Valentin V. Bartenev
September 12, 2013 01:00PM
On Thursday 12 September 2013 20:24:38 mex wrote:
> Updates:
>
> - SSL Client Authentication
> - BREACH
> - incorporated suggestions from the list
>
>
> http://www.mare-system.de/guide-to-nginx-ssl-spdy-hsts/
>


In your section about BREACH requirements:

- User-Data transfered via GET/POST - parameters

actually wrong statement. The right one is:

- Reflect user-input in HTTP response bodies

(from breachattack.com)


wbr, Valentin V. Bartenev

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Subject Author Posted

[DOC] Guide to Nginx + SSL + SPDY

mex September 08, 2013 01:50PM

Re: [DOC] Guide to Nginx + SSL + SPDY

aweber September 09, 2013 09:56AM

Re: [DOC] Guide to Nginx + SSL + SPDY

Patrick Lists September 09, 2013 11:12AM

Re: [DOC] Guide to Nginx + SSL + SPDY

Valentin V. Bartenev September 09, 2013 11:12AM

Re: [DOC] Guide to Nginx + SSL + SPDY

aweber September 09, 2013 11:20AM

Re: [DOC] Guide to Nginx + SSL + SPDY

openletter September 09, 2013 03:40PM

Re: [DOC] Guide to Nginx + SSL + SPDY

mex September 10, 2013 07:32AM

Re: [DOC] Guide to Nginx + SSL + SPDY

mex September 12, 2013 12:24PM

Re: [DOC] Guide to Nginx + SSL + SPDY

Valentin V. Bartenev September 12, 2013 01:00PM

Re: [DOC] Guide to Nginx + SSL + SPDY

mex September 12, 2013 02:36PM

Re: [DOC] Guide to Nginx + SSL + SPDY

openletter September 16, 2013 03:16AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 97
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 500 on July 15, 2024
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready