method without lingering_timeout?
What could be responsible for these leaked file descriptors and worker
connections? I'm unexperienced with nginx so any pointers of where to look are
greatly appreciated.
Many thanks,
Alex
___
nginx mailing list
nginx@nginx.org
https://mailman.nginx.org/mailman/listinfo/nginx
Did you find the solution to your question?
Regards
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,290112,294877#msg-294877
___
nginx mailing list -- nginx@nginx.org
To unsubscribe send an email to nginx-le...@nginx.org
stfu
On Wed, Oct 7, 2020 at 9:35 PM Marcin Wanat wrote:
> Hi,
>
> On Wed, Oct 7, 2020 at 8:08 PM Francis Daly wrote:
>
>
>> $1 may not mean what you want it to mean, when more than one regex-thing
>> is involved. And "map" can be a regex-thing.
>>
>> If you change the location regex to whatever
Jore-
I applied the proxy_hide_header for no-cache headers to NGINX can process
it and cache it.
On Sat, May 23, 2020 at 5:17 PM Jore wrote:
> Hi Alex/all,
>
> How did you fix?
>
> I've got a very similar issue.
>
> nginx running Wordpress with the Hypercache plugin
Disregard, found the issue.
thank you.
On Sat, May 23, 2020 at 4:18 PM Alex Evonosky
wrote:
> "Can you be more specific? Which "cache"? Browser cache? Nginx content
> cache? try_files has nothing to do with caching..."
>
>
> Nginx content cache
>
>
>
cp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
gzip on;
gzip_disable "msie6";
# include /etc/nginx/conf.d/*.conf;
# include /etc/nginx/sites-enabled/*;
include /etc/nginx/proxy.conf;
}
Thank you,
Alex
On Sat, May 23, 2020 at 8:43 AM J.R. wrote:
> > And the main page caches
d" is
not getting cached. Is there more to the "try_files" that needs applied
for caching of these permalinks?
Thank You,
Alex
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi
Whats considered the best way to auth again crowd.
I see some old module - 6-7 year untouched
https://github.com/kare/ngx_http_auth_crowd_module trying this one but
can't compile it
also noted crowd does openid
https://www.nginx.com/blog/authenticating-users-existing-applications-openid-c
; from the upstream to
leave it the way it is? I guess I will give up the idea of having all urls
without a trailing slash.
Regards,
Alex
P.S. I will look into having the APP remove the trailing slash since it
should know better what it is a directory or a file.
Posted at Nginx Forum:
https://forum
having all urls
without a trailing slash.
Regards,
Alex
P.S. I will look into having the APP remove the trailing slash since it
should know better what it is a directory or a file.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,273964,285872#
Dear Francis:
Thank you for your answers.
Here is the full configuration with reverse proxy, pagespeed,and
lowercasing. It all
works well, but now that I incorporated removing the trailing slash it
brought up new
issues: https://pastebin.com/keQ239D4. Let me know if you prefer that I
post the co
Dear Francis:
After so many years, I am back to the same questions I had many years ago,
but never resolved on Nginx. So perhaps, it is time to change this and find
a useful implementation.
So, now what I want is to get rid off the trailing slashes for anything that
is not a directory or a folde
Francis,
I apologized. I wrote your name incorrectly in my previous message. I am
not able to edit it.
So, THANK YOU, FRANCIS!
Alex
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,285780,285800#msg-285800
___
nginx mailing list
nginx
without
the end forward slash. Is there a limit in the number of location that a
configuration file should have?
I do have some other additional configuration I want to do, but I will post
another message with it.
Thank YOU again for being in this forum and helping everyone!
Regards,
Alex
Dear Francis:
Thank you again for your help!
I apologize. Perhaps, I should have started with what I want to accomplish
with the configuration.
I want the server to lowercased every URI except the ones that begins with
any of the following
paths:
/api/
/contentAsset/
/categoriesServlet/
/DotA
I also would like to add that when I access: example.com/API/ it is
lowercased to example.com/api/. According to my configuration it should
not. So it means location #1 is not working properly.
Alex Med Wrote:
---
> Dear Francis:
>
Dear Francis:
Here are the answers to your questions. Thank YOU for helping!
