Help, make a post subrequest with response body from parent

2014-04-08 Thread honwel
hi, angentzh I use echo module(angentzh) to issue a subrequest(POST method) that it's body from parent's request body, and i add some code in ngx_http_echo_subrequest->ngx_http_echo_parse_subrequest_spec : so, it's not work, but change to '-b' or '-f', it's OK. help ? ...

SSL_write failed (32: Broken pipe) while processing SPDY if cache on

2014-04-08 Thread Michael Giagnocavo
We're using nginx 1.5.12 and 1.5.13 on Ubuntu 12.04 LTS via Azure VM. Since last night, on both FireFox and Chrome, Windows and OSX, we're having difficulty with SPDY. If the browser cache is warm and proxy_cache is enabled, we see errors like this: 2014/04/09 05:26:29 [info] 17859#0: *6 SSL_w

reverse proxy dns configuration

2014-04-08 Thread cybermass
Hi. I am looking to deploy nginx on a proxy server. The real backend is located in a remoate geographic location and has apache, mysql, dovecot and postfix services supporting an IMAP mail-server. I am a bit confused on how DNS is to be setup on both the proxy and the backend server. I am assuming

New module: Nginx OpenSSL version check

2014-04-08 Thread Phil Pennock
On behalf of my employer, Apcera Inc, we are delighted to make available a new Nginx module, providing for a start-up OpenSSL version check for those who wish for a little more belt&braces protection. https://github.com/apcera/nginx-openssl-version The README.md file explains the rationale. The

Re: OpenSSL leaks server-Keys / The Heartbleed Bug

2014-04-08 Thread B.R.
There is not much to learn from a gujide that what has alrfeady been said on http://heartbleed.com. More specifically, there is nothing related to nginx nor SPDY... Heartbleed is related to OpenSSL and the solution is either to update your OpenSSL version/package with the official/your distro repo

Re: OpenSSL leaks server-Keys / The Heartbleed Bug

2014-04-08 Thread Raul Hugo
I see this on Linux-Plug list: "If your operating system uses OpenSSL 1.0.1 its servers are vulnerable. CentOS and pulled his patch here: http://lists.centos.org/pipermail/centos-announce/2014-April/020249.html If you have servers with Ubuntu 12.04 LTS you should take a look at this discussion:

Re: OpenSSL leaks server-Keys / The Heartbleed Bug

2014-04-08 Thread mex
Guide to Nginx + SSL + SPDY has been updated with some infos, links and tests regarding heartbleed https://www.mare-system.de/guide-to-nginx-ssl-spdy-hsts/#heartbleed regards, mex Posted at Nginx Forum: http://forum.nginx.org/read.php?2,249102,249131#msg-249131 __

Re: Upstream Keepalive Questions

2014-04-08 Thread abstein2
Maxim, Thanks so much for clarifying. Just to make sure I'm understanding correctly, if I had something like this pseudo-code upstream upstream1 { } upstream upstream2 { } upstream upstream3 { } upstream upstream4 { } upstream upstream5 { } server { server_name server1.com; proxy_pass http://ups

Re: Case insensitive location

2014-04-08 Thread B.R.
I do not know about caching nor do I take it into consideration as it is not part of the problem as stated. You stated that the location regex was the problem and you seem to have taken the proper checks to verify the proper location is being used, hence I assume the location regex is not the prob

Re: failed to verify repository GPG key

2014-04-08 Thread spameden
2014-04-08 20:46 GMT+04:00 Sergey Budnevitch : > > On 08 Apr 2014, at 20:11, spameden wrote: > > > today I noticed something changed and there is no longer packages being > verified from nginx.org repository: > > > > W: GPG error: http://nginx.org squeeze Release: The following > signatures were

Re: Case insensitive location

2014-04-08 Thread Callumpy
Thank you for the reply. As far as I know, everything is fine, but it's still not working for me. When I disable caching, which includes pngs, and then use 'location ~* ^/card', I am able to access the images normally without capital letters, but still not with capitals. With caching enabled, I

Re: [ANN] Windows nginx 1.5.13.1 Snowman

2014-04-08 Thread itpp2012
10:30 8-4-2014 nginx 1.5.13.2 Snowman Based on nginx 1.5.13 (8-4-2014) with; + CVE fix CVE-2014-0160 + openssl-1.0.1g (upgraded 8-4-2014) + Source changes back ported + Source changes add-on's back ported + Changes for nginx_basic: Source changes back ported * Additional specifications are like 0:

