• A core developer of Nginx, the popular web server, has quit the project and started a fork called freenginx.
  • The developer cited disagreements with the new management at F5, which acquired Nginx Inc. in 2019, over security policies.
  • The dispute arose from the assigning of Common Vulnerabilities and Exposures (CVEs) to bugs in the experimental HTTP/3 code.

Archive link: https://archive.ph/U4XRN

  • neclimdul@lemmy.world
    link
    fedilink
    English
    arrow-up
    4
    ·
    10 months ago

    Thanks for that.

    Its a weird that the couldn’t just choose to back port the fixes that have security implications even if it wouldn’t deserve a cve.