akkoma

History

Francis Dinh 40627a94d4 Add config for media subdomain for Caddy A recent group of vulnerabilities have been found in Pleroma (and inherited by Akkoma) that involve media files either uploaded by local users or proxied from remote instances (if media proxy is enabled). It is recommended that media files are served on a separate subdomain in order to mitigate this class of vulnerabilities. Based on https://meta.akkoma.dev/t/another-vector-for-the-injection-vulnerability-found/483/2	2023-05-29 14:04:00 -04:00
..
Caddyfile	Add config for media subdomain for Caddy	2023-05-29 14:04:00 -04:00

Add config for media subdomain for Caddy

A recent group of vulnerabilities have been found in Pleroma (and
inherited by Akkoma) that involve media files either uploaded by local
users or proxied from remote instances (if media proxy is enabled).

It is recommended that media files are served on a separate subdomain
in order to mitigate this class of vulnerabilities.

Based on https://meta.akkoma.dev/t/another-vector-for-the-injection-vulnerability-found/483/2

2023-05-29 14:04:00 -04:00

Caddyfile

Add config for media subdomain for Caddy

2023-05-29 14:04:00 -04:00