Skip to content

G
gitlab-ce
Commit fefa10c3 authored by Dmitriy Zaporozhets's avatar Dmitriy Zaporozhets
Browse files
Options

Merge branch 'breack-attack' into 'master' 

Breack attack

Fixes #1104
parents 8df66046 5307dd5f
Hide whitespace changes
Inline Side-by-side
Showing with 5 additions and 2 deletions
lib/support/nginx/gitlab
View file @ fefa10c3
...@@ -42,6 +42,10 @@ server { ...@@ -42,6 +42,10 @@ server {
# if a file, which is not found in the root folder is requested, # if a file, which is not found in the root folder is requested,
# then the proxy pass the request to the upsteam (gitlab unicorn) # then the proxy pass the request to the upsteam (gitlab unicorn)
location @gitlab { location @gitlab {
# If you use https make sure you disable gzip compression
# to be safe against BREACH attack
# gzip off;
proxy_read_timeout 300; # Some requests take more than 30 seconds. proxy_read_timeout 300; # Some requests take more than 30 seconds.
proxy_connect_timeout 300; # Some requests take more than 30 seconds. proxy_connect_timeout 300; # Some requests take more than 30 seconds.
proxy_redirect off; proxy_redirect off;
...@@ -63,5 +67,4 @@ server { ...@@ -63,5 +67,4 @@ server {
} }
error_page 502 /502.html; error_page 502 /502.html;
} }
\ No newline at end of file
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7