Re: Nginx upstream delays

You also have to consider the rate your client get data from the server. The request time is the entire time spent from the beginning of the request until the end of response. So you may not have a problem on your server, just a lazy client :) On Mon, Mar 9, 2015 at 1:05 PM, B.R. wrote: > You ar

Re: [security advisory] http://wiki.nginx.org/Redmine

On 10.03.2015 0:50, Francis Daly wrote: even more, redmine documentation: http://www.redmine.org/projects/redmine/wiki/HowTo_install_Redmine_on_CentOS_5 RECOMMENDS to install redmine into /var/www/redmine see: "Configure /var/www/redmine/config/database.yml" Yes, that url shows redmine install

Re: How to "undo" a global server deny all in a location block

On Mon, Mar 09, 2015 at 07:38:47PM -0400, justink101 wrote: Hi there, > Is it possible to undo a server level deny all; inside a more specific > location block? Yes. Normal directive inheritance rules apply, but with the note that "allow" and "deny" are one of a small set of directives which a

How to "undo" a global server deny all in a location block

Is it possible to undo a server level deny all; inside a more specific location block? See the following: server { allow 1.2.3.4; allow 2.3.4.5; deny all; location / { location ~ ^/api/(?.*) { # bunch of directives } location = /actions/foo.

Re: [security advisory] http://wiki.nginx.org/Redmine

On Mon, Mar 09, 2015 at 08:24:43PM +0200, Gena Makhomed wrote: > On 09.03.2015 19:25, Francis Daly wrote: Hi there, > >But the user must have followed some documentation to install redmine in > >the first place; and if they unthinkingly install it into /var/www/redmine > >they are probably doing

[security advisory] $http_host vs $host

On 09.03.2015 19:25, Francis Daly wrote: Unsafe variable $http_host was used instead of safe one $host I'm not sure how $http_host is less safe than $host. It is proxy_pass'ed to the "real" redmine server as the Host header. That server must be able to handle it safely anyway, no? Such confi

Re: [security advisory] http://wiki.nginx.org/Redmine

On 09.03.2015 19:25, Francis Daly wrote: From reading the redmine docs, it looks like the contents of the "root" directive directory should be whatever is in the distributed redmine public/ directory; not the entire installation including configuration. I am talk about configuration recommende

Re: [security advisory] http://wiki.nginx.org/Redmine

On Mon, Mar 09, 2015 at 04:44:05PM +0200, Gena Makhomed wrote: > On 08.03.2015 22:50, Francis Daly wrote: Hi there, > >>webpage http://wiki.nginx.org/Redmine has some security problems: > >> > >>1. All redmine config files are available for anybody in internet, > >>for example: https://redmine.ex

Re: Nginx upstream delays

You are on a nginx mailing list, thus I will reply on the nginx side of the problem. You can diagnose further to tell if the problem comes from nginx or from the backend by using 2 different variables in your log message: $request_time

gzip_types not working as expected

gzip is not working on my piwik.js file according to Google at developers.google.com/speed/pagespeed/insights. It's working fine on my CSS file. How can I troubleshoot this? gzip on; gzip_disable msie6; gzip_types text/javascript application/x-javascript text/css text/plain; - Grant __

Re: [security advisory] http://wiki.nginx.org/Redmine

Hi Gena, I’m happy to have you update the wiki now that you’ve reported your concerns. Do you have an account on the wiki? If not, please request one and let me know via email at sa...@nginx.com and we’ll get you set up with privileges to edit the page. Sarah > On Mar 9, 2015, at 8:21 AM

map with two variables

Hi, I'd like to set a variable to the value of $host where the dots are replaced by underscore. My first idea: map $host $graphite_host { "~(?P[^.]*)\.(?P[^.]*)\.(?P[^.]*)" $a_$b_$c; } But I can't use more than one variable in the result. $a or $b would work, but not $a_$b or $a$b. I alway

Nginx upstream delays

Hello, I have a question about sporadic long upstream response times I'm seeing on (two of) our Nginx servers. It's kind of hard to show and quantify, but I'll do my best. One is a Django Gunicorn server. We included the upstream response time in the Nginx access log and wrote a script to an

Re: [security advisory] http://wiki.nginx.org/Redmine

On 09.03.2015 16:48, Edho Arief wrote: From reading the redmine docs, it looks like the contents of the "root" directive directory should be whatever is in the distributed redmine public/ directory; not the entire installation including configuration. It's a public wiki, not some official doc

Re: [security advisory] http://wiki.nginx.org/Redmine

On Mon, Mar 9, 2015 at 11:44 PM, Gena Makhomed wrote: > On 08.03.2015 22:50, Francis Daly wrote: > >>> webpage http://wiki.nginx.org/Redmine has some security problems: >>> >>> 1. All redmine config files are available for anybody in internet, >>> for example: https://redmine.example.com/config/da

Re: [security advisory] http://wiki.nginx.org/Redmine

On 08.03.2015 22:50, Francis Daly wrote: webpage http://wiki.nginx.org/Redmine has some security problems: 1. All redmine config files are available for anybody in internet, for example: https://redmine.example.com/config/database.yml contains in plain text login and password for database conne

Re: 403 Forbidden

It's important that the right access is set for the files and folders in /var/www/testdomain.ovh/web. Nginx is running as user www-data (per default) and folders needs to be set with (at least) execute and read permissions for www-data. For files read permission is the least required. ~sjums On

nginx trying to connect to upstream host which is down

Hi, Note: I had to change the hostnames and domain names. nginx version: nginx/1.4.6 (Ubuntu) I have the following the configuration: upstream ssl-app-cluster { ip_hash; server app01.example.com:8443 max_fails=1 fail_timeout=60s; server app02.example.com:8443 max_fa