undefined | Better HN

0 pointsconartist62y ago0 comments

You bring up NGINX+, a commercial product with a CVE reporting policy, but just from reading the docs on it it doesn't support QUIC or HTTP/3. So I guess I can see why the maintainer would be mad about a commercial policy applying to noncommercial work in the absence of any real threat.

0 comments

1 comments · 1 top-level

MZMegaZone2y ago

https://www.nginx.com/blog/quic-http3-support-openssl-nginx/

I know there are other mentions - it's been in the commercial product since R30, hence the CVE.

j / k navigate · click thread line to collapse