This post serves as a notice regarding the BREACH vulnerability and NGINX.
For Ubuntu, Debian, and the PPA users: If you are on
1.6.2-5 (or 1.7.8 from the PPAs), the default configuration has GZIP
compression enabled, which means it does not mitigate BREACH on your
sites by default. You need to look into whether you are actually
impacted by BREACH, and if you are consider mitigation steps.Source:
http://dark-net.net/?p=49
