Package: python3-minimal
Version: 3.11.1-1
Severity: normal
X-Debbugs-Cc: r...@rfmoz.eu
Dear Maintainer,
The execution of apt installs the full python package:
# apt install python3-minimal
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
The follo
Please, check related bug on
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004710
Only to point that adduser is the recommended way to handle accounts in
maintainer scripts [1] and Debian Code Search reports 267 packages using
it [2], but dh_sysusers [3] seems to handle the same task on the
packages and works with useradd under the hood too.
[1] - https://wiki.debian.org/A
Package: adduser
Version: 3.118
Followup-For: Bug #1004710
X-Debbugs-Cc: rfra...@rfraile.eu
Dear Maintainer,
I think that I received a warning related to this issue. This is the related
information:
* What led up to the situation?
Installing tuptime package
* What exactly did you do (or
Hello,
I'm testing this behaviour with 2.2.3-0e58a34 with the line
"http-request del-header x- -m beg" but it reports an error:
[ALERT] 264/110329 (5812) : parsing [/etc/haproxy//haproxy.cfg:91]:
'http-request del-header' expects either 'if' or 'unless' followed by a
condition but found '-
For example, to start a new transaction, as the documentation [1]
points:
version / required
Configuration version on which to work on
Or the blog post about it [2]:
Call the /v1/services/haproxy/transactions endpoint to create a new
transaction. This requires a version parameter in the URL,
Hello,
Getting the file version seems to be one of the first things to do at
the beginning of using the API, but I can't find an easy and clear way
to get it.
It seems extrange that that thing doesn't have a target url to get it.
Maybe I'm wrong, but I get it with the raw output:
# curl --
Hello Willy,
Following your suggestions, I've been testing the "debug" solution (in a
2.2 HAproxy) with this sample conf:
http-request use-service prometheus-exporter if { path,debug(buf0) -m
beg /metrics }
seeing from the socket the entries registered on buf0:
# echo "show events b
Hello,
On a complex configuration with multiples ACLs, is there a way to debug
what of them are applied over a request?
Is it possible to append the unique id of the ACLs to the line on the
log?
Thanks,
El 2020-05-23 15:48, Baptiste escribió:
On Thu, May 21, 2020 at 11:47 AM Ricardo Fraile
wrote:
Hello,
I'm fancing an extrange behaviour with DNS resolution and
timeout/hold
times. As testing enviroment, I use Haproxy 1.8.25 and this sample
conf:
global
master-worker
log /dev/log local5
Hello,
I'm fancing an extrange behaviour with DNS resolution and timeout/hold
times. As testing enviroment, I use Haproxy 1.8.25 and this sample conf:
global
master-worker
log /dev/log local5 info
pidfile /var/run/haproxy.pid
nbproc 1
resolvers dns
nam
Perfect, that solves the domain setting workaround. Thanks Jason!
El 2020-05-11 08:25, Jason A. Donenfeld escribió:
Your wish is my command:
https://lists.zx2c4.com/pipermail/wireguard/2020-May/005415.html
DNS=8.8.8.8,8.8.4.4,mycorp.net
Hello,
+1 for this feature
I have some rspidel and rspirep waiting to be migrated to 2.2 when this
feature will be available.
Thanks,
El vie, 14-02-2020 a las 09:59 +0100, Willy Tarreau escribió:
> Hi James,
>
> On Fri, Jan 31, 2020 at 12:44:24PM -0800, James Brown wrote:
> > So how should
Thanks for the feedback.
As I'll use it with this patch and maybe it can solve the issue to
anyone in the future, I share it on Github:
https://github.com/rfrail3/misc/tree/master/wg-quick
Regards,
P.D: Congrats about the upstream sync!
El 2020-01-28 13:52, Nico Schottelius escribió:
Hello,
This patch allows wg-quick to pass the search domain to resolvconf with
the option 'DNSSearch=' as it already does with the 'DNS=' option. As an
example:
[Interface]
...
DNSSearch = lan1.example.com, lan2.example.com
...
