PEM Certificates for HAproxy

Hi I have tried to build a PEM Certificate, but with no luck. What should it include and in which order? The PEM file from the Exchange Server include Attributes blocks, should these been removed from the Private PEM file? Here are all the certificates I have Also from DigiCert which

Networking

So I am pretty new to networking and I am not quite sure how to set up the config file correctly. I just want a simple reverse proxy and I have created a diagram to show you how’d I’d like it configured. If you have any sites or examples that could point me in the right direction that’d be

Re: PEM Certificates for HAproxy

On 29 Apr, Shawn Heisey wrote: > I know that a fresh install can be instantly operational with TLS, > suggesting that it is not generating them on the fly ... so I really wonder > how secure the default params are.  I wonder what is being used when there > are no params in the cert file. Does it

Re: valgrind follow up

Hi Ilya, On Fri, Apr 29, 2022 at 04:35:03PM +0500, ??? wrote: > Hello, > > I added sample in my branch: CI: github actions: add valgrind smoke tests · > chipitsine/haproxy@7cd7f4a > > > here's its

Re: valgrind follow up

Willy, On 4/29/22 14:39, Willy Tarreau wrote: However once we manage to get rid of all of them, it would be interesting to enable them in the CI so that new regressions can be caught. But until this happens, it would only be reports for known failures. I agree and I planned to propose that

valgrind follow up

Hello, I added sample in my branch: CI: github actions: add valgrind smoke tests · chipitsine/haproxy@7cd7f4a here's its run: VTest · chipitsine/haproxy@7cd7f4a (github.com)

[ANNOUNCE] haproxy-2.4.16

Hi, HAProxy 2.4.16 was released on 2022/04/29. It added 65 new commits after version 2.4.15. This release is pretty similar to the 2.5.6 released early in the week. Thus, here is a cut-paste of relevant parts: * An internal issue leading to truncated messages was fixed. When data were

Re: valgrind follow up

пт, 29 апр. 2022 г. в 17:39, Willy Tarreau : > Hi Ilya, > > On Fri, Apr 29, 2022 at 04:35:03PM +0500, ??? wrote: > > Hello, > > > > I added sample in my branch: CI: github actions: add valgrind smoke > tests · > > chipitsine/haproxy@7cd7f4a > > < >

Re: valgrind follow up

On Fri, Apr 29, 2022 at 02:43:24PM +0200, Tim Düsterhus wrote: > > Anyway your test is useful in that it reported quite a significant number > > of entries at once, we rarely see so many, so it will be a good starting > > point about new locations to look for. > > Those in Ilya's test are "false

[ANNOUNCE] haproxy-2.3.20

Hi, HAProxy 2.3.20 was released on 2022/04/29. It added 41 new commits after version 2.3.19. The 2.3 branch was planned to be EOL last quarter. There are no longer bug reports for this specific branch. Thus, it is probably the last 2.3 release. Except if there are critical bugs in next few

Re: PEM Certificates for HAproxy

On 4/29/22 11:16, Henning Svane wrote: I have tried to build a PEM Certificate, but with no luck. What should it include and in which order? I use certs issued by LetsEncrypt. My certificate file that I use for haproxy and most other software doing TLS has four PEM-encoded items in it:

Re: PEM Certificates for HAproxy

On 4/29/22 12:42, Branitsky, Norman wrote: If you include the following in your HAProxy configuration global section you don't need to include DH Params in the certificate: tune.ssl.default-dh-param 2048 It takes several minutes to generate params, so I doubt that with that option that

Re: Thoughts on QUIC/HTTP3

On 4/25/22 10:55, Shawn Heisey wrote: I was testing with the master branch from https://github.com/haproxy/haproxy.git. Just pulled down the latest changes, built it, and installed it.  Now I am sometimes seeing different behavior on the large POST.  It will load a page quickly sometimes,