Hi Ilya,
On Wed, May 27, 2020 at 10:48:28PM +0500, ??? wrote:
> hello,
>
> how does haproxy serves queries like that:
>
> Range: bytes=0-,0-,0-,0-,
>
> more info:
> https://www.zdnet.com/article/rangeamp-attacks-can-take-down-websites-and-cdn-servers/
Well, range attacks are
Hi again Tim,
On Thu, May 28, 2020 at 06:15:04AM +0200, Willy Tarreau wrote:
> Hi Tim,
>
> On Wed, May 27, 2020 at 04:33:47PM +0200, Tim Düsterhus wrote:
> > I already asked 2 weeks ago [1], but I'll ask again:
> >
> > > Is there any date planned for 2.1.5? I'm still running 2.1.3 on one
> > >
On Thu, May 28, 2020 at 12:21:20AM +0200, Tim Düsterhus wrote:
> Ilya,
>
> Am 27.05.20 um 22:53 schrieb ???:
> > Hello,
> >
> > let us skip new test on CentOS6
> >
>
> There definitely should be a smarter solution than "delete test" to skip
> tests that depend on OpenSSL's features.
On Thu, May 28, 2020 at 10:18:58AM +0200, Olivier D wrote:
> Le jeu. 28 mai 2020 à 09:48, Willy Tarreau a écrit :
>
> > No you're not :-) hdr_cnt() counts *values*. So :
> >
> > Range: bytes=0-,0-,0-,0-
> >
> > decomposes as the following values around the comma delimiter:
> >
> >
Hi Olivier,
On Thu, May 28, 2020 at 09:44:13AM +0200, Olivier D wrote:
> Hello,
>
>
> Le jeu. 28 mai 2020 à 09:17, Willy Tarreau a écrit :
>
> > http-request del-header range if { req.hdr_cnt(range) gt 1 }
> >
>
> This will only filter if header "Range" is present multiple times, not
On Thu, May 28, 2020 at 09:32:25AM +0200, Willy Tarreau wrote:
> On Thu, May 28, 2020 at 12:21:20AM +0200, Tim Düsterhus wrote:
> > Ilya,
> >
> > Am 27.05.20 um 22:53 schrieb ???:
> > > Hello,
> > >
> > > let us skip new test on CentOS6
> > >
> >
> > There definitely should be a
Hello,
Le jeu. 28 mai 2020 à 09:17, Willy Tarreau a écrit :
> http-request del-header range if { req.hdr_cnt(range) gt 1 }
>
This will only filter if header "Range" is present multiple times, not this
one :
Range: bytes=0-,0-,0-,0-
Am I correct ?
Olivier
Le jeu. 28 mai 2020 à 09:48, Willy Tarreau a écrit :
> No you're not :-) hdr_cnt() counts *values*. So :
>
> Range: bytes=0-,0-,0-,0-
>
> decomposes as the following values around the comma delimiter:
>
> "bytes=0-", "0-", "0-", "0-"
>
> And actually if you'd send several Range headers with
Willy,
Am 28.05.20 um 09:23 schrieb Willy Tarreau:
> Please do me a favor, just check that this pre-release is OK for you:
>
>http://git.haproxy.org/?p=haproxy-2.1.git;a=snapshot;h=HEAD;sf=tgz
>
> I'd really hate having to release it just to have to emit yet another
> one to fix the same
❦ 28 mai 2020 12:48 +02, Tim Düsterhus:
>> Okay, I've done what I really wanted to avoid and built my own HAProxy.
>> I'm now running HAProxy 2.1.5-1~~~timwolla+1 and I hope that it will
>> smoothly upgrade to Vincent's build once it is released.
>>
>
> While researching how to build a 2.1.5
On Thu, May 28, 2020 at 01:30:56PM +0200, William Lallemand wrote:
> On Thu, May 28, 2020 at 03:39:50PM +0500, ??? wrote:
> > anyway, I can install for example openssl-1.1.0 without APLN support.
> > version is not very good indicator (and we try to
> > use features in ifdef wherever
чт, 28 мая 2020 г. в 14:35, William Lallemand :
> On Thu, May 28, 2020 at 09:32:25AM +0200, Willy Tarreau wrote:
> > On Thu, May 28, 2020 at 12:21:20AM +0200, Tim Düsterhus wrote:
> > > Ilya,
> > >
> > > Am 27.05.20 um 22:53 schrieb ???:
> > > > Hello,
> > > >
> > > > let us skip new
Vincent,
Am 28.05.20 um 12:41 schrieb Tim Düsterhus:
> Okay, I've done what I really wanted to avoid and built my own HAProxy.
> I'm now running HAProxy 2.1.5-1~~~timwolla+1 and I hope that it will
> smoothly upgrade to Vincent's build once it is released.
>
While researching how to build a
On Thu, May 28, 2020 at 12:41:44PM +0200, Tim Düsterhus wrote:
> My Postfix + Dovecot still works as evidenced by the fact that I am able
> read your email and send a reply. My HTTP services also work.
Thanks very much, that's exactly what I needed to know!
William proposed me to handle the
On Thu, May 28, 2020 at 03:39:50PM +0500, Илья Шипицин wrote:
> anyway, I can install for example openssl-1.1.0 without APLN support.
> version is not very good indicator (and we try to
> use features in ifdef wherever possible)
Also, some features in SSL could be enabled only by rebuilding
On Thu, May 28, 2020 at 02:26:50PM +0200, Willy Tarreau wrote:
> I'm seeing other benefits of adopting a feature-based model. One of
> them is that we could report them based not only on what was enabled,
> but the real usability status which involves haproxy, the system and
> the libraries. For
Le 27/05/2020 à 19:55, Willy Tarreau a écrit :
Hi Christopher,
On Wed, May 27, 2020 at 07:03:58PM +0200, Christopher Faulet wrote:
Here are patches to handle customizable 401/407 messages. In fact, only the
second patch is really meaningful. There is no change for the http-request
auth rule
On Thu, May 28, 2020 at 01:53:10AM +0500, Илья Шипицин wrote:
> Hello,
>
> let us skip new test on CentOS6
>
>
> Cheers,
> Ilya Shipitcin
> From 4585b4f3b3f6dcbef071b36e7a589cd89757818e Mon Sep 17 00:00:00 2001
> From: Ilya Shipitsin
> Date: Thu, 28 May 2020 01:50:57 +0500
> Subject: [PATCH]
Hi List,
I noticed a issue with 2.2-dev8-release and with 2.2-dev8-7867525 the
issue is still there that when a reload is 'requested' it fails to stop
the old worker.. The old worker shuts down most of its threads, but 1
thread starts running at 100% cpu usage of a core. Not sure yet 'when'
Pieter,
Am 29.05.20 um 00:45 schrieb PiBa-NL:
> I 'suspect' it has something to do with the healthchecks though... (and
> their refactoring as i think happened.?.)
This appears to be correct.
> Anyhow perhaps this is already enough for someone to take a closer look.?
> If more info is needed
Hi,
I have compiled haproxy of version2.2-dev8 using Cygwin, in order to use it as
a load balancer in Windows 10. I want to send a unique ID generated using the
frontend's "unique-id-format" within the PROXYv2 header. However, it reports an
error:
0 [main] haproxy 1076
21 matches
Mail list logo