This was discussed previously a few times:
https://lists.zx2c4
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 01 Jan 2020 17:03:00 +0100
Source: tuptime
Architecture: source
Version: 4.1.0
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Changes:
tuptime (4.1.0) unstable; urgency=low
I can reproduce the issue, this is the client ouput:
Connecting to ftp.x (1.1.1.1) port 21
<--- 220
---> FEAT
<--- 211-Features:
<--- AUTH SSL
<--- AUTH TLS
<--- EPRT
<--- EPSV
<--- MDTM
<--- PASV
<--- PBSZ
<--- PROT
<--- REST STREAM
<--- SIZE
<--- TVFS
<--- 211 End
---> AUTH TLS
<--- 2
Hello,
I've been facing an issue related a malformed request sended from an
external client, the line that the HAproxy register was like this:
Dec 4 07:15:30 balancer haproxy[22482]: 1.1.1.1:35546
[04/Dec/2019:07:15:29.221] proxy-1~ proxy-1/ -1/-1/-1/-1/1096
400 5210 - - CR-- 41/12/0/0/0 0/0 {|
El lun, 16-09-2019 a las 11:13 +0200, Matthias Apitz escribió:
> Hello,
>
> At work I have to access from my virtual machine running FreeBSD the
> files system of the Windows 7 host (please, be patient and don't
> blame
> me). For this I mostly use smbclient like:
>
> $ smbclient //APITZM-LTOH/ap
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Sun, 28 Jul 2019 20:12:00 +0100
Source: tuptime
Architecture: source
Version: 4.0.0
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Changes:
tuptime (4.0.0) unstable; urgency=low
Hello,
On Wed, 2019-07-10 at 16:09 +0200, Lukas Tribus wrote:
> Hello Ricardo,
>
>
> On Wed, 10 Jul 2019 at 15:38, Ricardo Fraile
> wrote:
> > Hello,
> >
> >
> > I have multiple backends and some of them share the same acl for
> > the
> >
Hello,
I have multiple backends and some of them share the same acl for the
static content, as example:
backend back-1
acl no-cookie path_end .gif .jpg .png (+15 more)
ignore-persist if no-cookie
...
backend back-2
acl no-cookie path_end .gif .jpg .png (+15 more)
ignore-per
Hello,
I'm trying to set an acl for multiple status codes. As example, using
only for one works:
http-response set-header Cache-Control max-age=60 if { status 302 }
but with more than one, trying with a regex, fails because it is not
implemented in httpr-response:
http-response set-header
Hi Paul,
El 2019-05-20 10:46, Paul de Weerd escribió:
| However, library_aslr delays the boot sequence (because libraries must
| be completed before the system can boot up) while kernel_aslr does not
| - it only introduces a bit of extra load on your machine. What
| problem are you trying to sol
Hi all,
As exists the variable "library_aslr" to disable library randomization
on rc, it would be helpful to have the same option for the kernel. Here
is the patch to add the "kernel_aslr" swich.
Regards,
Ricardo F.
diff --git etc/rc etc/rc
index 9a3917986cc..df2abbaa652 100644
--- etc/rc
+
Setting the following line on systemd-user file stops the issue:
echo '@include null' >> /etc/pam.d/systemd-user
Someone knows why including an inexistent file can change the behaviour?
Thanks,
The /tmp dir is mounted on / with ext4 as the installation process did.
The output of mount is:
# mount
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs
(rw,nosuid,relatime,size=489384k,nr_inodes=1223
Package: libpam-modules
Version: 1.1.8-3.6
Severity: important
Dear Maintainer,
In a Debian 9.8 installed only with ssh-server and standard system utilities
under VMware with 2 cpu and 1Gb of ram.
