From 0528f73187011e16e9cdc6c83924d59cb36480c8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tristan=20Dani=C3=ABl=20Maat?=
 <tristan.maat@codethink.co.uk>
Date: Sat, 5 Nov 2022 17:33:28 +0000
Subject: [PATCH] nginx: Remove mitigation for openssl CVE

This has been fixed, instead we just update to the latest openssl.
---
 configuration/default.nix | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/configuration/default.nix b/configuration/default.nix
index 9c0ce68..f5d68fb 100644
--- a/configuration/default.nix
+++ b/configuration/default.nix
@@ -25,10 +25,6 @@
         pkgs = prev;
         lib = prev.lib;
       };
-
-      # Mitigate
-      # https://mta.openssl.org/pipermail/openssl-announce/2022-October/000238.html
-      nginxStable = prev.nginxStable.override {openssl = prev.openssl_1_1;};
     })
   ];