网站的nginx http/2模块安全漏洞修复记录
解决方案:将旧版本1.14.2升至安全版本1.16.1
1.nginx旧版本配置查看
[root@node2 ~]# nginx -V
nginx version: nginx/1.14.2
built by gcc 4.8.5 20150623 (Red Hat 4.8.5-39) (GCC)
built with OpenSSL 1.0.2s 28 May 2019
TLS SNI support enabled
configure arguments: --user=www --group=www --prefix=/www/server/nginx --with-openssl=/root/nginx/openssl-1.0.2s --add-module=/root/nginx/ngx_devel_kit-master --add-module=/root/nginx/lua-nginx-module-0.10.9rc7 --add-module=/root/nginx/ngx_cache_purge-2.3 --add-module=/root/nginx/nginx-sticky-module --add-module=/root/nginx/nginx-http-concat-master --with-http_stub_status_module --with-http_ssl_module --with-http_v2_module --with-http_image_filter_module --with-http_gzip_static_module --with-http_gunzip_module --with-stream --with-stream_ssl_module --with-ipv6 --with-http_sub_module --with-http_flv_module --with-http_addition_module --with-http_rea