# ssh-keygen
# cd .ssh
# cat * >> authorized_keys
# vi /etc/ssh/sshd_config
#PermitRootLogin pr
Hello,
I'm trying to find the meaning of the excuses that are exposed on the
excuse page, as example, with lintian [1]:
Too young, only 8 of 10 days old
Piuparts tested OK -
https://piuparts.debian.org/sid/source/l/lintian.html
Required age reduced by 0 days because of autopkgtest
Checking
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 20 Feb 2019 17:02:00 +0100
Source: tuptime
Architecture: source
Version: 3.5.0
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Changes:
tuptime (3.5.0) unstable; urgency=low
Ricardo Fraile added the comment:
@vstinner here you have rfra...@rfraile.eu :)
--
___
Python tracker
<https://bugs.python.org/issue35716>
___
___
Python-bug
New submission from Ricardo Fraile :
Add macOS to CLOCK_MONOTONIC_RAW description because it is already available
since 10.12.
--
assignee: docs@python
components: Documentation
files: 001.patch
keywords: patch
messages: 333445
nosy: docs@python, rfrail3, vstinner
priority: normal
Ricardo Fraile added the comment:
Impressive response time, thanks team!
--
___
Python tracker
<https://bugs.python.org/issue35702>
___
___
Python-bugs-list m
Hello,
It would be nice to have the solution proposed by Javier
Fernandez-Sanguino Peña on #36.
If the cron is running frequently, it can generate a lot of messages. As
example, on systems with limited resources, those messages can be can be
worthless.
In the case that the current behavio
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Fri, 07 Dec 2018 15:48:00 +0100
Source: tuptime
Binary: tuptime
Architecture: source
Version: 3.4.2
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime- report
Hi Axel,
Great to reat that the issue has been solved.
I just update it upstream with the "Architecture: all". As the
documentation points [1], it takes more sense, you are right.
Thanks,
[1] -
https://www.debian.org/doc/debian-policy/ch-controlfields.html#architecture
Hi Axel,
Great to reat that the issue has been solved.
I just update it upstream with the "Architecture: all". As the
documentation points [1], it takes more sense, you are right.
Thanks,
[1] -
https://www.debian.org/doc/debian-policy/ch-controlfields.html#architecture
Hi Axel,
I have the fix committed on the repo but before update it to Debian, if
possible, I would like that you test it before.
I attached the .deb file to this mail. If you want to build it, these
are the steps that you need to do:
git clone -b dev https://github.com/rfrail3/tuptime.git
Hi Axel,
I have the fix committed on the repo but before update it to Debian, if
possible, I would like that you test it before.
I attached the .deb file to this mail. If you want to build it, these
are the steps that you need to do:
git clone -b dev https://github.com/rfrail3/tuptime.git
Hi,
I tested an upgrade from 3.4.0 to 3.4.1 on a fresh install of Sid and it
doesn't report any issue.
What is the output of "ls -al /var/lib/tuptime"?
Did you reboot the computer between the 3.4.0 installation and the
upgrade?
Please, can you add here the output of 'su -s /bin/sh tuptime
Hi,
I tested an upgrade from 3.4.0 to 3.4.1 on a fresh install of Sid and it
doesn't report any issue.
What is the output of "ls -al /var/lib/tuptime"?
Did you reboot the computer between the 3.4.0 installation and the
upgrade?
Please, can you add here the output of 'su -s /bin/sh tuptime
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Fri, 23 Nov 2018 21:16:00 +0100
Source: tuptime
Binary: tuptime
Architecture: source amd64
Version: 3.4.1
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime- report
Hello Xiscu,
Maybe "uptimed" fits better for you. It have a daemon that records
statistics about a machine's uptime, consequently, under suspend and
hibernate, the daemon doesn't run. Try their behaviour and see...
Thanks,
Hello Xiscu,
The only reference nowadays inside the kernel for the uptime is the
efective "uptime" variable accesible through /proc/uptime, it have the
following definition:
uptime Wall clock since boot, combined idle time of all cpus
To cover your use case, at least, is needed an other varia
Hi Xiscu,
Tuptime can't achieve that behaviour, is not possible.
Thanks,
Hello,
What is the difference between using one of the following rules instead
of the other?
