Skip to content
This repository has been archived by the owner on Jul 17, 2020. It is now read-only.

[Feature Request] add length_hiding module to nginx-extras to mitigate BREACH attack #69

Open
azeemism opened this issue Jun 18, 2015 · 0 comments

Comments

@azeemism
Copy link

This module appends random generated strings to the end of HTML responses, this helps to mitigate a BREACH attack which targets http compressed (gzip) responses. The alternative is to disable gzip on web servers, an unwelcome thought.

@azeemism azeemism changed the title [Feature Request] add lenght_hiding module to nginx-extras to mitigate BREACH attack [Feature Request] add length_hiding module to nginx-extras to mitigate BREACH attack Jun 18, 2015
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant