FYI:
http://www.igvita.com/2013/12/16/optimizing-nginx-tls-time-to-first-byte/
We started with a ~1800ms overhead for our TLS connection (nearly 5 extra
RTTs); eliminated the extra certificate roundtrip after a nginx upgrade;
cut another RTT by forcing a smaller record size; dropped an extra RTT f
if you are using centos/fedora you need to install openssl-devel
On 17/12/2013 01:40, coderman wrote:
On Mon, Dec 16, 2013 at 4:12 PM, Jeffrey Walton wrote:
checking for OpenSSL library ... not found
... with nginx by using --with-openssl= option.
--with-openssl=/some/path/to/ssl/root
wor
On Mon, Dec 16, 2013 at 4:12 PM, Jeffrey Walton wrote:
>
> checking for OpenSSL library ... not found
> ... with nginx by using --with-openssl= option.
>
--with-openssl=/some/path/to/ssl/root
works for me. try --with-openssl=/usr/local/ssl ?
___
ng
checking for OpenSSL library ... not found
./auto/configure: error: SSL modules require the OpenSSL library.
You can either do not enable the modules, or install the OpenSSL library
into the system, or build the OpenSSL library statically from the source
with nginx by using --with-openssl= option
Thanks so much, that worked perfectly using http://pastebin.com/gnWDSQ8Z.
Danke!
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,245528,245598#msg-245598
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
To add a bit more info, I see your site is using a Go Daddy G2 (SHA2) cert.
In that case, here is the intermediate/root chain you'll want to use as
ssl_trusted_cetificate.
C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc.,
OU=http://certs.godaddy.com/repository/, CN=Go Daddy Secure Certificate
This configuration is working for me. Perhaps nginx cannot verify the OCSP
response with the bundle in /etc/pki/tls/certs/ca-bundle.trust.crt ? In my
ssl_trusted_certificate file, I have these certificates, in order.
C=US, O=The Go Daddy Group, Inc., OU=Go Daddy Class 2 Certification
Authority
C
On Monday 16 December 2013 08:08:31 kustodian wrote:
> Hi,
>
> Nginx 1.4.0 added support for SPDY to the stable version, so my question is
> why is SPDY not enabled in the packages from the Nginx official repository?
>
> I'm explicitely talking about the Centos packages, I haven't tried others.
>
Hi,
Nginx 1.4.0 added support for SPDY to the stable version, so my question is
why is SPDY not enabled in the packages from the Nginx official repository?
I'm explicitely talking about the Centos packages, I haven't tried others.
Regards,
Strahinja
Posted at Nginx Forum:
http://forum.nginx.or
On 16 December 2013 12:38, Paul Taylor wrote:
> Hi Maxim,
>
> Ok, thanks for the clarification.
>
> So to confirm, we are looking for the value of the sent header from the
> upstream, to identify whether the content should be served from the cache,
> or the upstream. Does this therefore mean that
Hi Maxim,
Ok, thanks for the clarification.
So to confirm, we are looking for the value of the sent header from the
upstream, to identify whether the content should be served from the cache, or
the upstream. Does this therefore mean that the code that we have below, will
check for the X-No-Cac
On 16 December 2013 10:47, Larry wrote
> Did i understand something wrong ?
Yes.
Proxy cache is for storing the response of an upstream HTTP server
whose requests you're proxying, so that you don't have to ask the
potentially slow(er) upstream server the next time an identical
request comes in.
Hello!
On Sun, Dec 15, 2013 at 05:01:25AM -0500, Larry wrote:
> Hello,
>
> I don't quite understand what I could get from caching with proxy_cache vs
> serving static files directly.
>
> Everywhere people tend to say that it is better to cache, but isn't caching
> the same as serving directly f
Hello!
On Mon, Dec 16, 2013 at 09:22:25AM +, Paul Taylor wrote:
> Yup, again, you’re right! I’ve moved the config around, so that I’m testing
> for any ‘true’ value in the proxy_no_cache & proxy_bypass_cache directives
> (removing the existing set_by_lua block).
>
> However, it’s still not
Did i understand something wrong ?
Thanks
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,245544,245552#msg-245552
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Yup, again, you’re right! I’ve moved the config around, so that I’m testing for
any ‘true’ value in the proxy_no_cache & proxy_bypass_cache directives
(removing the existing set_by_lua block).
However, it’s still not behaving as I’d expect.
In the following scenario (note comments):
map $upstr
16 matches
Mail list logo