The location block are in the following order:
Location #1
location ~
^/(api|contentAsset|categoriesServlet|DotAjaxDirector|html|dwr|dA)/ {}
Location #2 > This location does the lowercasing
location ~ [A-Z] { retu
I have the following server configuration. I have two problems that I would
appreciate if someone can tell me what I am doing wrong:
1- this location is not respected since the configuration lowercases all
uris without respecting these locations. Please note that api,
contentAssets, categoryServ
HI
isn't this a bit futile, if they can get onto the box that has nginx they
can get either the private key or secret to get the private key.
safer would be to make it that you need human interact to start nginx.
But till a memory dump of the app would get you the private key.
On Fri, 16 Nov
Hi
Don't you need a openssl that works with 1.3 as well.
My sticking point is centos 6 - no openssl that comes with 1.3 - as far as
i know
A
On Mon, 5 Nov 2018 at 06:10, Bogdan via nginx wrote:
> Hi, Andreas!
>
>
> I disabled NPN (Next Protocol Negotiation) because, as far as I know (not
> ver
Hello Maxim!
Thanks for the replay.
I will patch our service to support this temporary way.
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
used. While Nginx’s now still use
SSL_CTX_set_cipher_list
to configure the SSL/TLS ciphers, which leads to the default cipher suits
are used all the time.
Is there any support plan for this?
Best Regards
Alex Zhang
___
nginx mailing list
nginx@nginx.org
Hi
Not sure where to put this.
But I would like to have the ability to add client cert required any where
on the URI tree
so
www.abc.com.au/ you can access with out a cert but
www.abc.com.au/private/ you need a cert
www.abc.com.au/public/ no cert needed
A
__
Look at sticky session, a routing code in a cookie that helps you decide
where to send the packet. So on the 443 set the cookie and on the udp use
the cookie in the header to route on the back end
On 20 June 2018 at 17:16, nov1ce wrote:
> Hello,
>
> 1.14.0-1 running on Debian Stretch:
>
> # dp
Silly question why not use postfix for this ?
On 20 February 2018 at 18:56, Azusa Taroura
wrote:
> Hi everyone,
>
> I’m trying to optimize mail-proxy.
> My performance test is 1 client sends many request to 1 nginx server.
>
>
> This is my current settings:
>
> worker_processes auto;
> worker_r
Why not just change the log format to exclude the ip address or put in
static ip
On 14 February 2018 at 12:46, Tom wrote:
> Hi,
>
> I'm wondering if anyone has successfully masked ip addresses in nginx
> before they are written to a log file.
>
> I understand there are reasons why you would and
Hi
can you give an example of using a map instead of the if statement ?
Thanks
On 21 May 2017 at 02:35, c0nw0nk wrote:
> gariac Wrote:
> ---
> > I had run Naxsi with Doxi. Trouble is when it cause problems, it was
> > really hard to figure ou
Well at least in my case, I can ask the application to make an orderly
reconnect. Where if nginx does it it just closes the connection.
The option to do it seems like better than having no option.
Alex
On 20 May 2017 at 21:11, B.R. via nginx wrote:
> ... and you would end up with connecti
On 20 May 2017 at 08:00, wrote:
> My experience with deny in nginx is the url isn't hidden
So you don't want to just restrict access but you want to send a 404 not
found unless they come from a specific ip address.
I think you should be able to ... but my nginx skills are not that good for
no
t; backend ... ssl passthrough ? I presume these are kept
alive until either the client or the backend closes it.
it would be nice to allow a reload/refresh but keep keep-alive session open
until the client closes it
Alex
On 19 May 2017 at 23:10, Maxim Dounin wrote:
> Hello!
>
> On
wouldn't you use
location /secret-page/ {
deny all
allow 1.1.1.1/32;
}
a
On 19 May 2017 at 17:24, ohmykot wrote:
> Hi!
> I've got a server with nginx and a wordpress website running on it.
>
> On the web-site, I have a wordpress page, i.e. domain.com/secret-page/,
> that
> I want to restri
and it looks like a lot of my long lived tcp session where TCP-FIN'ed.
I also checked my audit logs to see what command / process run at that time
... nothing that signaled or initiated a nginx reload ...
Alex
___
nginx mailing list
nginx@ngin
Francis -
Yes, I am realizing that is a nightmare going against the trailing-slashed
directory nature. So I am going to have this rule take off slashes from
anything but directories. Do you have any suggestions as how to do it, but
without "if"
Thank you so much!
Alex
Posted at N
Steve -
You are right something else is adding a trailling slash to directories. Is
there a way to configure nginx to remove trailing slashes from everything
except from directories?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,273964,274132#msg-274132
hanks for your help!
