Open seiichi-yoshimune opened 3 years ago
Thanks for your feature request. It would be indeed beneficial if we could provide better security integration.
This is (in a general manner) also related to #671, but we’ll have to discuss (I would prefer IRC) which approach to take:
Is your feature request related to a problem? Please describe. Setting up some client side mitigation, adjusting
static_file_headers
is easily done with:Next logical steps will be Perfect Forward Secrecy, OCSP stapling ... but here I couldn't find any hints, in the docs, loooking at source code I found trantor TcpConnectionImpl.cc but how user would extend it? or am I missing something?
Describe the solution you'd like something in the like: https://ssl-config.mozilla.org/#server=nginx&version=1.17.7&config=modern&openssl=1.1.1d&guideline=5.6
Describe alternatives you've considered A clear and concise description of any alternative solutions or features you've considered.
Additional context Add any other context or screenshots about the feature request here.