I think that rspdel is the historic way to do, but maybe it have other
implications.
rspdel ^Server.*
or
http-response del-header Server
Thanks,
Hello Xiscu,
The design of Tuptime is dependent of the information that the kernel
report in the uptime and btime counters from /proc/uptime and /proc/stat
respectively.
Both (documented under Documentation/filesystems/proc.txt) are related
with the boot time date and none of them are reset
El vie, 05-10-2018 a las 11:38 +0200, Jerome Magnin escribió:
> Hello,
>
> On Fri, Oct 05, 2018 at 10:46:20AM +0200, Ricardo Fraile wrote:
> > Hello,
> >
> >
> > I have tested that some types of acls can't be combined, as example:
> >
>
Hello,
I have tested that some types of acls can't be combined, as example:
Server 192.138.1.1, acl with combined rules:
acl rule1 hdr_dom(host) -i test.com
acl rule1 src 192.168.1.2/24
redirect prefix https://yes.com code 301 if rule1
redirect prefix https://no
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Sun, 23 Sep 2018 13:40:00 +0200
Source: tuptime
Binary: tuptime
Architecture: source
Version: 3.4.0
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime- report
Sorry, I send a typo, the first "Test info" report have the "date.timezone"
wrong, it really is "Europe/Madrid":
Test info:
# php -i | grep -i -E 'timezone|timelib|time support'
date/time support => enabled
timelib version => 2016.02
"Olson" Timezone Database Version => 0.system
Timezone Database
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 03 Jan 2018 23:56:00 +0200
Source: tuptime
Binary: tuptime
Architecture: source amd64
Version: 3.3.3
Distribution: unstable
Urgency: low
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime- report
Hi Terry,
Thank you for the detailed report, it helps me to figure it out where
was the issue plus the help of the service
"https://codesearch.debian.net";.
As you correctly said, when the "su -" is executed, the scripts located
in the directory /etc/profile.d/ are executed too because it creat
Hi Terry,
I think that the problem is because the user tuptime have the shell
"/bin/sh" and the script spect an execution from "/bin/bash". Using "su
-" prevent any herietage from the execution user, in this case "root",
and normally, this user have the bash shell assigned.
I tried to find
e: Willy Tarreau
Enviado: viernes, 22 de diciembre de 2017 18:57
Para: Ricardo Fraile
Cc: haproxy@formilux.org
Asunto: Re: Issue after upgrade from 1.7 to 1.8 related with active sessions
Hi Ricardo,
On Fri, Dec 22, 2017 at 12:37:42PM +0100, Ricardo Fraile wrote:
> Continuing with the in
AF_LOCAL, sun_path="/dev/log"},
msg_iov(8)=[{"<174>Dec 22 12:09:45 ", 21}, {"haproxy", 7}, {"[", 1},
{"10408", 5}, {"]: ", 3}, {"", 0}, {"192.168.1.117:35835
[22/Dec/2017"..., 129}, {"\n", 1}], msg_controllen=0, m
ll take the time to anonymize and
share.
Thanks,
El mié, 20-12-2017 a las 18:19 +0100, Willy Tarreau escribió:
> Hello Ricardo,
>
> On Wed, Dec 20, 2017 at 05:00:33PM +0100, Ricardo Fraile wrote:
> > Hello,
> >
> > After upgrade from 1.7.4 to 1.8.1, basically wit
Hello,
After upgrade from 1.7.4 to 1.8.1, basically with the end of mail conf
snippet, the sessions started to grow, as example:
1.7.4:
Active sessions: ~161
Active sessions rate: ~425
1.8.1:
Active sessions: ~6700
Active sessions rate: ~350
Looking into the linux (3.16.7) server, there are a
Hi Haproxy Team,
If I'm not wrong, with the previous versions, the stats was separated in
each process if the nproc > 1 was used. But what is the state now in 1.8
if the "master-worker" configuration is used?
In the following configuration snippet, the socket is bounded to process
1, but have it
Hi,
It's interesting to have in the section "4. Stopping and restarting
HAProxy" in the management.txt document some information related to the
behaviour of the stats when a restart is done.