Alex
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,273964,273971#msg-273971
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Steve -
Thank you so much this has brought so much clarity! I appreciate the time
you spend writing the reply.
So the rewrite ^/(.*)/$ /$1 permanent; needs to be outside of the location
definition and inside the server definition, correct?
Infinite thanks!
Alex
Posted at Nginx Forum:
https
Steveh:
Thank you for your reply.
So what you are suggesting me to do is something like this:
location / {
try_files $uri $uri/ @rewrite;
}
location @rewrite {
rewrite ^/(.*)/$ /$1 permanent;
}
Put try files inside the location block and create a new block with the
rewrite?
Thank you
Hi,
I am having an issue getting rid of the trailing slashes for directories. I
have used the following to get rid off the trailing slash:
#rewrite all URIs without any '.' in them that end with a '/'
#rewrite ^([^.]*)/$ $1 permanent;
&
#rewrite all URIs that end with a '/'
Thats what support have advised me, reload finished the current request and
then closes the connection. No longer honors the long lived
Alex
On 27 April 2017 at 19:21, shivramg94 wrote:
> We have a persistent connection to Nginx on which we are issuing https
> requests. Now when w
Hi
I am using
https://gist.github.com/wilhelmy/5a59b8eea26974a468c9
for
location /ts/ {
#autoindex on;
#autoindex_format html;
try_files $uri @autoindex;
}
# need xlst module
location @autoindex {
autoindex on;
autoindex_format xml;
On 26 April 2017 at 00:32, Maxim Dounin wrote:
>
> *) Change: SSL renegotiation is now allowed on backend connections.
>
What does this mean ?
reason I am asking is I would like to setup a site say example.com, that is
SSL, with no need for client certs at root URI
but I would like to for
Will it not be logged as a timeout either in access or error/log ?
On 20 April 2017 at 03:46, aT wrote:
> HI ,
>
> Is there a way to log all incoming requests on Nginx .
>
> Regardless of them being served or not .
>
> For example, In case of surge of crawler hits , if the upstream backend
> ca
But long live sessions are closed and I've had lua session information
persist with a reload. Needed a restart
A
On Sun, 9 Apr 2017 at 21:35, B.R. via nginx wrote:
> You could have got your answer yourself by Reading The... Fine? Manual:
> https://nginx.org/en/docs/control.html
>
> There are ton
My project is javascript app. I have lots of dependencies. I/O for npm
registry takes major portion of CI execution. So my idea is to setup NGINX
in front of npm registry and cache tgz files downloads. Im running Ubuntu
14.04. NGINX version is 1.4.6
This is my nginx configuration script
user www-
Hi
I have started to use lua file for some dynamic stuff.
Whats the best practice to secure them
How do I stop them from being downloaded
location ~ \.lua$ {
send error back
}
is it best to place all of them into a different directory that isn't under
a root ?
A
_
so (have a stab at this)
location = /mini {
equals
http://10.21.169.13/mini and not http://10.21.169.13/mini/ or anything else
http://10.21.169.13/mini/*
try
location /mini {
or
location /mini/ {
A
On 28 March 2017 at 12:43, Jun Chen via nginx wrote:
>
> I am configuring a nginx r
like to see this feature, but not possible with current code
base, I understand.
Alex
On 28 March 2017 at 07:28, piroaa wrote:
> Hi.
> I have own cloud server with ssl client cert verification ssl_verify_client
> set to on. How I can disable verification for location/index.php/s/ shar
Hi
I got something like this
error_page 404 /stderror404.html;
location = /stderror400.html {
root /var/www/error;
content_by_lua_file /var/www/error/stderror400.lua;
internal;
allow all;
}
and the lua file has
ngx.say( "Your source ip address
Do those pages have access to the previous pages details ? Like for
example client_verify ?
Thanks
A
On 22 March 2017 at 21:52, B.R. via nginx wrote:
> RTFM? :o)
>
> https://nginx.org/en/docs/http/ngx_http_core_module.html#error_page
> ---
> *B. R.*
>
> On Tue, Mar 21, 2
Hi
How would I added custom info to the error page.
Say like for 400 if its a cert error, how can I add that to the page and
maybe to add in the clients ip address as well
A
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listin
es > Node A would only process node a data and
node B would only process node b data. This in theory would have the
potential to double your req / sec.
Alex
On 3 March 2017 at 19:33, polder_trash wrote:
> Alexsamad,
> I might not have been clear, allow me to try again:
>
> *
etter.
