On Sat, Mar 9, 2019 at 9:06 AM DHAVAL JAISWAL wrote:
> While doing network scan its showing internal IP disclosure vulnerability.
> This internal IP is of ELB and not the HA proxy server.
>
> It is showing vulnerability on port 80. Following are the steps for reproduce.
>
> Can some one help me
I have configured HAProxy behind the AWS PUBLIC FACING ELB.
While doing network scan its showing internal IP disclosure vulnerability.
This internal IP is of ELB and not the HA proxy server.
It is showing vulnerability on port 80. Following are the steps for
reproduce.
Can some one help me to
Hi,
On Fri, Mar 08, Philipp Kolmann wrote:
> On 3/8/19 2:50 PM, Patrick Hemmer wrote:
> >
> >You can use external files in two cases. See the following blog articles:
> >
> >https://www.haproxy.com/blog/introduction-to-haproxy-acls/ (search
> >for "acl file")
> >
>
Hi Marcin,
On 3/7/19 6:43 PM, Marcin Deranek wrote:
> Hi,
>
> On 3/6/19 6:36 PM, Emeric Brun wrote:
>> According to the documentation:
>>
>> ssl-mode-async
>> Adds SSL_MODE_ASYNC mode to the SSL context. This enables asynchronous TLS
>> I/O operations if asynchronous capable SSL engines
On 3/8/19 2:50 PM, Patrick Hemmer wrote:
You can use external files in two cases. See the following blog articles:
https://www.haproxy.com/blog/introduction-to-haproxy-acls/ (search for
"acl file")
https://www.haproxy.com/blog/introduction-to-haproxy-maps/
Hi,
thanks for the hint with
Hi Bruno,
On 3/8/19 2:26 PM, Bruno Henc wrote:
I don't think there is a capability to include a list of ACLs.
However, you can load the ip addresses once via the -f parameter:
acl is_admin src -f /etc/haproxy/admin_ip_list.txt
Thanks that sounds like a solution for my IP List issue...
I
Hi.
In addition to Bruno's answer there was a thread on the ML which explains why
such a "simple" directive like include isn't easy to implement.
https://www.mail-archive.com/haproxy@formilux.org/msg05215.html
As I also think that in some setups can a include can make the main config
shorter
On 2019/3/8 08:17, Philipp Kolmann wrote:
> Hi,
>
> I have ACLs for Source-IPs for Admins for several services. These ACLs
> are identical for multiple listener-sections.
>
> Would it be possible to have a file with several acl snipplets and
> source that at the proper section of the config file
Hello Philipp,
I don't think there is a capability to include a list of ACLs. However,
you can load the ip addresses once via the -f parameter:
acl is_admin src -f /etc/haproxy/admin_ip_list.txt
You would have to define an acl in each section, but the IP list would
be the same for all
Dear list!
Author: Radek Zajic
Number of patches: 1
This is an automated relay of the Github pull request:
IPv6: properly format an address coming from IPv6 socket as hex in
lf_ip
Patch title(s):
IPv6: properly format an address coming from IPv6 socket as hex string in
lf_ip
Link:
Hi,
I have ACLs for Source-IPs for Admins for several services. These ACLs
are identical for multiple listener-sections.
Would it be possible to have a file with several acl snipplets and
source that at the proper section of the config file multiple times?
I haven't found anything in the
Hi Marcin,
On 3/7/19 6:43 PM, Marcin Deranek wrote:
> Hi,
>
> On 3/6/19 6:36 PM, Emeric Brun wrote:
>> According to the documentation:
>>
>> ssl-mode-async
>> Adds SSL_MODE_ASYNC mode to the SSL context. This enables asynchronous TLS
>> I/O operations if asynchronous capable SSL engines
ATTN: haproxy@formilux.org
Hi there,
The last time you visited a porn website with teens,
you downloaded and installed the software I developed.
My program has turned on your camera and recorded
the process of your masturbation.
My software has also grabbed all your email contact lists
and a
13 matches
Mail list logo
