:
http://www.zeitoun.net/articles/client-certificate-x509-authentication-behind-reverse-proxy/start
Eldar
On Tue, Apr 26, 2011 at 11:27 AM, Dirk-Willem van Gulik
dirk-willem.van.gu...@bbc.co.uk wrote:
On 25 Apr 2011, at 19:47, Kirill Shileev wrote:
Recently, playing with libcloud against
On 3 May 2011, at 03:29, Todd Willey wrote:
We should be able to do it with a wsgi middleware and either include
it or not in the paste config file. In a heavily load-balanced
environment you'll probably want to terminate SSL before it gets
proxied to the actual api servers,
Agreed. And
On 3 May 2011, at 10:31, Soren Hansen wrote:
2011/5/3 Todd Willey t...@ansolabs.com:
In a heavily load-balanced environment you'll probably want to terminate SSL
before it gets
proxied to the actual api servers,
Why is that? It seems like a win to distribute as much processing as
On 3 May 2011, at 13:30, Todd Willey wrote:
On Tue, May 3, 2011 at 5:39 AM, Dirk-Willem van Gulik
dirk-willem.van.gu...@bbc.co.uk wrote:
On 3 May 2011, at 10:31, Soren Hansen wrote:
2011/5/3 Todd Willey t...@ansolabs.com:
In a heavily load-balanced environment you'll probably want
On 3 May 2011, at 18:49, Richard Hartmann wrote:
On Tue, May 3, 2011 at 08:09, Dirk-Willem van Gulik
dirk-willem.van.gu...@bbc.co.uk wrote:
a) Make SSL only the default (ideally with client cert on as well).
Sounds good to me.
b) Postulate that one port lower
On 25 Apr 2011, at 19:47, Kirill Shileev wrote:
Recently, playing with libcloud against a private openstack installation
we realized that 8773 and 8774 ports listened by openstack-nova-api expect
plain HTTP.
This is something that is rarely allowed in production installations.
.
6 matches
Mail list logo