How many requests are you getting to overload nginx - i thought it was able
to handle very large amounts ?
are your nodes big enough do you need more CPU's or memory or ??
Alex
On 3 March 2017 at 01:40, polder_trash wrote:
> Hi,
>
> I have been reading the documentation and
s are
moving we may end up having to do more complicated things with the DN so
the addition of this would be relatively minor.
On Mon, Feb 13, 2017 at 11:01 AM, Maxim Dounin wrote:
> Hello!
>
> On Mon, Feb 13, 2017 at 10:19:36AM -0500, Alex Addy wrote:
>
> > While testing the new $s
t would like to move away from
it.
Is there something I can set to fix this? Is this a bug or is it working as
intended?
Thank you for your time,
-
- Alex Addy -
-
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi
I have a cron script that generates a crl file and places it a file for
nginx to read... I believe I reload nginx after doing this
I don't think - happy to be proved wrong - that nginx checks for a oscp or
crl attribute in the cert and makes the relevant request
Alex
On 11 January 20
of information could be provided by env variables .. instead
of me having to process the raw pem format on every request.
what are other people doing ?
Alex
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Just when through this. your nginx server makes a requets to the OCSP url
for information.
My nginx servers can't make requests to the internet so I had to use the
offline method
2016-11-08 22:36 GMT+11:00 Christian Cioni :
> Hi,
>
> on my server have activated a SSL in SNI configuration withou
nion, e.g.
> Qualsys, as THE authoritative source of truth for a 'proper' secure config
> is dangerous).
>
> On Fri, Nov 4, 2016 at 2:20 PM, Alex Samad wrote:
>>
>> Hi
>>
>> Any one got a write up on how to get a A+ f
Hi
Any one got a write up on how to get a A+ from this site.
I can get a A and I have to support tls1.0 which might be dragging me down !
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi
So you have done a setup ?
Alex
On 2 November 2016 at 08:42, CJ Ess wrote:
> Probably a better solution then most!
>
> On Fri, Oct 28, 2016 at 10:42 PM, Alex Samad wrote:
>>
>> Hi
>>
>> Not really an option in current setup. The rate limit is to stop
>
t;
>
>
> On Fri, Oct 28, 2016 at 1:29 AM, Alex Samad wrote:
>>
>> Hi
>>
>> yeah I have had a very quick look, just wondering if any one on the
>> list had set one up.
>>
>> Alex
>>
>> On 28 October 2016 at 16:15, CJ Ess
Hi
yeah I have had a very quick look, just wondering if any one on the
list had set one up.
Alex
On 28 October 2016 at 16:15, CJ Ess wrote:
> Maybe this is what you want:
> https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html
>
> See the parts about proxy_downl
Yep
On 28 October 2016 at 11:57, CJ Ess wrote:
> FIX as in the financial information exchange protocol?
>
> On Thu, Oct 27, 2016 at 7:19 PM, Alex Samad wrote:
>>
>> Hi
>>
>> any one setup nginx infront of a fix engine
Hi
any one setup nginx infront of a fix engine to do rate limiting ?
Alex
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
What I had to do was sent the depth to the number or greater than the
number of ca's and I had to get all the crl's for each CA and concat
into a crl file.
On 14 October 2016 at 16:49, Zeal Vora wrote:
> Thanks Maxim.
>
> I tried changing the ssl_verify_depth to 1 from value of 2 however still
wrote:
> Hello!
>
> On Wed, Oct 12, 2016 at 12:43:12PM +1100, Alex Samad wrote:
>
>> Hi
>>
>> I am trying to create a dynamic auth address
>>
>>
>> # grab ssoid
>> map $cookie_SSOID $ssoid_cookie {
>> default "";
>&
ID=$ssoid_cookie&a=imaadmin HTTP/1.0
Alex
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi all,
Is there a way to allow or deny based on name? For instance, I currently
have my site restricted to intranet traffic only, but I need to allow a
remote SMTP server access. Can I do something like
allow smtp.mysmtp.com;
Thanks.
--
Alex Hall
Automatic Distributors, IT department
ah
On Tue, May 17, 2016 at 1:37 PM, Francis Daly wrote:
> On Mon, May 16, 2016 at 08:50:44AM -0400, Alex Hall wrote:
>
> Hi there,
>
> > Well, it seems to be working now, and I'm thoroughly embarrassed about
> it.
