You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@openwhisk.apache.org by cb...@apache.org on 2018/04/26 09:25:08 UTC
[incubator-openwhisk] branch master updated: Bump nginx version to
latest and disable server-side information. (#3581)
This is an automated email from the ASF dual-hosted git repository.
cbickel pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-openwhisk.git
The following commit(s) were added to refs/heads/master by this push:
new ef0ccbb Bump nginx version to latest and disable server-side information. (#3581)
ef0ccbb is described below
commit ef0ccbb2257755a5a2c29ea7fba96d6d60121ae4
Author: Markus Thömmes <ma...@me.com>
AuthorDate: Thu Apr 26 11:25:01 2018 +0200
Bump nginx version to latest and disable server-side information. (#3581)
It's good practice in general to not report version numbers in http responses. This disables that as well as bumping the nginx version to 1.13.
---
ansible/group_vars/all | 2 +-
ansible/roles/nginx/templates/nginx.conf.j2 | 3 +++
2 files changed, 4 insertions(+), 1 deletion(-)
diff --git a/ansible/group_vars/all b/ansible/group_vars/all
index 936a704..0bff876 100644
--- a/ansible/group_vars/all
+++ b/ansible/group_vars/all
@@ -170,7 +170,7 @@ nginx:
confdir: "{{ config_root_dir }}/nginx"
dir:
become: "{{ nginx_dir_become | default(false) }}"
- version: "{{ nginx_version | default('1.12') }}"
+ version: "{{ nginx_version | default('1.13') }}"
port:
http: 80
api: 443
diff --git a/ansible/roles/nginx/templates/nginx.conf.j2 b/ansible/roles/nginx/templates/nginx.conf.j2
index 427b48e..8b2f07b 100644
--- a/ansible/roles/nginx/templates/nginx.conf.j2
+++ b/ansible/roles/nginx/templates/nginx.conf.j2
@@ -60,6 +60,9 @@ http {
proxy_set_header X-OW-EXTRA-LOGGING $extra_logging;
+{# Turn off sending information about the server to the client #}
+ server_tokens off;
+
server {
listen 443 default ssl;
--
To stop receiving notification emails like this one, please contact
cbickel@apache.org.