Hello folks!
I am happy to announce that the new development version of
ngx_openresty, 1.4.1.3, is now released:
http://openresty.org/#Download
Special thanks go to all our contributors and users for helping make
this release happen!
Below is the complete change log for this release, as com
On Aug 7, 2013, at 1:48 , Jonathan Vanasco wrote:
> are there any official recommendations from nginx to safeguard against the
> BREACH exploit ?
>
> http://breachattack.com/
>
> http://arstechnica.com/security/2013/08/gone-in-30-seconds-new-attack-plucks-secrets-from-https-protected-pages/
"g
Hello!
On Tue, Aug 6, 2013 at 2:54 PM, Alex Flex wrote:
> to poll for stats regarding the amount of connections/requests sent to
> backend servers. Id like to know if there is creative way I can do this
> without parsing the logs ?
This is a trivial task if you write a simple tool based on system
On Tue, Aug 06, 2013 at 03:55:26PM -0600, Alex Flex wrote:
Hi there,
> Iam wondering if there is any way to add a custom header/footer to the
> output of the STATUS page?
>
> location /status { stub_status on; }
Can whatever will read this extra information, read it from a http
header? add_hea
On 06.08.2013 13:31, Richard Kearsley wrote:
On 06/08/13 04:02, Dennis Jacobfeuerborn wrote:
Since I determine the reason for the denied access in lua a way to do
it there would also help. I already tried "nginx.status = 403"
followed by a "nginx.exec('/reason1')" but while the right page is
di
Hello !
Iam wondering if there is any way to add a custom header/footer to the
output of the STATUS page?
location /status { stub_status on; }
I tried a couple of thigns but for some reason apparently it got ignored.
Alex
___
nginx mailing list
Hello Nginx
I understand that nginx when uses as a reverse proxy does not allow me
to poll for stats regarding the amount of connections/requests sent to
backend servers. Id like to know if there is creative way I can do this
without parsing the logs ? I want to do this almost as a live feed and
are there any official recommendations from nginx to safeguard against the
BREACH exploit ?
http://breachattack.com/
http://arstechnica.com/security/2013/08/gone-in-30-seconds-new-attack-plucks-secrets-from-https-protected-pages/
___
nginx mailing li
On Tue, Aug 06, 2013 at 04:07:48PM +0200, Greg wrote:
Hi there,
> this configuration does not work as expected :
In what way does it fail for you?
When I "allow 127.0.0.3/32", I am challenged http 401 for "curl -i
http://127.0.0.1/normal/ok";, but get the file content from both "curl
-i http://
Hello, Thank you both for your answer.
I did read the page http://nginx.org/en/docs/ngx_core_module.html#include but I
sometimes get confused how to put things in order exactly.
I removed the root stanza in the location block.
As for fastcgi_params I already have the line
fastcgi_param SCRIPT_
I was wondering if there is a way in Nginx to force a client to close the
connection (or modify the keepalive parameters) when a proxied server
returns a particular error response. To elaborate a bit, if I have Nginx as
a proxy in front of a backend server, can Nginx be made to change its keep
aliv
Rangel, Raul wrote in post #1117896:
> The first one was I used -v /var/lib/nginx to create a volume which bind
> mounted a zfs directory inside my container. This worked correctly.
I was about to suggest that as a workaround.
I'm glad that it worked!
> The second was I created an ext4 partition
Le 06/08/2013 16:50, Reinis Rozitis a écrit :
>> this configuration does not work as expected :
>> server {
>>satisfy any;
>
> If that is all your configuration (no extra location blocks) then just
> include the rules inside location / {} like:
>
>
True, but I can't do that as "location / {}"
Document sans nom> True, but I can't do that as "location / {}" is in a
common config included by many other vhosts.
Then to clarify - you want to deny the access to all the "other vhosts" or
just one?
If one - per http://nginx.org/en/docs/http/server_names.html you can leave
the current con
So I tried two different things.
The first one was I used -v /var/lib/nginx to create a volume which bind
mounted a zfs directory inside my container. This worked correctly.
The second was I created an ext4 partition and used docker -g to set the graph
path. When I tried my test again it worked
this configuration does not work as expected :
server {
satisfy any;
If that is all your configuration (no extra location blocks) then just
include the rules inside location / {} like:
server {
location / {
satisfy any;
auth_basic "DING DING
On 6 Aug 2013 15:35, "Greg" wrote:
>
> It match evrything that _starts_ with /allowed/ , right ?
Yes it does; I had a brain-fart.
Personally I omit the ^~ unless I have a situation that definitely requires
it, as it's clearer without it IMHO. YMMV.
J
Le 06/08/2013 16:22, Jonathan Matthews a écrit :
> Just checking you're aware that this only matches "/allowed/" by
> itself and nothing below it.
>
> Is that what you meant? Is that what you're testing?
>
>
It match evrything that _starts_ with /allowed/ , right ?
--
Greg
Document sans nom
On 6 Aug 2013 15:08, "Greg" wrote:
>
> Hi,
>
> this configuration does not work as expected :
>
> server {
> satisfy any;
> auth_basic "DING DING SONG";
> auth_basic_user_file /etc/apache2/htpasswd;
> allow from CIDR;
> allow from CIDR;
> allow from CIDR;
> allow from C
Hi,
this configuration does not work as expected :
server {
satisfy any;
auth_basic "DING DING SONG";
auth_basic_user_file /etc/apache2/htpasswd;
allow from CIDR;
allow from CIDR;
allow from CIDR;
allow from CIDR;
location ^~ /allowed/ {
allow all;
}
On 06/08/13 04:02, Dennis Jacobfeuerborn wrote:
Since I determine the reason for the denied access in lua a way to do
it there would also help. I already tried "nginx.status = 403"
followed by a "nginx.exec('/reason1')" but while the right page is
display the status code returned gets reset to
On 06.08.2013 08:29, mex wrote:
let your app handle and deliver error-pages
See basically all I want to do is return a single static html file and
having to set up php/python/etc. just to serve this file seems like
overkill to me. This is pretty much the most simple case for a web
server to
Hi,
I am trying to do a PUT via CURL and below is a glimpse of the request:
[root@flex-c1 ~]# curl -o /dev/null -w "Connect:%{time_connect}\nTransfer
Start:%{time_starttransfer}\nTotal Time:%{time_total}\n" -X PUT
--data-binary @output.dat -qvk http://x.x.x.x:80/nginx/output.dat
* Connected to
--- Original message ---
From: "Mik J"
Date: 6 August 2013, 00:44:37
> Hello,
>
>
>
>
>
>
> I plan to configure my nginx server with a couple of vhosts.
>
> For each of them I want:
>
> - to use php
>
> - deny access begining by a dot
>
> - not logging access to favicon
>
>
>
>
essence of the other tow ansers:
http://dgtool.blogspot.de/2013/02/nginx-as-sticky-balancer-for-ha-using.html
you might want to google "nginx sticky sessions"
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,241556,241627#msg-241627
___
nginx
25 matches
Mail list logo