Hi Team,
We would like to fix the HTTPS pinning vulnerability on our Nginx and
Mobile application Android/iOS. If I enable on Nginx, do we need to add the
pinning keys on our application and have to rotate the pinning keys
everytime when the SSL cert is renewed.
Please advise.
___
Am 05.06.19 um 14:54 schrieb Sathish Kumar:
> Hi Team,
>
> We would like to fix the HTTPS pinning vulnerability on our Nginx and Mobile
> application Android/iOS. If I enable on Nginx, do we need to add the pinning
> keys on our application and have to rotate the pinning keys everytime when
Thank you very much. I didn't find it.
Am 04.06.19 um 15:49 schrieb Maxim Dounin:
Hello!
On Mon, Jun 03, 2019 at 10:16:20PM +0200, Marcus wrote:
I try to use NGiNX 1.10.3-1+deb9u2 (Debian 9 version) as SMTP proxy in
front of a postfix server. I defined one server that should accept
encrypted
You might be better of with nginx stream to offload (ssl/tls), all of it is
then encrypted.
stream {
upstream backendsmtp {
server 192.168.3.32:25;
}
server {
listen 1234 ssl;
ssl_certificate /nginx/crts/global1.cert;
ssl_certificate_key /nginx/crts/global1.key;
include /