As suggestion, here is my patch.
Thanks,
Ricardo F.
diff --git a/doc/management.txt b/doc/management.t
Package: dh-sysuser
Followup-For: Bug #848240
Dear Maintainer,
I fell into this bug report because I was looking the same aspects as the
requested by the original reporter.
Please, reconsider the recommendations as far as possible, it would be helpfull.
Thanks,
Hi,
The tuptime package have a cron file in it and I am thinking on replace
it with a systemd timer unit.
In the Debian Policy there are only references to cron, the same as in
the Developers Reference Guide and Maintainer Guide.
I like some aspects of the .timer, but I don't know if the chan
Hi,
The files under "linux-source-4.9/debian/tmp/DEBIAN/" are created by the
content of the file "linux-source-4.9/scripts/package/builddeb"
Particulary, starting from the line 193:
# Install the maintainer scripts
# Note: hook scripts under /etc/kernel are also executed by official
Debian
#
Hi,
The files under "linux-source-4.9/debian/tmp/DEBIAN/" are created by the
content of the file "linux-source-4.9/scripts/package/builddeb"
Particulary, starting from the line 193:
# Install the maintainer scripts
# Note: hook scripts under /etc/kernel are also executed by official
Debian
#
I'm checking that the last kernel from the repo [1] have the postinst
different than the package done by the "make deb-pkg". I attached both.
I think that the file located under
"linux-source-4.9/debian/tmp/DEBIAN/postinst" must have the logic for
manage linux-update-symlinks like the original pa
I'm checking that the last kernel from the repo [1] have the postinst
different than the package done by the "make deb-pkg". I attached both.
I think that the file located under
"linux-source-4.9/debian/tmp/DEBIAN/postinst" must have the logic for
manage linux-update-symlinks like the original pa
Package: src:linux
Version: 4.9.30-2+deb9u1
Severity: normal
Dear Maintainer,
After building and installing a new kernel following the Debian way, the
symlinks /vmlinuz and /initrd.img are not updated to point to the last
kernel files.
>From a base Debian 9 netinstall installation:
apt-get ins
Package: src:linux
Version: 4.9.30-2+deb9u1
Severity: normal
Dear Maintainer,
After building and installing a new kernel following the Debian way, the
symlinks /vmlinuz and /initrd.img are not updated to point to the last
kernel files.
>From a base Debian 9 netinstall installation:
apt-get ins
Hello,
I fallen into a similar requirement to the commented in these mails a
few years ago. As the right solution still is the use of any alternative
workaround, I add my 2 cents to the already been said.
For deny rules, the normal solution is:
frontend
acl rule_user-agent hdr
Hello,
Taking as starting point the following rate limit sticky table, in which
the requests are tracked by the "X-Client-IP" header and have an acl to
limit if there are more than 250 in 1 second:
stick-table type ip size 1m expire 1h store gpc0,http_req_rate(1s)
http-request track-sc0 req.h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Mon, 16 Jan 2017 19:48:27 -0200
Source: tuptime
Binary: tuptime
Architecture: source amd64
Version: 3.3.1
Distribution: unstable
Urgency: medium
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime
e behaviour that the
"-f" option provides.
Thanks in advance,
Regards,
From a4d0ea299144f5f2c5983b1335b8d89241f3c0ec Mon Sep 17 00:00:00 2001
From: Ricardo Fraile
Date: Thu, 12 Jan 2017 12:29:44 +0100
Subject: [PATCH] MINOR: systemd unit works with cfgdir and cfgfile
---
contrib/
Package: curl
Version: 7.51.0-1
Followup-For: Bug #834724
Dear Maintainer,
As Tim Small said in a previous message, removing libgnutls-deb0-28 solve the
problem.
Note: I have installed curl 7.51.0-1 in jessie from stretch package swiching
the repos from stable to testing without problem.
