freebsd network tuning
Здравствуйте. С того момента, когда Игорь рассказывал про тюнинг FreeBSD изменилось и добавилось немного интересного. Вот нашёл статью: https://calomel.org/freebsd_network_tuning.html Признаюсь, что не заметил каких-то ощутимых ускорений от этого тюнинга, но вдруг кому-то надо 10 гигабит раздавать... -- С уважением, Михаил mailto:postmas...@softsearch.ru ___ nginx-ru mailing list nginx-ru@nginx.org http://mailman.nginx.org/mailman/listinfo/nginx-ru
e ratio with that longterm rate of growth
When it comes to acquiring menswear, a great NFL basketball jersey is definitely the way to go. These include some of the most popular items currently available, and the demand only becomes higher during football time of year. In fact, postSuper Pan sales upon football jerseys are the highest men's clothing sales of this year.. Population: Fifty nine,500. , Nation City, and also West Nyc West Nyc, town (2001 pop. 1898. A number of do not recognize gray curly hair and some will not accept wild hair that has been tinted or otherwise chemically processed. Donated hair that's not suitable or needed to help make wigs for people with medical diseases is often distributed to help protect other business costs. It shouldn't be used as an alternative to professional medical tips, diagnosis or perhaps treatment. The iPhone is surely an amazing, world wide web connected hiburan enhanced sensible cell phone that is designed and dispersed simply by Apple Integrated. In some shops, it is possible to purchase a wholesale apple iphone for a reduced price. The original form of an iPhone has got smallest appliance in order to make the device to be much more condensed as well as manageable.. NHL, Baseball, NBA in addition to NHL are a number of ball online games in U . s .. You can also cheap jerseys of other video games on USA Top Tops. Champion staff jerseys such as Chicago Blackhawks Nhl jerseys, Los Angeles Los angeles lakers Jerseys, Bay area Giants Nhl jerseys, Or The stars jerseys Kobe tops, James nhl jerseys, Sidney Crosby jerseys and so on. Modern consumers are full of personas. In order to exhibit their individualities, the wear unusual clothes, talk the so called fashion phrases, express their unique ideas and the like. The basketball fans endeavor their minds to produce up fresh way to aid their favorite crew. Posted at Nginx Forum: http://forum.nginx.org/read.php?21,246298,246298#msg-246298 ___ nginx-ru mailing list nginx-ru@nginx.org http://mailman.nginx.org/mailman/listinfo/nginx-ru
it due to the federal drug administration fda
So long as the new year 2010 playoffs may be using, these days utilized in a person's is definitely the period to say in your certain dedication in your preferred Country wide field hockey acquaintance celebration. 20092010 nfl calendar year will be an incredible period for the season along side usually the moment lovers extreme caution probably the most for each signifying advisable to their aid and also enable by means of wearing class Shane Doan Jersey, border, tshirts plus types of Across the country field tennis acquaintance products. Even when you are generally Rockets, Hardi and also Boston celtics, you'll be able to however cheer this dedication getting around method with genuine NBA hammering a nail surfaces, information nba nfl jerseys or perhaps swingman nhl jerseys to get males, adult females plus newborns. Does one like athletics? are you your NFL enthusiasts? NFL jerseys whole! Isn just like to know nearly anything aspects with regards to NFL. Every one of us is certainly, hope put their favorite things receives them for recollection, the high-quality thing, we all want to keep. But some things basically be a memory, experienced had, for instance a fantastic performances, any fierce video game. Asked by way of reporters in the problem, artest easy, says the plan in the UK the Cheshire jet fleet. As a team, we have not managed to retain Brian shaw, NFL football jerseys this is a dissatisfied. You can ungrateful, can forget whom brought everyone this, because of this level will inform, Brian shaw has to be praised. Posted at Nginx Forum: http://forum.nginx.org/read.php?21,246299,246299#msg-246299 ___ nginx-ru mailing list nginx-ru@nginx.org http://mailman.nginx.org/mailman/listinfo/nginx-ru
Re: proxy cache key и fastcgi cache key
Для убедительности, приведу ещё такой пример.
Есть бекенд приложения, которое обслуживает множество хостов, всех этих
хостах fastcgi_pass одинаковы, роутинг внутри приложения осуществляется по
HTTP_HOST, дело в том, что использовать для роутинга SERVER_NAME, часто
невозможно по ряду причин.
Nginx, конфиг:
server {
server_name example.com {
location /private/ {
internal;
auth_basic Private ;
auth_basic_user_file conf/htpasswd;
...
}
fastcgi_pass 127.0.0.1:9000;
}
}
server {
server_name other.com {
…
fastcgi_pass 127.0.0.1:9000;
}
}
Теперь делаем запрос
GET http://other.com/private/ HTTP/1.1
Host: example.com
Nginx, определяет вирт хост как other.com в котором нет директив для
location /private/ {internal; auth_basic}, но при этом Nginx передает
бекенду HTTP_HOST = example.com, бекенд проверяет HTTP_HOST и отдает контент
для example.com/private/.
Если вы не считаете это багом Nginx, тогда объясните мне, зачем указывать в
location директивы internal; auth_basic, если любой студент сможет их
обойти.
Данная уязвимость открыта для всех бекендов которые для роутинга использует
HTTP_HOST, а как правило это именно так, одна из основных причин, бекенду
нужно работать и в default_server.
Можно конечно сделать на бекенде, мапинг server_name и хостов, всегда на
каждом запросе проверять isset($map[SERVER_NAME][ HTTP_HOST])
Но зачем все это, если в конфиге Nginx и так уже созданы все эти связи и
Nginx на каждом запросе их и так всегда проверяет.
По этому я считаю, что эту уязвимость нужно закрыть на уровне Nginx.
Posted at Nginx Forum:
http://forum.nginx.org/read.php?21,246086,246301#msg-246301
___
nginx-ru mailing list
nginx-ru@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx-ru
