Fijxu/nginx-ktls
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

minor fixes

Browse source
This commit is contained in:
Ricard Bejarano 2019-05-26 22:32:16 +02:00
parent e9d0926740
commit 680675cc4a
No known key found for this signature in database
GPG key ID: 5A5105DD6B91CA19
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
README.md
View file

@ -24,9 +24,9 @@ Available on [Quay](https://quay.io) as:
* Super tiny (`glibc`-based is `~13.2MB` and `musl`-based is `~12.5MB`)
* Built from source, including libraries
* Built `FROM scratch`, see the [Filesystem](#Filesystem) section below for an exhaustive list of the image's contents
* Built `FROM scratch`, see the [Filesystem](#filesystem) section below for an exhaustive list of the image's contents
* Reduced attack surface (no `bash`, no UNIX tools, no package manager...)
* Built with exploit mitigations enabled (see [Security](#Security))
* Built with exploit mitigations enabled (see [Security](#security))
## Configuration
@ -58,7 +58,7 @@ This image attempts to build a secure NGINX container image.
It does so by the following ways:
- downloading and verifying the source code of NGINX and every library it is built with,
- packaging the image with only those files required during runtime (see [Filesystem](#Filesystem)),
- packaging the image with only those files required during runtime (see [Filesystem](#filesystem)),
- by enforcing a series of exploit mitigations (PIE, full RELRO, full SSP, NX and Fortify)
### Verifying the presence of exploit mitigations