Package: nginx Version: 1.10.2-2 I'm the author of Nchan and I've released a new version with some important bugfixes, security fixes, and new features. It would be nice if the Nginx package could be updated to the latest version, 1.0.6
https://nchan.slact.net/changelog Changes since 1.0.2 (current version in the Debian package): 1.0.6 (Nov. 15 2016) fix: large messages were sometimes incorrectly cleaned up, leaving behind temp files fix: file descriptor leak when listening on a unix socket and suddenly aborting client connections fix: invalid memory access after reloading twice with redis enabled fix: crash after shutting down nginx when 'master_process' set to 'off' change: nchan_max_channel_subscribers now always refers to subscribers on this instance of Nchan, even when using Redis. feature: subscribe/unsubscribe callbacks with nchan_subscribe_request and nchan_unsubscribe_request 1.0.4 (Oct. 28 2016) security: fix crash when receiving large messages over websocket with ws+nchan subprotocol 1.0.3 (Sept. 3 2016) feature: nchan_message_timeout and nchan_message_buffer_length can now use nginx variables for dynamic values fix: unsolicited websocket PONGs disconnected the subscriber in violation of RFC6455 fix: possible script error when getting channel from Redis fix: possible incorrect message IDs when using Redis (thanks @supertong) security: possible invalid memory access on publisher GET, POST, or DELETE when using Redis and the publisher connection is terminated before receiving a response fix: correct publisher response code when nchan_authorize_request is unavailable (502 instead of 500) security: crash if publisher POSTs request with no Content-Length header when using nchan_authorize_request https://nchan.slact.net/ Thanks, Leo P.