Am Mittwoch, den 25.07.2012, 23:49 +0200 schrieb Kristian Fiskerstrand:
On 2012-07-25 23:15, Phil Benchoff wrote:
sks-keyservers.net has not detected our proxy. I'm pretty sure our server
sends back the Server header from the SKS keyserver on reverse-proxied
requests. Is that what
Am Donnerstag, den 26.07.2012, 13:41 +0200 schrieb Kristian
Fiskerstrand:
On 2012-07-26 08:54, Stephan Seitz wrote:
Am Mittwoch, den 25.07.2012, 23:49 +0200 schrieb Kristian Fiskerstrand:
On 2012-07-25 23:15, Phil Benchoff wrote:
sks-keyservers.net has not detected our proxy.
On Thu, Jul 26, 2012 at 02:04:23PM +0200, Stephan Seitz wrote:
Am Donnerstag, den 26.07.2012, 13:41 +0200 schrieb Kristian
Fiskerstrand:
On 2012-07-26 08:54, Stephan Seitz wrote:
Am Mittwoch, den 25.07.2012, 23:49 +0200 schrieb Kristian Fiskerstrand:
On 2012-07-25 23:15, Phil
On 2012-07-26 15:07, Phil Benchoff wrote:
On Thu, Jul 26, 2012 at 02:04:23PM +0200, Stephan Seitz wrote:
...
Could the script be modified to detect the Via: header as well as what it
does now?
That is a fair request, I've added detection for this and accepted that
as a revprox
On 2012-07-26 15:40, Phil Benchoff wrote:
Pulling this out of the thread about keyserver.cns.vt.edu:
Nginx can set a Via: header in http responses:
add_header Via 1.1 keyserver.example.com;
http://wiki.nginx.org/HttpHeadersModule#add_header
(Note that it only adds the header on
On 07/26/2012 10:40 AM, Kristian Fiskerstrand wrote:
add_header Via 1.1 keys.kfwebs.net;
I've added a similar directive to the nginx configuration on
zimmermann.mayfirst.org.
--dkg
signature.asc
Description: OpenPGP digital signature
___
Am Donnerstag, den 26.07.2012, 10:57 -0400 schrieb Daniel Kahn Gillmor:
On 07/26/2012 08:04 AM, Stephan Seitz wrote:
I don't want to sound like a nitpicker, but RFC 2068 / 14.44 Via
clearly says:
the modern reference is probably:
https://tools.ietf.org/html/rfc2616#section-14.45
Hi,
On Thu, Jul 26, 2012 at 12:55:48PM -0500, John Clizbe wrote:
I'm trying to get the headers to work correctly for Apache 2.4. I have Apache
listening on ports 80 11371. SKS is on port 11372
The vhost in httpd.conf is
VirtualHost *:11371
ServerName keyserver.gingerbear.net
On 2012-07-26 19:55, John Clizbe wrote:
I'm trying to get the headers to work correctly for Apache 2.4. I have Apache
listening on ports 80 11371. SKS is on port 11372
...
Is there a way to get the proxied Server: header changed from sks-www?
Try adding: Header set Server Apache to
Hi there,
I'm going to create weekly or daily (currently undecided) dumps of the
sks-db.
If I'ld offer that dumps for download, is there some best-practice how
the URL
should look like and how to offer them?
Putting plain sks-dump-*.pgp would be a huge waste of bandwidth. Is some
type
of
By using bzip2 -9 on single pgp files, the savings are
an average 17%. Each 24MB is shrinked to appx. 20MB.
Even if the saving currently sums up to ~800MB (4,8G vs. ~4G),
I had higher expectations on that.
Am Donnerstag, den 26.07.2012, 14:06 -0700 schrieb Chris Kuethe:
last time, i set up two
Stephan Seitz wrote:
Hi there,
I'm going to create weekly or daily (currently undecided) dumps of the
sks-db.
There really is not enough churn to justify a daily dump
If I'ld offer that dumps for download, is there some best-practice how
the URL should look like and how to offer them?
hey folks--
it looks like the sks recon process on zimmermann.mayfirst.org
(a.k.a. keys.mayfirst.org) stopped about 10 days ago:
2012-07-16 05:28:34 Raising Sys.Break -- PTree may be corrupted:
Bdb.DBError(unable to allocate memory for mutex; resize mutex region)
yuck.
After stopping sks, I
On Jul 26, 2012, at 11:10 PM, Daniel Kahn Gillmor d...@fifthhorseman.net
wrote:
hey folks--
it looks like the sks recon process on zimmermann.mayfirst.org
(a.k.a. keys.mayfirst.org) stopped about 10 days ago:
2012-07-16 05:28:34 Raising Sys.Break -- PTree may be corrupted:
On 2012-07-26 at 09:40 -0400, Phil Benchoff wrote:
server {
listen ...
root /your/keyserver/web;
location /pks {
proxy_pass http://localhost:11371/pks;
add_header Via 1.1 keyserver.example.com;
}
}
I don't have a good setup to fully test this config, but at
Daniel Kahn Gillmor wrote:
hey folks--
it looks like the sks recon process on zimmermann.mayfirst.org
(a.k.a. keys.mayfirst.org) stopped about 10 days ago:
2012-07-16 05:28:34 Raising Sys.Break -- PTree may be corrupted:
Bdb.DBError(unable to allocate memory for mutex; resize mutex
On 07/27/2012 12:03 AM, Jeffrey Johnson wrote:
Running dbXY_stat -CA (for all status: -Cl is usually all that is needed)
will display hung deadlocks.
hm, what i'm seeing is that db4.8_stat -CA hangs itself, within a
similar futex call:
0 zimmermann:~# strace -p $(pidof db4.8_stat)
Process
Hi John--
thanks for the followup!
On 07/27/2012 12:59 AM, John Clizbe wrote:
echo KDB --
cd KDB
sudo db53_recover -ev
sudo db53_checkpoint -1
sudo db53_archive -dv
sudo db53_recover -ev
cd ..
echo PTree --
cd PTree
sudo db53_recover -ev
sudo db53_checkpoint -1
sudo db53_archive
18 matches
Mail list logo
