fossilfranv/nginx_docker-swag
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
301 Commits 2 Branches 213 Tags 877 KiB
7ffab2f1cb
Commit Graph

58 Commits

Author SHA1 Message Date
Gabriel Nagy
7ffab2f1cb
authelia-server.conf: allow pipe character in URI 
The characters in the regex used for mitigating CVE-2021-32637 are not
exhaustive since query strings seem to not always conform to the
RFC3986, this is also mentioned in the security advisory for the CVE.[1]

For example, attempting to delete multiple torrents in the qBittorrent
WebUI results in an URL like the following:

    confirmdeletion.html?hashes=HASH1|HASH2

This URL is valid and parsable by Authelia, but due to the regex it gets
redirected infinitely.

To fix this, also allow pipe characters in the request URI.

[1] https://github.com/authelia/authelia/security/advisories/GHSA-68wm-pfjf-wqp6
 2022-02-16 10:58:12 +02:00
quietsy
251917b23f Added a fail2ban jail for nginx unauthorized 2022-01-09 17:16:11 +02:00
drizuid
e843b50fc8 replace ip6tables legacy with ip6tables-nft due to missing kernel module 2021-12-21 14:40:37 -05:00
LinuxServer-CI
29a92e6bf1 Bot Updating Templated Files 2021-12-05 20:41:44 +01:00
LinuxServer-CI
3b0095bdec Bot Updating Templated Files 2021-11-22 13:52:15 +01:00
LinuxServer-CI
5f526e4f89 Bot Updating Templated Files 2021-11-20 18:24:46 +01:00
aptalca
48f6b00530
Merge branch 'master' into dnspod-support 2021-11-20 12:08:46 -05:00
LinuxServer-CI
ce544dd810 Bot Updating Templated Files 2021-11-16 14:08:24 +01:00
dongshuzhao
08c23bde51 Add DnsPod support. 
resolve linuxserver/docker-swag#98
 2021-11-12 16:58:47 +08:00
Eric Nemchik
66a4c1203b Mitigate https://httpoxy.org/ vulnerabilities. 
Ref: https://www.nginx.com/blog/mitigating-the-httpoxy-vulnerability-with-nginx#Defeating-the-Attack-using-NGINX-and-NGINX-Plus
 2021-10-26 08:33:36 -05:00
aptalca
537c47f293 fix HE dns validation 2021-10-23 14:04:11 -04:00
aptalca
915f209ea5 fix old root detection (staging and acme server) 2021-10-12 10:04:57 -04:00
aptalca
e9bea31a3f update readme 2021-10-06 15:39:36 -04:00
LinuxServer-CI
8c150cf0fa Bot Updating Templated Files 2021-10-05 19:08:28 +02:00
aptalca
a73daf773a detect old root cert and revoke/regen 2021-10-01 11:18:12 -04:00
LinuxServer-CI
73c0dc9084 Bot Updating Templated Files 2021-09-19 22:26:54 +02:00
aptalca
e37e972875 make subdomains optional, minimize migration info 2021-09-17 11:05:27 -04:00
Roxedus
1afac8b5bf
Format app_setup_block 
closes #152
 2021-09-07 08:48:25 +02:00
aptalca
31190157fb add ionos dns plugin 2021-08-01 12:51:47 -04:00
aptalca
a2e3cfb521 fix libmaxminddb updater 2021-07-15 16:48:12 -04:00
aptalca
89714012c6 rebase to 3.14 2021-07-07 10:04:51 -04:00
LinuxServer-CI
a82f689c38 Bot Updating Templated Files 2021-07-06 18:57:51 +00:00
aptalca
554ab25d3d update default conf folder 2021-06-24 09:10:16 -04:00
aptalca
224abb686d update authelia-server.conf for resolver and CVE 2021-05-28 17:40:28 -04:00
aptalca
aa94da0665 update resolver logic 2021-05-20 17:11:51 -04:00
aptalca
49bd204b51 add comments to resolver.conf and worker_processes 2021-05-14 11:08:24 -04:00
Eric Nemchik
870cd4bd93 Rework nginx.conf to be inline with alpine upstream and relocate lines from other files 2021-04-27 09:30:41 -05:00
LinuxServer-CI
6aa2e01ec3 Bot Updating Templated Files 2021-04-23 00:29:16 +00:00
LinuxServer-CI
fffa782d67 Bot Updating Templated Files 2021-04-22 05:32:35 +00:00
LinuxServer-CI
7cb21be1d1 Bot Updating Templated Files 2021-04-12 23:56:56 +01:00
Thomas Cuthbert
28cdf9b8c6 Add vultr DNS authenticator plugin documentation 2021-04-12 21:58:48 +08:00
LinuxServer-CI
4a43425d74 Bot Updating Templated Files 2021-03-14 13:30:21 +00:00
aptalca
f0be12bcda cleanup cargo/rust crud 2021-02-12 08:39:08 -05:00
aptalca
a84c6883a6 fix the right inis 2021-02-10 13:35:55 -05:00
aptalca
479ee5eac1 add brotli and dav-ext, remove lua 2021-02-09 10:50:54 -05:00
aptalca
6f25f82996 add support for hetzner dns validation 2021-01-26 18:11:44 -05:00
aptalca
07e1ab096c Add check for ZeroSSL EAB retrieval 2021-01-20 08:43:55 -05:00
aptalca
71747b2a6f add more info to changelog 2021-01-08 18:21:28 -05:00
aptalca
af548a0966 Merge branch 'master' into zerossl 2021-01-08 18:16:07 -05:00
LinuxServer-CI
bb53d24b40 Bot Updating Templated Files 2021-01-08 15:13:54 +00:00
LinuxServer-CI
0a1b8cf801 Bot Updating Templated Files 2020-12-18 14:00:19 +00:00
aptalca
371b7d49ec Add ZeroSSL support via CERTPROVIDER var 
and make donoteditthisfile.conf hidden
 2020-12-10 11:58:52 -05:00
LinuxServer-CI
42e0e7452b Bot Updating Templated Files 2020-12-10 10:21:34 -05:00
aptalca
1bdf9a98e2 add new dns methods, check confs, add workflows 
add gehirn and sakuracloud dns validation
add conf checker
add trigger workflows
remove deprecated certbot option for public ip logging
 2020-12-09 15:43:05 -05:00
LinuxServer-CI
64b676eb06 Bot Updating Templated Files 2020-11-22 17:27:13 -05:00
LinuxServer-CI
aded96c0a4 Bot Updating Templated Files 2020-11-02 15:01:28 +00:00
LinuxServer-CI
0a4cac7f35 Bot Updating Templated Files 2020-11-01 08:48:28 -05:00
Eric Nemchik
1d08b6f2e1 Update changelog 2020-10-29 10:38:32 -05:00
LinuxServer-CI
bd2913b084 Bot Updating Templated Files 2020-10-04 16:05:36 +00:00
aptalca
58565590b0 fix readme typo, update tempates 2020-10-04 10:16:33 -04:00