Ok fixed the patch and yup working now! No more socket() 0.0.0.0:80 failed
(94: Socket type not supported) errors when listen directive is not
specifically set.
Thanks Roman!
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295642,295646#msg-295646
_
That was a quick reply, was about to pop on Nginx slack channel :)
Tried the patch but getting
patching file src/http/ngx_http_core_module.c
patch: malformed patch at line 18: lsopt.socklen = sizeof(struct
sockaddr_in);
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,295642,29564
I tested nginx-quic https://quic.nginx.org/README for HTTP/3 over QUIC using
quictls openssl 1.1.1q forked library and ran into an interesting error for
non-HTTPS nginx vhost configurations. If non-HTTPS nginx vhost doesn't
specifically list the listen directive for port 80, I get this error when
r
I see. I am currently trying to use the $pool assigned variable for PHP-FPM
though as in
fastcgi_pass $pool;
and not proxy_pass
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,293738,293741#msg-293741
___
nginx mailing list -- nginx@nginx.o
0.0.1:9000;
"~/index.php/args" 127.0.0.1:9002;
}
upstream php {
zone php_zone 64k;
server $pool;
keepalive 2;
}
But if I try this, nginx config test gives me
nginx -t
nginx: [emerg] host not found in upstream "$pool" in ...
What am I missing?
cheers
George
Post
Maxim Dounin Wrote:
---
> Hello!
>
> On Wed, Dec 29, 2021 at 11:30:04PM -0500, George wrote:
>
> > Thanks for PCRE2 support!
> >
> > From what I read Nginx 1.21.5 will default to PCRE2 if found or
> fallback to
Thanks for PCRE2 support!
>From what I read Nginx 1.21.5 will default to PCRE2 if found or fallback to
PCRE if not
You can disable PCRE2 default by passing --without-pcre2 flag - which works
fine and
ldd $(which nginx)
shows
libpcre.so.1 => /usr/local/nginx-dep/lib/libpcre.so.1 (0x7f86c744
disconnects? This would be useful when the upstream
is not good at directly handling the disconnect (not async, and still
processing the response for the now-disconnected client). This could help
clean up resources, on a parallel channel.
Best,
George
Posted at Nginx Forum:
https://forum.nginx.org
Thank you Maxim.
Adding an extra variable to the spnego auth module sounds intriguing, but
also challenging because; as you mention "rate limiting happens before
access checks" and this module mainly deals with access checks until now.
Sounds like an extra level of proxying is the way ahead for now
d-User $remote_user;"... Apparently $remote_user
only works for request limiting when using basic authentication.
Thank you for any suggestions/pointers.
Best,
George
--
This message, and any attachments, is for the intended recipien
I see. Thanks Maxim for the clarification. Much appreciated :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,284368,284402#msg-284402
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
I am trying to troubleshoot a duplicate listen options error that only
happens on one server and not the other.
>From docs at http://nginx.org/en/docs/http/ngx_http_core_module.html backlog
listen directive works for each ip:port pair so I should be able to set
backlog directive on listen directiv
Roadmap suggests it is in Nginx 1.17 mainline QUIC = HTTP/3
https://trac.nginx.org/nginx/roadmap :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,256352,284367#msg-284367
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailm
yeah updated mercurial works
https://forum.nginx.org/read.php?2,283686,283694#msg-283694 though centos 7
still will use non-SNI supported mercurial 2.6.2 so folks doing hg clone for
njs repo will always have this issue.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,283686,283695#msg-2
okay part of the problem is centos 7 uses mercurial 2.6.2 and fix is to
update to mercurial >2.7.9 for SNI support
hg --version
Mercurial Distributed SCM (version 2.6.2)
(see http://mercurial.selenic.com for more information)
Copyright (C) 2005-2012 Matt Mackall and others
This is free software;
looks like hg clone is a non-SNI request so looked up pubserv.nginx.com's
SSL cert *.nginx.com common name so maybe best to add *.nginx.org as well to
pubserv.nginx.com server's SSL cert ?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,283686,283692#msg-283692
testssl 3.0rc4 output for
testssl hg.nginx.org:443
Testing server defaults (Server Hello)
TLS extensions (standard)"server name/#0" "renegotiation info/#65281"
"EC point formats/#11" "session ticket/#35" "heartbeat/#15" "next
protocol/#13172" "application layer protocol negotiation/#16"
for that i get
echo -n | openssl s_client -connect hg.nginx.org:443 -servername
hg.nginx.org
CONNECTED(0003)
depth=2 O = Digital Signature Trust Co., CN = DST Root CA X3
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
verify return:1
depth=0 CN = mailman.ngin
Hi when I try to clone njs repo I am getting the error below
hg clone https://hg.nginx.org/njs/
abort: hg.nginx.org certificate error: certificate is for *.nginx.com,
nginx.com
(configure hostfingerprint
bd:90:5e:95:b4:51:d8:0b:b0:36:41:6f:99:a7:80:01:4e:cf:ee:c2 or use
--insecure to connect inse
Thanks Maxim. Guess we just need to wait :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,281512,281540#msg-281540
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Nginx supports BoringSSL too and it already has ESNI support apparently
https://www.theregister.co.uk/2018/07/17/encrypted_server_names/
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,281512,281517#msg-281517
___
nginx mailing list
nginx@ngi
/1.14.0_2/common/usr
-Original Message-
From: Maxim Dounin [mailto:mdou...@mdounin.ru]
Sent: Friday, September 14, 2018 7:19 PM
To: Nica, George via nginx
Cc: Nica, George
Subject: Re: WWW-Authenticate in 200 OK response
Hello!
