security-workarounds: add comments to openSSL 3 fixes

2022-11-01 11:16:19 +01:00 · 2022-11-01 11:16:19 +01:00 · e536b3343f
commit e536b3343f
parent a5c08e9699
1 changed files with 2 additions and 0 deletions
--- a/krebs/2configs/security-workarounds.nix
+++ b/krebs/2configs/security-workarounds.nix
@ -1,5 +1,6 @@
 { config, lib, pkgs, ... }:
 {
+  # OpenSSL pre-3.0.7 vulnerabilities
  nixpkgs.overlays = [
    (self: super: {
      exim =
@ -16,5 +17,6 @@
        });
    })
  ];
+  # OpenSSL pre-3.0.7 vulnerabilities
  services.nginx.package = lib.mkDefault (pkgs.nginxStable.override { openssl = pkgs.libressl; });
 }