searxng

mirror of https://github.com/searxng/searxng synced 2024-01-01 19:24:07 +01:00

History

Alex Balgavy 6b59800dc6 Fix security vulnerabilities in suggested nginx configuration The suggested configurations for nginx found in the documentation and templates lead to vulnerabilities allowing host spoofing [1] and path traversal [2], as reported by Gixy [3]. This commit fixes those issues. [1] https://github.com/yandex/gixy/blob/master/docs/en/plugins/hostspoofing.md [2] https://github.com/yandex/gixy/blob/master/docs/en/plugins/aliastraversal.md [3] https://github.com/yandex/gixy	2021-03-03 12:34:22 +01:00
..
etc	Fix security vulnerabilities in suggested nginx configuration	2021-03-03 12:34:22 +01:00
lib/systemd/system	utils/morty.sh: set morty key to avoid service abuse	2020-04-28 16:21:45 +02:00

Alex Balgavy 6b59800dc6 Fix security vulnerabilities in suggested nginx configuration

The suggested configurations for nginx found in the documentation and
templates lead to vulnerabilities allowing host spoofing [1] and path
traversal [2], as reported by Gixy [3]. This commit fixes those issues.

[1] https://github.com/yandex/gixy/blob/master/docs/en/plugins/hostspoofing.md
[2] https://github.com/yandex/gixy/blob/master/docs/en/plugins/aliastraversal.md
[3] https://github.com/yandex/gixy

2021-03-03 12:34:22 +01:00

etc

Fix security vulnerabilities in suggested nginx configuration

2021-03-03 12:34:22 +01:00

lib/systemd/system

utils/morty.sh: set morty key to avoid service abuse

2020-04-28 16:21:45 +02:00