--
oxy -Ds -p /run/haproxy.pid
-- /etc/haproxy/haproxy.conf /etc/haproxy/z.conf /etc/haproxy/zz.conf
Thanks,
El mar, 13-12-2016 a las 11:56 -0500, Patrick Hemmer escribió:
> On 2016/12/13 11:14, Ricardo Fraile wrote:
> > Hello Jarno,
> >
> >
> > Yes, you are right,
Jarno Huuskonen escribió:
> Hi Ricardo,
>
> On Mon, Dec 12, Ricardo Fraile wrote:
> > Yes, shell expansion did the trick, this is the working systemd unit:
> >
> >
> > [Unit]
> > Description=HAProxy Load Balancer
> > After=network.target
> >
&g
ONF[@]/#/-f }
Thanks,
El lun, 12-12-2016 a las 16:28 +0200, Jarno Huuskonen escribió:
> Hi,
>
> On Mon, Dec 12, Ricardo Fraile wrote:
> > But the systemd execution is still a issue with the following unit:
> >
> > [Unit]
> > Description=HAProxy Load Balanc
at 11:55:44AM +, Ricardo Fraile wrote:
> > Hello,
> >
> > Finally I found a workaround. Generate a list with all the configuration
> > files with a script in a ExecStartPre unit option, load the list into a
> > enviroment variable and pass them to the haproxy
rt=/usr/local/sbin/haproxy-systemd-wrapper -p /run/haproxy.pid $CONF
ExecReload=/bin/kill -USR2 $MAINPID
KillMode=mixed
Restart=always
[Install]
WantedBy=multi-user.target
4.- Refresh systemd and run it:
systemctl daemon-reload
systemctl restart haproxy.service
I hope that this help to someone.
Reg
Hello,
I'm trying to use the "--" option for load multiple files in a systemd
unit, using the following file:
[Unit]
Description=HAProxy Load Balancer
After=network.target
[Service]
ExecStartPre=/usr/local/sbin/haproxy -c -q -- /etc/haproxy/*
ExecStart=/usr/local/sbin/haproxy-systemd-wrapper -
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Tue, 19 Apr 2016 17:09:27 -0200
Source: tuptime
Binary: tuptime
Architecture: source amd64
Version: 3.3.0-2
Distribution: unstable
Urgency: medium
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime
n't know if any
other options defined in journald.conf can mitigate it.
Maybe this message can help another with this issue.
Thanks,
El lun, 09-05-2016 a las 22:02 +0300, Andrei Borzenkov escribió:
> 09.05.2016 18:21, Ricardo Fraile пишет:
> > Hello,
> >
> >
>
Hello,
With the following configuration in "/etc/systemd/journald.conf":
[Journal]
Seal=no
SplitMode=none
SyncIntervalSec=5m
RateLimitInterval=0
RateLimitBurst=0
ForwardToSyslog=no
SystemMaxUse=5G
SystemKeepFree=500M
RuntimeMaxUse=500M
RuntimeKeepFree=250M
The file "system.journal" located
Hello,
I want to keep more journald logs on "/run/log/journal", but the actual
size of the "/run" partition isn't enough.
Looking for a place for setting a new size value I fall into
"/usr/lib/tmpfiles.d" but the only reference of "/run" is a symlink from
"/var/run"...
Where is the place for se
Hello,
I try to limit the number of file descriptors using the variable
"LimitNOFILE" inside the following systemd unit:
[Unit]
Description=HAProxy Load Balancer
After=network.target
[Service]
ExecStartPre=/usr/local/sbin/haproxy -f /etc/haproxy/haproxy.cfg -c -q
ExecStart=/usr/local/sbin/hapr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Tue, 12 Apr 2016 08:59:27 -0400
Source: tuptime
Binary: tuptime
Architecture: source amd64
Version: 3.3.0-1
Distribution: unstable
Urgency: medium
Maintainer: Ricardo Fraile
Changed-By: Ricardo Fraile
Description:
tuptime
Hello,
When Haproxy is configured with persistence, delivering request along various
backends with something like:
...
cookie SERVER insert maxidle 60m maxlife 180m indirect
server web1 192.168.1.50:80 cookie A check inter 5s fastinter 1s downinter 1s
rise 2 fall 2
server web2 192.168.1.51:80
mit_x_user_id sc0_http_req_rate gt 1 # limit to one request per
>second / per user
>
>The acl to drop the connection is:
>
> http-request if { limit_x_user_id }
>
>KEYWORD can be:
>
> "tarpit" if you want to slow down this user
> "redirect" if y
Hello,
I'm interested on it too.