On Fri, Sep 14, 2018 at 08:59:16PM +, Nica, George via
HttpOnly; Path=/
header: Access-Control-Allow-Credentials: true
[2018-09-14 14:46:14.779] client_http_auth CRITICAL: GSSAPI failed!
Best regards,
George
--
This message, and any attachments, is for the intended recipient(s) only, m
correct meant vhost #1
'but if i had the 3 nginx vhosts where reuseport was used on vhost #3
instead of vhost #1, i get error '
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,280710,280711#msg-280711
___
nginx mailing list
nginx@nginx.org
h
I know that nginx reuseport is only usable per ip:port pair so I am confused
about this error.
I have 3 nginx vhosts
vhost #1
server {
listen 443 ssl http2 default_server backlog=2048 reuseport;
}
vhost #2
server {
listen 80 default_server backlog=2048 reuseport fastopen=256;
}
vhost #3
thanks Ruslan just tested your committed fixes for this in master branch and
working nicely
https://community.centminmod.com/threads/hurray-http-2-server-push-for-nginx.11910/page-2#post-59602
:)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,278481,278608#msg-278608
_
Thanks for that video link :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,278481,278585#msg-278585
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
thanks Ruslan for the update appreciate all your work and looking forward to
playing with HTTP/2 Push finally ! :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,278481,278582#msg-278582
___
nginx mailing list
nginx@nginx.org
http://mailman.
Reported bug at https://trac.nginx.org/nginx/ticket/1478
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,278481,278488#msg-278488
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hi compiled Nginx 1.13.9 from master branch to try out HTTP/2 Server Push
but noticed the pushed assets loose their gzip compression and are served as
non-compressed assets ? Is that as intended ? I posted my findings at
https://community.centminmod.com/threads/hurray-http-2-server-push-for-nginx.1
yeah just use nginx open source free version if you need compile support -
updated guide at
https://www.nginx.com/blog/compiling-and-installing-modsecurity-for-open-source-nginx/
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,276008,276018#msg-276018
__
Hi all,
i am running nginx version: nginx/1.12.0.i got following server block config
as below, all request match regular expression work well,but request to server
s01.example.com return 404.what's wrong? i googled for a while,most of the
article said,it first try to match literal string ,th
thanks Vladimir :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,274289,274312#msg-274312
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
thanks for sharing. Is it necessary to compile with --with-debug ?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,274289,274299#msg-274299
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Nginx compiles successfully with nginScript as a dynamic module.
nginx -V
nginx version: nginx/1.11.12
built by clang 3.4.2 (tags/RELEASE_34/dot2-final)
built with LibreSSL 2.4.5
TLS SNI support enabled
configure arguments: --with-ld-opt='-lrt -ljemalloc -Wl,-z,relro
-Wl,-rpath,/usr/local/lib' --w
thanks Maxim working nicely here !
