privatevoid.net/depot
1
1
Fork 0
Code Issues 23 Pull requests 2 Projects 3 Releases Packages Wiki Activity Actions

cluster/services/nginx: switch to OpenSSL 1.1 to mitigate a to-be-disclosed vulnerability

Browse source
This commit is contained in:
Max Headroom 2022-10-31 18:42:09 +01:00
parent d560d76028
commit 41448f0c23
2 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
cluster/services/nginx/default.nix
View file

@ -1,6 +1,6 @@
{ {
services.nginx = { services.nginx = {
nodes.host = [ "VEGAS" "prophet" ]; nodes.host = [ "VEGAS" "prophet" ];
nixos.host = [ ./nginx.nix ]; nixos.host = [ ./nginx.nix ./openssl-1.1.nix ];
}; };
} }

7
cluster/services/nginx/openssl-1.1.nix Normal file
View file

@ -0,0 +1,7 @@
{ pkgs, ... }:
{
services.nginx.package = pkgs.nginx.override {
openssl = pkgs.openssl_1_1;
};
}