Re: Is it possible to capture the body of http responses?

Le 8/11/21 à 2:53 AM, Ryan Burn a écrit : I'm working on integrating HAProxy with traceable.ai 's security product. As part of the integration, we'd like to capture the contents of any http responses processed by HAProxy and send them to a service either via SPOA or an

Re: I just broke opentracing :-(

Hello Willy, On 09/09/2021 08:43 AM, Willy Tarreau wrote: Yes, that's where I found it but didn't know what its use was. A few points however: - sess.ot.uuid will be shared by all requests on the same session, which is probably not what you want (e.g. for requests coming in H2, the

Re: I just broke opentracing :-(

Hi Miroslav, On Wed, Sep 08, 2021 at 08:02:35PM +0200, Miroslav Zagorac wrote: > On 09/08/2021 07:57 PM, Miroslav Zagorac wrote: > > On 09/08/2021 07:42 PM, Willy Tarreau wrote: > > > No rush on this one, I'll let you think about it, just let me know if we > > > need to temporarily disable it

Re: [ANNOUNCE] HTX vulnerability from 2.0 to 2.5-dev

Hi, is HAProxy 2.0.x with "no option http-use-htx" also affected by this vulnerability? Best regards / Mit freundlichen Grüßen Bjoern Am Di., 7. Sept. 2021 um 17:30 Uhr schrieb Willy Tarreau : > Hi everyone, > > Right after the previous announce of HTTP/2 vulnerabilities, a group > of security

Re: [ANNOUNCE] HTX vulnerability from 2.0 to 2.5-dev

Hi Bjoern, On Thu, Sep 09, 2021 at 08:18:24PM +0200, bjun...@gmail.com wrote: > Hi, > > is HAProxy 2.0.x with "no option http-use-htx" also affected by > this vulnerability? No it's not. I thought I mentioned it but it's possible that I forgot it in the end. Regards, Willy