Recommendations for safeguarding against BREACH ?

offmind nginx-forum at
Mon Aug 12 17:32:57 UTC 2013

And what if we are using gzip_static?
As far as I understand, we have to block gzipping page code. But what about
.js .css with no secure content?

Posted at Nginx Forum:,241591,241794#msg-241794

More information about the nginx mailing list