Hi Alex,
our device is unattended, not always on, and in some cases in only semi-secured
locations. Besides preventing root access, we also need to protect against the
hacking of a stolen device (or disk).
Human interaction is not practical (other than in exceptional situations).
Roger
> On
HI
isn't this a bit futile, if they can get onto the box that has nginx they
can get either the private key or secret to get the private key.
safer would be to make it that you need human interact to start nginx.
But till a memory dump of the app would get you the private key.
On Fri, 16 Nov
Hello,
I have an NGINX instance that listens on a tunnel (and some other interfaces).
When NGINX was restarted while the tunnel was down (tun device and address did
not exist), NGINX failed to start.
[emerg] 1344#1344: bind() to 38.88.78.19:443 failed (99: Cannot assign
requested address)
Rel
Hello!
On Thu, Nov 15, 2018 at 12:17:39PM -0500, kmansoft wrote:
> Cross posting from https://unix.stackexchange.com/questions/481963, this
> seems to be the better place to ask.
>
> ---
>
> Just updated Debian from "stable" 9.* to "testing" 10.*.
>
> Have nginx 1.14 - used to come from "stabl
Cross posting from https://unix.stackexchange.com/questions/481963, this
seems to be the better place to ask.
---
Just updated Debian from "stable" 9.* to "testing" 10.*.
Have nginx 1.14 - used to come from "stable backports" now included in
Debian itself.
Seeing a strange issue with TLS versio
Hello!
On Wed, Nov 14, 2018 at 03:54:20PM +0100, aquilinux wrote:
> Hi all,
> i'm seeing a strange behaviour in nginx rewrite involving encoded urls for
> *%27*
> I have this type of rewrite:
>
> rewrite "^/brands/l-oreal$"
> > https://somedomain.tld/L%27Or%C3%A9al-Paris/index.html? permanent;
>
On Thu, 2018-11-15 at 09:27 -0500, Olaf van der Spek wrote:
> Jim Popovitch Wrote:
> ---
> > On Thu, 2018-11-15 at 08:36 -0500, Olaf van der Spek wrote:
> > So a specific use case. What about port 443 (you haven't mentioned
> > it
>
> What about
Hi Francis and Maxim,
Cheers, that solved it. Used 127.0.0.1 and works like a charm. Will remove the
resolver from my config.
Thanks for the explanations.
Kind regards
Simon
> On 15 Nov 2018, at 14:24, Maxim Dounin wrote:
>
> Hello!
>
> On Thu, Nov 15, 2018 at 11:10:08AM +, rough lea
Hello,
I'm glad to announce a new release of NGINX Unit.
This release primarily focuses on improvements in Node.js module compatibility;
thanks to our vibrant community, we made great progress here.
Please don't hesitate to report any problems to:
- Github: https://github.com/nginx/unit/issues
Jim Popovitch Wrote:
---
> On Thu, 2018-11-15 at 08:36 -0500, Olaf van der Spek wrote:
> So a specific use case. What about port 443 (you haven't mentioned it
What about it?
> yet), except what if it's on a non-routable subnet perhaps 8443 shou
Hello!
On Thu, Nov 15, 2018 at 11:10:08AM +, rough lea wrote:
> I am a newbie running tusd server on macos High Sierra behind an
> Nginx Proxy running within a docker container. In the logs, I
> notice that before an _UploadCreated_ event is received there is
> an attempt to connect to tus
On Thu, Nov 15, 2018 at 11:10:08AM +, rough lea wrote:
Hi there,
> I am a newbie running tusd server on macos High Sierra behind an Nginx Proxy
> running within a docker container. In the logs, I notice that before an
> _UploadCreated_ event is received there is an attempt to connect to tus
On Thu, 2018-11-15 at 08:36 -0500, Olaf van der Spek wrote:
> > (see, this is why posting via forums is like cancer. Hint: the forum
> > rarely sends the context, also not to forget the quoted first line
> > in the thread opener)
>
> A proper forum would do that..
A proper forum poster would too.
> (see, this is why posting via forums is like cancer. Hint: the forum
> rarely sends the context, also not to forget the quoted first line in
> the thread opener)
A proper forum would do that..
> To address your concerns about nginx configuration, simply put it's not
> worth the developers time
On Thu, 2018-11-15 at 08:05 -0500, Olaf van der Spek wrote:
> Why so hostile?
Why so vague?
(see, this is why posting via forums is like cancer. Hint: the forum
rarely sends the context, also not to forget the quoted first line in
the thread opener)
To address your concerns about nginx config
Why so hostile?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,281948,281963#msg-281963
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hello!
On Wed, Nov 14, 2018 at 12:17:57PM -0800, Roger Fischer wrote:
> Hello,
>
> does NGINX support any mechanisms to securely access the private
> key of server certificates?
>
> Specifically, could NGINX make a request to a key store, rather
> than reading from a local file?
>
> Are ther
Hi,
I am a newbie running tusd server on macos High Sierra behind an Nginx Proxy
running within a docker container. In the logs, I notice that before an
_UploadCreated_ event is received there is an attempt to connect to tusd using
ipv6 loopback address which fails.
_[crit] 23#23: *4 connect
Hi Lucas,
On Wed, Nov 14, 2018 at 06:50:23PM +, Lucas Rolff wrote:
> Hi Roman,
>
> I can confirm that indeed does fix the problem, thanks!
>
> I do wonder though, why not let nginx make the decision instead of relying on
> what the origin sends or does not send?
nginx tries to be transpare
19 matches
Mail list logo