> > The Nginx/Apache setup is fine, and has been, it
rching and
found that this can happen if the email appears to come from localhost, or
some other invalid domain. Given my setup, I suspect that this is exactly
the problem. What can I do to have responses from Apache appear to come
from the domain's IP, rather than 127.0.0.1:8080? Thanks!
2016 at 7:32 AM, Alex Hall wrote:
>
> > On May 14, 2016, at 05:19, Francis Daly wrote:
> >
> > On Fri, May 13, 2016 at 01:24:57PM -0400, Alex Hall wrote:
> >
> > Hi there,
> >
> >> It's as though the proxy weren't working properly at all
> On May 14, 2016, at 05:19, Francis Daly wrote:
>
> On Fri, May 13, 2016 at 01:24:57PM -0400, Alex Hall wrote:
>
> Hi there,
>
>> It's as though the proxy weren't working properly at all.
>> I have it set up in a location:
>>
>>
on
> upstream backend1 {
> #ip of Apache back-end
> server 192.168.0.1:8080;
> }
>
> 2016-05-13 1:59 GMT+03:00 Alex Hall :
>
>> Thanks! I followed you, until the proxy_pass. What is backend1, and where
>> is it defined? I know it's something you made up, but h
onfusing. All I want to do is replace 127.0.0.1:8080 in any URL on
this site with sd2.mysite.com. Do I need some kind of regular expression?
To move this proxy somewhere else (currently it's in location / context)?
Should my proxy_pass also be moved to a different context?
--
Alex Hall
A
roxy_pass http://backend1 <http://backend1/>;
> etc.
> }
> }
>
> 2016-05-13 0:34 GMT+03:00 Alex Hall <mailto:ah...@autodist.com>>:
> Hello all,
> Here's what I'm trying to do. I have two sites, sd1.mysite.com
> <http://sd1.mysite.co
teway"
and handler of one subdomain, and Apache as the handler for the other
subdomain. Is there any way to do this? Am I even making sense? Thanks for
any ideas anyone has.
--
Alex Hall
Automatic Distributors, IT department
ah...@autodist.com
___
> On May 11, 2016, at 5:19 PM, Alex Hall wrote:
>
>
>
> On Wed, May 11, 2016 at 5:04 PM, Jim Ohlstein wrote:
>
>> Hello,
>>
>> On May 11, 2016, at 4:54 PM, Alex Hall wrote:
>>
>>
>>
>> On Wed, May 11, 2016 at 4:50 PM, Jim Ohlstein wrot
On Wed, May 11, 2016 at 5:04 PM, Jim Ohlstein wrote:
> Hello,
>
> On May 11, 2016, at 4:54 PM, Alex Hall wrote:
>
>
>
> On Wed, May 11, 2016 at 4:50 PM, Jim Ohlstein wrote:
>
>> Hello,
>>
>> > Is it possible that your script is trying to
at the directory is. I've given permission to the entire folder:
chown www-data /var/www/osticket
chmod -R 777 /var/www/osticket
But that doesn't seem to help. I'm new to Linux, though, so I may have
missed something. I can't imagine where else it would be trying to write to.
&g
> try_files $uri $uri/ /scp/ajax.php?$query_string;
> }
>
> location / {
> try_files $uri $uri/ index.php;
> }
>
>
> location ~ \.php$ {
> fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
> fastcgi_pass unix:/var/run/php-fpm.sock;
&g
ning successfully, I'd love to know how you did it. Hopefully the
OSTicket team will eventually support Nginx natively, but I'm not holding
my breath.
--
Alex Hall
Automatic Distributors, IT department
ah...@autodist.com
___
nginx mailing list
1, 2016 at 10:44 AM, Andrew Hutchings
wrote:
> Hi Alex,
>
> nginx -V uses stderr, so try:
>
> nginx -V 2>/tmp/out.txt
>
> This will redirect stderr to the file instead of stdout.
>
> Kind Regards
> Andrew
>
> On 11/05/16 15:34, Alex Hall wrote:
>
>
alias /var/www/myapp/app/static;
}
}
On Wed, May 11, 2016 at 3:24 AM, Francis Daly wrote:
> On Tue, May 10, 2016 at 05:09:21PM -0400, Alex Hall wrote:
>
> Hi there,
>
> > We may be finding the problem... I'm not sure what you mean by 'upstream
> > s
Yes, I'm using uwsgi_pass:
uwsgi_pass 127.0.0.1:9876;
On Wed, May 11, 2016 at 9:54 AM, Aleksandar Lazic wrote:
> Hi Alex,
>
> Am 11-05-2016 09:24, schrieb Francis Daly:
>
>> On Tue, May 10, 2016 at 05:09:21PM -0400, Alex Hall wrote:
>>
>> Hi there,
>>
ve a deep
enough grasp of how all this works to know what to put in one for UWSGI.
