Welcome! Log In Create A New Profile

Advanced

Re: HTTPS Pinning

Previous Message Next Message
Forum List Message List New Topic Print View
A. Schulze
June 05, 2019 12:58PM
Am 05.06.19 um 14:54 schrieb Sathish Kumar:
> Hi Team,
>
> We would like to fix the HTTPS pinning vulnerability on our Nginx and Mobile application Android/iOS. If I enable on Nginx, do we need to add the pinning keys on our application and have to rotate the pinning keys everytime when the SSL cert is renewed.
>
> Please advise.

HPKP is more or less deprecated. I suggest to no use it anymore.
Use HSTS, try to understand the implication of "includeSubDomains" and https://hstspreload.org/

Andreas
_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Reply Quote
RSS
Subject Author Posted

HTTPS Pinning

Sathish Kumar June 05, 2019 08:56AM

Re: HTTPS Pinning

A. Schulze June 05, 2019 12:58PM

Re: HTTPS Pinning

Richard Stanway via nginx June 07, 2019 09:46AM

Re: HTTPS Pinning

Peter Booth via nginx June 07, 2019 10:24AM

Re: HTTPS Pinning

A. Schulze June 07, 2019 11:56AM

RE: HTTPS Pinning

Reinis Rozitis June 07, 2019 12:32PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 174
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready