Archives
/
searxng
mirror of https://github.com/searxng/searxng
2
0
Fork 1
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
translations_update
translations
dependabot/pip/master/uvloop-0.21.0
dependabot/pip/master/pallets-sphinx-themes-2.2.0
dependabot/pip/master/sphinx-issues-5.0.0
gh-pages
master
revert-3936-master
dependabot/pip/master/redis-5.1.1
dependabot/npm_and_yarn/searx/static/themes/simple/master/grunt-eslint-25.0.0
update_js_ariable_to_python
v1.0.0
v0.18.0
v0.17.0
v0.16.0
v0.15.0
v0.14.0
v0.13.1
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '6b59800dc6'
${ noResults }
searxng/utils/templates/etc
History
Alex Balgavy 6b59800dc6 Fix security vulnerabilities in suggested nginx configuration 
The suggested configurations for nginx found in the documentation and
templates lead to vulnerabilities allowing host spoofing [1] and path
traversal [2], as reported by Gixy [3]. This commit fixes those issues.

[1] https://github.com/yandex/gixy/blob/master/docs/en/plugins/hostspoofing.md
[2] https://github.com/yandex/gixy/blob/master/docs/en/plugins/aliastraversal.md
[3] https://github.com/yandex/gixy
 		4 years ago
..
filtron [fix] indentation of filtron's rules (json) 4 years ago
httpd/sites-available Changes from the installation tests on (all) LXC containers. 5 years ago
nginx/default.apps-available Fix security vulnerabilities in suggested nginx configuration 4 years ago
searx [doc] recommend to use 'use_default_settings=True' 4 years ago
uwsgi [enh] add searx.shared 4 years ago
apache2 apache: normalize installation (docs and script)s over all distros 5 years ago