User Details
User Details
- User Since
- Mar 22 2013, 5:51 PM (613 w, 1 d)
- Availability
- Available
Apr 13 2015
Apr 13 2015
Apr 8 2015
Apr 8 2015
jefferai added a comment to T7777: Description for "security.strict-transport-security" is incorrect.
I've updated the description to document the issue of the option description being incorrect.
jefferai renamed T7777: Description for "security.strict-transport-security" is incorrect from Strict-Transport-Security option not honored to Description for "security.strict-transport-security" is incorrect.
jefferai added a comment to T7777: Description for "security.strict-transport-security" is incorrect.
I *could* overwrite the header, if I knew it was being set in the first place.
jefferai added a comment to T7777: Description for "security.strict-transport-security" is incorrect.
In that case, please add an option to turn this off. This plays havoc with systems that are setting that header elsewhere (such as on a reverse proxy to php-fpm) because you get conflicting headers, which leads to unexpected behavior.
jefferai reopened T7777: Description for "security.strict-transport-security" is incorrect as "Open".
Apr 7 2015
Apr 7 2015
jefferai added a comment to T7097: Following documentation on Aphlict+nginx results in empty client-port for Aphlict.
Regarding use cases, I have TLS locked down in Nginx and neither want to maintain a TLS configuration in multiple places nor even understand how to properly configure cipher suites, stapling, and other such things in the aphlict daemon (if it's even possible). A reverse proxy allows me to re-use my known good TLS configuration.