Bobinas P4G
  • Login

  • Public

    • Public
    • Groups
    • Popular
    • People

Conversation

Notices

  1. not a lot, just forever (nightpool@cybre.space)'s status on Wednesday, 14-Aug-2019 12:12:39 UTC not a lot, just forever not a lot, just forever
    • not a lot, just forever

    hey all, there's a rash of http2 vulnerabilities going around c/o Netflix today.

    the default mastodon nginx config has http2 enabled, and nginx is affected (in one form or another) by three of these attacks, so you should upgrade nginx as soon as possible:

    https://www.nginx.com/blog/nginx-updates-mitigate-august-2019-http-2-vulnerabilities/

    In conversation Wednesday, 14-Aug-2019 12:12:39 UTC from cybre.space permalink
    • Ruby Rhod repeated this.
    • Ruby Rhod (feld@bikeshed.party)'s status on Wednesday, 14-Aug-2019 12:59:04 UTC Ruby Rhod Ruby Rhod
      in reply to
      • Ruby Rhod
      @nightpool interesting,
      So far it appears Varnish + Hitch aren't vulnerable, but still early days
      In conversation Wednesday, 14-Aug-2019 12:59:04 UTC permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • Privacy
  • Source
  • Version
  • Contact

Bobinas P4G is a social network. It runs on GNU social, version 2.0.1-beta0, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Bobinas P4G content and data are available under the Creative Commons Attribution 3.0 license.