On 8/30/2019 12:33 PM, Reinis Rozitis wrote:
When this is all done, and I import the p12 client certificate on my Windows PCs (tested
2) Chrome and Firefox show me the "400 Bad Request\n No required SSL certificate was
sent". The very strange thing is IE11 on one of the two PCs, actually prom
I have been trying to configure client certificates (really just one
cert for now) for two days on CentOS 7, Nginx 1.16.1, and have had very
limited success.
I have tried various online guides and they are mostly the same - but
all have resulted in the same exact scenario. One such guide is h
I have a few users that are having issues with my website now that I
disabled SSLv3. Turns out the only cipher that would/should work with
XP/IE8 is TLS1.0: "TLS_RSA_WITH_3DES_EDE_CBC_SHA" (there are two RC4's
that also work, but I understand that is really not recommended).
Can anyone tell m
Looking through the results for my server, I noticed these two lines in
the "Protocol Details" section:
Session resumption (caching)No (IDs assigned but not accepted)
Session resumption (tickets)No INTOLERANT
Should I change my config to alter these two results (for performanc
Has anyone tried using the Maxmind GeoIP Organization database to
allow/block access to directories?
I am currently using the GeoIP.dat (country) file -- which I believe is
"version 1" of their binary db -- and this works great. I am
investigating making a more "narrow" filter of IP Addresses
This may be obvious, but as such, the OpenSSL 1.0.1e package is
available to virtually all CentOS 6.x via the official yum repos, so
it's not just for CentOS 6.5 (technically).
-AJ
On 3/7/2014 3:16 PM, Per Hansson wrote:
I second this request, it would be very welcome :)
Posted at Nginx For
Ugh. Thanks. I missed that.
-AJ
On 9/9/2013 11:10 AM, Valentin V. Bartenev wrote:
On Monday 09 September 2013 17:53:54 AJ Weber wrote:
This is a nice write-up. Thank you.
Does anyone know why SPDY is not enabled for the default builds yet, if
it's in the "stable branch"
This is a nice write-up. Thank you.
Does anyone know why SPDY is not enabled for the default builds yet, if
it's in the "stable branch"? I just tried downloading 1.4.2 (CentOS 6
x64) and it's not configured.
Thanks,
AJ
On 9/8/2013 1:50 PM, mex wrote:
hi list,
i recently had to dig deepe
I have this working pretty well (ok, I think _very_well_ ) with GeoIP.
I used a MAP in the main nginx.conf like this:
map $geoip_country_code $allowed_country {
default0;
US 1;
GB 1;
CA 1;
EU 1;
}
Then, in my de
I do a custom-build for our own servers (in private pkg-ng repository)
with a handful of useful modules included. Because the truth is: only
you know what modules you want or need.
This is absolutely true. (And I'm running CentOS and have been very
happy as well.)
Thanks.
_
Is anyone maintaining a "current" version of nginx with mod-security
linked-in?
I realize this is a bit lazy on my part -- the instructions seem
relatively straightforward to build -- but I didn't want to "re-invent
the wheel" if I didn't have to.
Thanks,
AJ
37
On 4/10/2013 5:29 AM, Sergey Budnevitch wrote:
On 10 Apr2013, at 05:08 , AJ Weber wrote:
I followed the instructions for adding the "mainline" repo to my yum config,
ran a clean but I still only find 1.2.8 available for install (CentOS6 x64).
What might I be doing wrong?
P
I followed the instructions for adding the "mainline" repo to my yum
config, ran a clean but I still only find 1.2.8 available for install
(CentOS6 x64).
What might I be doing wrong?
-AJ
On 4/3/2013 9:08 AM, Sergey Budnevitch wrote:
Hello
We've added new repository with pre-build l
OK,
So I'm still working on my caching "issue", but this is a more general
question, so for the sake of indexing and helping others in the future
with (hopefully) a response...
How do I use a map to map the lack of a variable/header/cookie (NULL?)
to a value? I can't use "default", because
On 3/13/2013 10:40 AM, Jonathan Matthews wrote:
It looks to me like
http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_no_cache
is what you need to use.
If the backend is returning a Content-Length header, you could refer
to that. If not, you may have to get creative in assembling
I have a case where a user requires authorization to retrieve content.
Ngnix correctly returns the tomcat's 401, and then the user attempts
authentication.
However, if the user fails to authenticate, tomcat returns a 200 but
zero bytes returned. This comes through nginx as a cache-miss,
sta
16 matches
Mail list logo