I'll certainly start looking this up, though.
On Tue, May 10, 2016 at 4:30 PM, Francis Daly wrote:
> On Tue, May 10, 2016 at 03:29:24PM -0400, Alex Hall wrote:
>
> Hi there,
>
> > Sometimes,
x has given up on
it, so I see an IOError reported in the log because of a broken pipe. I'm
wondering how I can increase the timeout limit, to make Nginx wait longer
before closing this connection? Thanks!
--
Alex Hall
Automatic Distributors, IT department
ah...@au
rs in
my Nginx log. Incidentally, if anyone has gotten OSTicket to work under
Nginx and wouldn't mind emailing me off list, I'd love to pick your brain
about what might be going wrong with the installation.
On Tue, May 10, 2016 at 9:21 AM, Alex Hall wrote:
>
>
> On Tue, May 10,
ite's file? Or is there another way?
On Tue, May 10, 2016 at 9:46 AM, mex wrote:
> Hi Alex
>
> this might be an inspiration for your task:
>
> https://www.howtoforge.com/nginx-how-to-block-visitors-by-country-with-the-geoip-module-debian-ubuntu
>
>
>
> cheers
7;t a server, it's a rule I want applied to all
servers. Is this doable? If so, what's the process? Thanks.
--
Alex Hall
Automatic Distributors, IT department
ah...@autodist.com
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
On Tue, May 10, 2016 at 8:21 AM, Francis Daly wrote:
> On Mon, May 09, 2016 at 05:52:47PM -0400, Alex Hall wrote:
>
> Hi there,
>
> without knowing anything about OSTicket...
>
> > FastCGI sent an stderr: unknown script while reading response header from
> > upstre
gestions, please let me know. If you need to see more
configuration files, I can try to do that. The setup here is awkward (SSH
from Windows to Debian, with no SCP support currently and no way to copy
from or to the SSH session). I can copy files, but it's a bit of a process.
Anyway, thanks in advan
Yep I think thats what i was asking.
We have a home grown RP at work that does it and IIS used to do it,
apply cert requirements on part of the tree.
On 2 February 2016 at 20:56, Aleksandar Lazic wrote:
> Dear Alex.
>
> Am 02-02-2016 04:32, schrieb Alex Samad:
>>
>> Hi
Hi
Is it possible with nginx to do this
https://www.abc.com
/
/noclientcert/
/clientcert/
so you can get to / with no client cert, but /clientcert/ you need a
cert, but for /noclientcert/ you don't need a cert.
Looks like from the config doco you can only set it for the whole tree ...
A
.
How can I achieve this? I know this isnt very secure because anybody
can emuliate a x_forwarded_ip but this is just an additional layer of
protection in place.
Thanks
Alex.
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailma
Hello Maxim,
On 2014-11-21 20:23, Maxim Dounin wrote:
Unless in your workload nginx is CPU-bound, I would recommend to
let the OS scheduler to do the work.
Thanks, than I will let the OS scheduler decide (in my workload,
php5-fpm is CPU-bound).
Again, appreciated your help!
Alex
(similar to example in
http://nginx.org/en/docs/ngx_core_module.html#worker_cpu_affinity). For
a medium-sized frequented site, would you consider this the "correct"
way? Or would you leave out the worker_cpu_affinity setting and let the
CPU scheduler do the rest?
Thanks for your h
Hey guys,
Once i have nginx installed with php fastcgi. Is it possible to preppend
a php script to be executed when serving any request? (similar to apache
prepend function). If yes could I please have an example. Thanks
Alex
___
nginx mailing
Hi again,
On 2014-08-18 09:17, Alex wrote:
Hi,
I have successfully compiled nginx/1.7.4 with boringssl. One thing I
am not sure if it's possible already is to take advantage of
equal-preference cipher groups that Boringssl supports.
[...]
Would this already work with nginx' s
rther patching to support such grouping parameter?
Alex
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Iam trying to whitelist some IPs in the geo #connlimit1 so that the
limit_conn doesnt apply to it. For some reason its not working... those
ips are always being limited. I must be doing something obviously wrong
guidance appreciated.
Alex
server {
geo $connlimit1 {
default 1
1 - 100 of 135 matches
Mail list logo