Thanks,
Derivates", and
i can't release a valid configuration working with it in my test.
¿Is i tpossible to do that, match the first characters of the track header?
¿any example conf with hdr_beg running in a tcp-request line?
Thanks,
____
De:
." in the same place of "10.0.0.0/8"
but nothing.
Thanks,
________
De: Baptiste
Para: Ricardo Fraile
CC: "haproxy@formilux.org"
Enviado: Sábado 8 de junio de 2013 8:40
Asunto: Re: Block clients based on header in real time?
Hi Ricardo,
Actu
Ok, I found this manual ( http://nfsen.sourceforge.net/#mozTocId652064 ) and
now i can create filters, but can i view the output of the filter in the graph?
Thanks,
De: Adrian Popa
Para: Ricardo Fraile
CC: "nfsen-discuss@lists.sourceforge.net"
Hello,
How can i know the upload and download traffic of a flow?. I only add this
lines in the configuration, and i can see the graphs, but I think that the flow
is upload and download, isn't it?:
%sources = (
'Dev1' => { 'port' => '3907', 'col' => '#287659', 'type' => 'sflow' }
)
ar is this message in the list:
http://comments.gmane.org/gmane.comp.web.haproxy/9938 but the problem is that
there the ip of the client is inside a header.
Thanks,
- Mensaje original -
De: Ricardo Fraile
Para: "haproxy@formilux.org"
CC:
Enviado: Jueves 30 de Mayo de 2013 12:
ks,
- Mensaje original -
De: Baptiste
Para: Ricardo Fraile
CC: "haproxy@formilux.org"
Enviado: Miércoles 29 de Mayo de 2013 14:51
Asunto: Re: Block clients based on header in real time?
Hi,
With latest HAProxy version, you could use a stick table and insert
IPs in the stick tabl
Hello,
I'm looking for a solution for blocking users based on a header,
x-forwarded-for. I have yet an acl for this but is it possible to update the
list of ips without restart haproxy?
Thanks,
Hello,
I did a nmap to my server and i watch the fingerprint, how can i disable
this output?
443/tcp open ssl/http TwistedWeb httpd 9.0.0
Thanks,___
Twisted-web mailing list
Twisted-web@twistedmatrix.com
http://twistedmatrix.com/cgi-bi
Finally i forgot this line in my firewall rules:
iptables -A INPUT -p udp -m state --state ESTABLISHED,RELATED -j ACCEPT
Thanks for all,
De: Ondřej Surý
Para: Ricardo Fraile
CC: "unbound-users@unbound.net"
Enviado: Jueves 29 de no
0.0.0.0:*
1152/unbound
udp 0 0 0.0.0.0:17790 0.0.0.0:*
1152/unbound
thanks,
De: Ricardo Fraile
Para: "unbound-users@unbound.net"
Enviado: Jueves 29 de noviembre de
Hello,
I try to put iptables in the same server that unbound but I can't do a local
resolv:
dig terra.es @127.0.0.1
; <<>> DiG 9.7.3 <<>> terra.es @127.0.0.1
;; global options: +cmd
;; connection timed out; no servers could be reached
whit this iptables rules:
:INPUT ACCEPT [0:0]
:FOR
Hello,
I try to put iptables in the same server that unbound but I can't do a local
resolv:___
Unbound-users mailing list
Unbound-users@unbound.net
http://unbound.nlnetlabs.nl/mailman/listinfo/unbound-users
1 - 100 of 264 matches
Mail list logo
