Willy,
Am 31.07.2018 um 20:32 schrieb Willy Tarreau:
> That's where I disagree, it's exactly the same argument causing TLS to
> appear on every web site even when not necessary, making people believe
> they are safe while they are not. Right now you don't have this PGP
> signature so you are
On Tue, Jul 31, 2018 at 07:42:41PM +0200, Tim Düsterhus wrote:
> Am 30.07.2018 um 20:55 schrieb Willy Tarreau:
> > I know and I've already thought about it. But I personally refuse to store
> > my PGP key on any exposed machine. Right now in order to tag, I have to
> > SSH into an isolated
Hi Bertrand,
On Tue, Jul 31, 2018 at 06:26:11PM +0100, Bertrand Jacquin wrote:
> I know old farts don't change, but for the two cents, newer version of
> OpenSSH (>= 6.7) and GnuPG (>=2.1.1) allow you to forward GnuPG agent over
> SSH with reduce capacity to reduce the attack surface you are
Willy,
Am 30.07.2018 um 20:55 schrieb Willy Tarreau:
> I know and I've already thought about it. But I personally refuse to store
> my PGP key on any exposed machine. Right now in order to tag, I have to
> SSH into an isolated machine, run "git pull --tags", create-release, and
> "git push
On 31/07/2018 18:26, Bertrand Jacquin wrote:
Hi Willy,
On 30/07/2018 19:55, Willy Tarreau wrote:
On Mon, Jul 30, 2018 at 07:41:33PM +0200, Tim Düsterhus wrote:
Willy,
Am 30.07.2018 um 18:05 schrieb Willy Tarreau:
> A small update happened to the download directory, the sha256 of the
> tar.gz
Hi Willy,
On 30/07/2018 19:55, Willy Tarreau wrote:
On Mon, Jul 30, 2018 at 07:41:33PM +0200, Tim Düsterhus wrote:
Willy,
Am 30.07.2018 um 18:05 schrieb Willy Tarreau:
> A small update happened to the download directory, the sha256 of the
> tar.gz files are now present in addition to the
Hi Vincent,
On Mon, Jul 30, 2018 at 11:16:39PM +0200, Vincent Bernat wrote:
> ? 30 juillet 2018 20:55 +0200, Willy Tarreau :
>
> > What I don't like with PGP on an exposed machine is that it reduces the
> > size of your 4096-bit key to the size of your passphrase (which most
> > often contains
❦ 30 juillet 2018 20:55 +0200, Willy Tarreau :
> What I don't like with PGP on an exposed machine is that it reduces the
> size of your 4096-bit key to the size of your passphrase (which most
> often contains much less than the ~700 characters it would need to be
> as large), and also increases
On Mon, Jul 30, 2018 at 07:41:33PM +0200, Tim Düsterhus wrote:
> Willy,
>
> Am 30.07.2018 um 18:05 schrieb Willy Tarreau:
> > A small update happened to the download directory, the sha256 of the
> > tar.gz files are now present in addition to the (quite old) md5 ones.
> > We may start to think
Willy,
Am 30.07.2018 um 18:05 schrieb Willy Tarreau:
> A small update happened to the download directory, the sha256 of the
> tar.gz files are now present in addition to the (quite old) md5 ones.
> We may start to think about phasing md5 signatures out, for example
> after 1.9 is released.
I'd
On 30/07/2018 18:05, Willy Tarreau wrote:
Hi,
HAProxy 1.8.13 was released on 2018/07/30. It added 28 new commits
after version 1.8.12.
Nothing critical this time, however we finally got rid of the annoying
CLOSE_WAIT on H2 thanks to the continued help from Milan Petruzelka,
Janusz Dziemidowicz
Hi,
HAProxy 1.8.13 was released on 2018/07/30. It added 28 new commits
after version 1.8.12.
Nothing critical this time, however we finally got rid of the annoying
CLOSE_WAIT on H2 thanks to the continued help from Milan Petruzelka,
Janusz Dziemidowicz and Olivier Doucet. Just for this it was
12 matches
Mail list logo