Re: failed to verify repository GPG key

2014-04-08 Thread Sergey Budnevitch
On 08 Apr 2014, at 20:11, spameden wrote: > today I noticed something changed and there is no longer packages being > verified from nginx.org repository: > > W: GPG error: http://nginx.org squeeze Release: The following signatures were > invalid: BADSIG ABF5BD827BD9BF62 nginx signing key >

failed to verify repository GPG key

2014-04-08 Thread spameden
today I noticed something changed and there is no longer packages being verified from nginx.org repository: W: GPG error: http://nginx.org squeeze Release: The following signatures were invalid: BADSIG ABF5BD827BD9BF62 nginx signing key < signing-...@nginx.com> did you guys change the key today?

nginx-1.5.13

2014-04-08 Thread Maxim Dounin
Changes with nginx 1.5.1308 Apr 2014 *) Change: improved hash table handling; the default values of the "variables_hash_max_size" and "types_hash_bucket_size" were changed to 1024 and 64 respectively. *) Feature: the ngx_http_mp4_modul

Re: Case insensitive location

2014-04-08 Thread B.R.
As the location docsspecifies, the solution you provided should work. Ensure that: 1°) You are working with the right binary 2°) Configuration syntax is correct (nginx -t) and reload was successful (no message in that direction in t

Case insensitive location

2014-04-08 Thread Callumpy
Hello there, i'm hoping someone can help me out with this. I've tried many different things but none have worked for me so far. Here is my location block: location ^~ /card/ { root /home/site/public; rewrite ^/card/([a-zA-Z0-9_+]+)/(.*).png$ /card.php?name=$2&type=

Re: Deprecated warnings in 1.5.8 are now errors in 1.5.12

2014-04-08 Thread Thijs Koerselman
Thanks a lot Maxim, that explains everything. I used the flag and all went well. Cheers, Thijs On Tue, Apr 8, 2014 at 12:22 PM, Maxim Dounin wrote: > Hello! > > On Tue, Apr 08, 2014 at 11:43:58AM +0200, Thijs Koerselman wrote: > > > Hi, > > > > I'm trying to compile 1.5.12 on OSX. For some rea

OpenSSL leaks server-Keys / The Heartbleed Bug

2014-04-08 Thread mex
A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server. https://www.openssl.org/news/secadv_20140407.txt http://heartbleed.com/ http://www.reddit.com/r/netsec/comments/22gym6/diagnosis_of_the_openssl_heartble

Re: Deprecated warnings in 1.5.8 are now errors in 1.5.12

2014-04-08 Thread Maxim Dounin
Hello! On Tue, Apr 08, 2014 at 11:43:58AM +0200, Thijs Koerselman wrote: > Hi, > > I'm trying to compile 1.5.12 on OSX. For some reason 1.5.12 generates > errors in make where in 1.5.8 these same messages appeared as warnings and > were ignored. > > I'm trying to build the nginx core without ex

Deprecated warnings in 1.5.8 are now errors in 1.5.12

2014-04-08 Thread Thijs Koerselman
Hi, I'm trying to compile 1.5.12 on OSX. For some reason 1.5.12 generates errors in make where in 1.5.8 these same messages appeared as warnings and were ignored. I'm trying to build the nginx core without extra modules. Below is my configure output and the first errors that appear. Any idea how

Re: Upstream Keepalive Questions

2014-04-08 Thread Maxim Dounin
Hello! On Mon, Apr 07, 2014 at 05:29:15PM -0400, abstein2 wrote: > I'm somewhat unclear about how the keepalive functionality works within the > upstream module. My nginx install currently handles several hundred domains > all of which point to different origin servers. I would imagine I can > im

Re: Nodejs websocket 502 bad gateway

2014-04-08 Thread zajca
Solved: It was my bad I had domain without ssl binded to same port as this one with ssl. So it wasn't working. Posted at Nginx Forum: http://forum.nginx.org/read.php?2,249059,249095#msg-249095 ___ nginx mailing list nginx@nginx.org http://mailman.nginx