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,271747,271754#msg-271754
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Yeah some other nginx modules by OpenResty ran into 1.11.6 changes
* https://github.com/openresty/redis2-nginx-module/issues/41
* https://github.com/openresty/memc-nginx-module/issues/26
the workarounds
* https://github.com/openresty/redis2-nginx-module/pull/42
* https://github.com/openresty/me
I use nginx maps which depending on user agent either block, rate limit or
whitelist
https://community.centminmod.com/threads/blocking-bad-or-aggressive-bots.6433/
as the list gets large nginx maps just make it easier to manage
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,270930,270
thanks Igor very insightful :)
I guess tricky issue is for SEO forum closure having SEO friendly http
status code alternative to 503 ?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,270850,270854#msg-270854
___
nginx mailing list
nginx@ngi
Was wondering if anyone could shed some light on this issue I am
experiencing only with multiple php-fpm pool setups but not with single
php-fpm pool. The issue is when a forum software like Xenforo or Invision
board uses their native forum close option to turn off the forums for guests
but still a
Hi Igor thanks for the clarification. Looking forward to updated
examples/wiki for nginScript :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,269548,269559#msg-269559
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/
and examples in wiki for nginxScript for js_run
https://www.nginx.com/resources/wiki/nginScript/#section-1-overview
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,269548,269552#msg-269552
___
nginx mailing list
nginx@nginx.org
http://mailman
even
location /njs {
js_run "
var res;
res = $r.response;
res.status = 200;
res.send('Hello World!');
res.finish();
";
}
gives an error
nginx -t
nginx: [emerg] unknown directive "js_run" in
/usr/local/nginx/conf/conf.d/virtual.conf:36
nginx: conf
sorry i meant from old example readme at
http://hg.nginx.org/njs/file/11d4d66851ed/README
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,269548,269550#msg-269550
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinf
Tried compiling nginScript with nginx 1.11.4 as a dynamic module and the
README github example at https://github.com/nginx/njs/blob/master/README
gives me js_run unknown directive so looks like maybe didn't install
correctly ?
CentOS 7.2 64bit
nginx -V
nginx version: nginx/1.11.4
built by gcc 4.8
yeah ran into the same problem and still seems to be down right now
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,269359,269379#msg-269379
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
thanks Maxim works now :)
cat /usr/local/nginx/conf/dynamic-modules.conf
load_module "modules/ngx_http_image_filter_module.so";
load_module "modules/ngx_http_fancyindex_module.so";
load_module "modules/ngx_stream_module.so";
load_module "modules/ngx_stream_geoip_module.so";
load_module "modules/ng
trying to enable ngx_stream_geoip_module as a dynamic module and getting
this error ONLY on SOME servers and not others all compiled with same
settings ?
nginx -t
nginx: [emerg] dlopen()
"/usr/local/nginx/modules/ngx_stream_geoip_module.so" failed
(/usr/local/nginx/modules/ngx_stream_geoip_module.
nice RSA + ECDSA certs support !
what's the recommended way to setup HTTP Public Key Pinning with regards to
dual SSL certificates ?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,267113,267124#msg-267124
___
nginx mailing list
nginx@nginx.
cheers agentzh thanks for that workaround for LibreSSL and
ssl_certificiate_by_lua* incompatibility :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,265422,265450#msg-265450
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/ma
thanks I switched back to OpenSSL for now :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264770,264794#msg-264794
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Thanks Maxim and Nginx !
But no love for LibreSSL users as Nginx 1.9.12 seems to broken compilation
against LibreSSL 2.2.6 for me https://trac.nginx.org/nginx/ticket/908#ticket
?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264770,264780#msg-264780
Curious if anyone has heard or knows if or when Nginx HTTP/2 support will
add server push https://http2.github.io/faq/#how-can-i-use-http2-server-push
?
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264252,264252#msg-264252
___
nginx mailin
Thanks updated to 1.9.10 fine with ngx_brotli + ngx_pagespeed 1.10 branch :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264158,264187#msg-264187
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
yup very stable for me on 1.9.7 + HTTP/2 + ngx_pagespeed :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,263313,263337#msg-263337
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Folks might also want to look into letsencrypt client's webroot
authentication plugin see
- http://letsencrypt.readthedocs.org/en/latest/using.html#plugins
-
https://community.letsencrypt.org/t/letsencrypt-webroot-authentication-tested-on-beta-invited-whitelisted-domain/227612
-
https://community
cheers Piotr :)
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,262088,262254#msg-262254
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
and Firefox
43 dev edition as they don't support Brotli so I am assuming Firefox 44 +
brotli is what is breaking ngx_pagespeed ?
cheers
George
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,262088,262190#msg-262190
___
nginx mailing
thanks Piotr for the clarification
definitely going to give ngx_brotli a spin :D
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,262088,262189#msg-262189
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
interesting thanks for sharing :)
so how does this interact or conflict with gzip static/gzip ? do we need to
turn off gzip/gzip static in nginx to use brotli or can both be enabled ?
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,262088,262096#msg-262096
_
It's already slated for Nginx 1.9.5 community/free edition :)
Although I have been playing with HTTP/2 patches since Nginx 1.9.3 :D
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,261669,261676#msg-261676
___
nginx mailing list
nginx@nginx.or
thanks Igor and Nginx !
