zelo72
/
documentation
mirror of https://github.com/mastodon/documentation
1
0
Fork 0
Code Issues 6 Releases Wiki Activity

Limit client max body size in the nginx configuration example (#579) 

As Mastodon temporaliry saves uploaded content to memory and disk (if
/tmp is a disk), unlimiting client max body size makes the server
vulnerable to DoS attack.
This commit is contained in:
Akihiko Odaki 2018-03-24 19:55:59 +09:00 committed by Eugen Rochko
parent 42e5e85445
commit 8ab12a626e
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Running-Mastodon/Production-guide.md
View File

@ -220,7 +220,7 @@ server {
keepalive_timeout 70;
sendfile on;
client_max_body_size 0;
client_max_body_size 8m;
root /home/mastodon/live/public;