Mercurial > hg > nginx-site

comparison xml/en/docs/http/ngx_http_gzip_module.xml @ 2354:a4ef92436fbc

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Documented BREACH attack vulnerability for the gzip module.
author Yaroslav Zhuravlev <yar@nginx.com>
date Wed, 27 Mar 2019 15:25:14 +0300
parents ca7568f67dee
children
comparison
equal deleted inserted replaced
2353:21f3a93fbe97 2354:a4ef92436fbc
8 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> 8 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd">
9 9
10 <module name="Module ngx_http_gzip_module" 10 <module name="Module ngx_http_gzip_module"
11 link="/en/docs/http/ngx_http_gzip_module.html" 11 link="/en/docs/http/ngx_http_gzip_module.html"
12 lang="en" 12 lang="en"
13 rev="4"> 13 rev="5">
14 14
15 <section id="summary"> 15 <section id="summary">
16 16
17 <para> 17 <para>
18 The <literal>ngx_http_gzip_module</literal> module is a filter 18 The <literal>ngx_http_gzip_module</literal> module is a filter
19 that compresses responses using the “gzip” method. 19 that compresses responses using the “gzip” method.
20 This often helps to reduce the size of transmitted data by half or even more. 20 This often helps to reduce the size of transmitted data by half or even more.
21 <note>
22 When using the SSL/TLS protocol, compressed responses may be subject to
23 <link url="https://en.wikipedia.org/wiki/BREACH">BREACH</link> attacks.
24 </note>
21 </para> 25 </para>
22 26
23 </section> 27 </section>
24 28
25 29