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,260658,260666#msg-260666
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Tested fine with ECC 256 bit and RSA 2048 bit SSL and chacha20_poly1305
https://community.centminmod.com/threads/nginx-and-libressl-alternative-to-openssl.3146/
:)
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,259325,259333#msg-259333
___
ng
thanks seems with LibreSSL 2.1.6 no longer need the steps for creating
.openssl/lib and copying files to that directory and symlink to make it
work
seems it works on Nginx 1.9.1 with LibreSSL 2.1.6 sweet !
nginx -V
nginx version: nginx/1.9.1
built by gcc 4.8.3 20140911 (Red Hat 4.8.3-9) (GCC)
b
CentOS/Redhat ? Any issues that needed working around or any features lost ?
e.g. BoringSSL and OSCP stapling support etc ?
Recommended steps for compilation with Nginx ?
thanks
George
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,259325,259325#msg-259325
vozlt/nginx-module-vts/issues/13
cheers
George
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,256699,259274#msg-259274
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
thanks Sarah
dug deeper and apparently those nginx reported header sites were behind
Google Pagespeed's service so that must of been why HTTP/2 was reported
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,256561,257778#msg-257778
___
nginx ma
Nginx with HTTP/2
already ? As I have seen 2 sites so far which show Nginx headers but being
served via h2-14 in Chrome/Opera 28 so far.
cheers
George
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,256561,257730#msg-257730
___
nginx mailing
or /home/username2 ?
thanks
George
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,257127,257127#msg-257127
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
maybe switch to using Wordpress Super Cache ? handled blitz.io 8000 user
stress test fine with Nginx 1.7.7, PHP-FPM 7.0.0-dev, MariaDB 10.0.x and
CentOS 7.0 = 237 million hits/day on 2GB DigitalOcean KVM VPS server
http://wordpress7.centminmod.com/74/wordpress-super-cache-benchmarks-blitz-io-load-t
thanks Alex so what's the updated way to compile Nginx against BoringSSL ?
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,252640,252779#msg-252779
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Thanks for sharing :)
So SPDY/3.1 SSL works ?
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,251740,251748#msg-251748
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
thanks for the reply and fix :)
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,249586,249595#msg-249595
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
removing these lines in
/usr/local/rvm/gems/ruby-2.1.1/gems/passenger-4.0.41/ext/nginx/StaticContentHandler.c
seem to have allowed it to compile properly
if (r->zero_in_uri) {
return NGX_DECLINED;
}
nginx -V
nginx version: nginx/1.7.0
built by gcc 4.4.7 20120313 (Red Hat 4.4.7-4) (GC
grep -C10 zero_in_uri
/usr/local/rvm/gems/ruby-2.1.1/gems/passenger-4.0.41/ext/nginx/StaticContentHandler.c
if (!(r->method & (NGX_HTTP_GET|NGX_HTTP_HEAD|NGX_HTTP_POST))) {
return NGX_HTTP_NOT_ALLOWED;
}
if (r->uri.data[r->uri.len - 1] == '/') {
return NGX_DECLINED;
Anyone experience this problem ? I have Nginx 1.5.13 working fine with
Phusion Passenger 4.0.37 source compile. But trying to update Nginx from
1.5.13 to 1.7.0 fails at make stage. I tried both Phusion Passenger 4.0.37
and 4.0.41 and it fails.
Working Nginx 1.5.13 configuration
nginx -V
nginx ver
Maybe this will help
http://www.howtoforge.com/using-ngx_pagespeed-with-nginx-on-debian-wheezy
and
http://www.howtoforge.com/using-ngx_pagespeed-with-nginx-on-debian-jessie-testing
- right up your alley for Debian distro :)
I personally use CentOS build via Centmin Mod Nginx as it already includes
to define the Nginx configure?
Thanks & Regards
George yuan
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
I see i believe my problem is #2 as i have another vhost with spdy enabled
on same addr:port pairing !
Thanks Valentin :)
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,242665,242668#msg-242668
___
nginx mailing list
nginx@nginx.org
http://m
I want to test non-SPDY vs SPDY performance for Nginx and I have Nginx
compiled with SPDY support and it's enabled by adding to listen directive
the spdy option as per
http://nginx.org/en/docs/http/ngx_http_spdy_module.html.
I thought that omitting the spdy option would disable SPDY temporarily ?
Yup http://ngxpagespeed.com/ isn't accessible at all from my end either.
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,238650,238656#msg-238656
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
81 matches
Mail list logo
