50:49 +03:00

https.j2

roles/nginx: Fix variable check in HTTPS template

2016-07-05 19:42:56 +03:00

nginx_org_sources.list.j2

roles/nginx: Add "ansible managed" string to configs

2016-06-27 17:50:49 +03:00

renew-letsencrypt.service.j2

roles/nginx: Better names for Let's Encrypt timer/service

2016-07-07 14:36:29 +03:00

vhost.conf.j2

roles/nginx: Add mitigation for HTTPoxy vulnerability

2016-07-21 14:45:41 +03:00

wordpress.j2

roles/nginx: Disable rules for Yoast SEO

2016-06-02 11:03:35 +03:00