From 4dd63b790c8bd7586aed7be1fd9f65c069a2dd31 Mon Sep 17 00:00:00 2001 From: NebulaOnion Date: Sat, 5 Nov 2022 16:14:41 +0000 Subject: [PATCH] Update privacy policy to disable IP logs site wide --- _items/Services.md | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/_items/Services.md b/_items/Services.md index c5f268f..0b6940d 100644 --- a/_items/Services.md +++ b/_items/Services.md @@ -31,6 +31,11 @@ Your account *can* be suspended if you take part in any sort of malicious activi As nature of this website, privacy and security must be our main priority, the following is currently in effect: - nginx logging is disabled on all servers. + - (no IPs are being logged) + - The following nginx headers are set to zero: + `proxy_set_header X-Forwarded-For 0.0.0.0;` + `proxy_set_header X-Real-IP 0.0.0.0;` + `proxy_set_header X-Forwarded-Host 0.0.0.0;`
@@ -58,8 +63,6 @@ As nature of this website, privacy and security must be our main priority, the f - `user_ips_max_age` is set to `0s` (disabled) -- nginx is configured to strip and remove every IP address it encounters before passing the request to Synapse. - - `bcrypt_rounds` is set to `16` - `MSC2285` is enabled