On Fri, 2011-01-21 at 13:32 +0000, Valery Kholodkov wrote: > I have registered myself on launchpad.net. > > Now where is the Talks page of the Planet? See here: > > http://wiki.nginx.org/Planet > > "2. Add your request to the Talk page of Planet. " I think he means the talk page of the wiki page about the planet. http://wiki.nginx.org/Talk:Planet Cliff ____by Cliff Wells - Nginx Mailing List - English
On Tue, 2010-12-21 at 01:36 +0000, António P.P.Almeida wrote: > On 21 Dez 2010 00h17 WET, cliff@develix.com wrote: > > > On Mon, 2010-12-20 at 16:01 -0800, David Newman wrote: > > > > Somewhat off-topic, but I switched from Godaddy certs to using > > https://www.thesslstore.com/ which sells non-chained certs for less > > than Godaddy charges for chained ones (by Cliff Wells - Nginx Mailing List - English
On Mon, 2010-12-20 at 16:01 -0800, David Newman wrote: Somewhat off-topic, but I switched from Godaddy certs to using https://www.thesslstore.com/ which sells non-chained certs for less than Godaddy charges for chained ones (I paid around $10/year for a RapidSSL cert vs $60/year for the Godaddy chained cert). As a bonus you don't have to navigate that gangrenous scab Godaddy calls a website. -by Cliff Wells - Nginx Mailing List - English
On Thu, 2010-12-16 at 06:26 +0300, Maxim Dounin wrote: > If you want master to be non-root you are free to start it as > normal user. Though you may need some OS tuning to allow it to bind > to privileged ports in this case (not sure if Linux will be able > to do this securely). setcap 'cap_net_bind_service=+ep' /usr/bin/nginx http://www.kernel.org/doc/man-pages/online/pages/manby Cliff Wells - Nginx Mailing List - English
On Mon, 2010-11-29 at 18:36 +0300, Igor Sysoev wrote: > *) Bugfix: compatibility with ngx_http_eval_module; the bug had > appeared in 0.8.42. Hi Igor, Can you elaborate a bit on what this issue was? I know there was an issue introduced around this same time that affected some other 3rd party modules having to do with filters no longer receiving NGX_AGAIN or something (my memoby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-11-05 at 22:48 +0000, Frank Church wrote: > I compiled nginx from source and I am launching it > with /usr/local/nginx/bin/nginx. > > How is the source compilation added to the /etc/init.d list? You should specify what *nix you are using (Linux, BSD, SCO, OSX), along with whatever flavor/distro you may be using. There's some info on the wiki for a few variations, so youby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-11-05 at 16:11 -0400, dong wrote: > Im using FreeBSD and jails. I have my postfix on host, and main http > server in jail. > > When I set in jail (192.168.1.2): > > server { > <------>listen 80; > <------>server_name www.poczta.a.org poczta.a.org; > <------>access_log /var/log/nginx/poczta.a.org-access.log; > > <------>locaby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-10-15 at 05:30 -0400, sarahfoxnz wrote: > Hello. > > I'm new to Nginx - & set it up a week or so ago.. (with Codeigniter / > PHP).. > > Having problems. > > 1) > > Anyway, I tried tonight. & see I have a directory of \etc\nginx\conf.d\ > with nothing in it. Are you on Windows? > Is this folder a place to put config files ? Yes, inby Cliff Wells - Nginx Mailing List - English
On Wed, 2010-10-13 at 12:33 +0800, yung wrote: > After testing for some times (have been changing the arugments for > http_load), I found nginx with reverse-proxy is not better than the > realserver. > Even the result is worse for accessing nginx than access apache directly. > So how do you think about it? > Suggestions are welcome. Thanks. > If you use a Ferrari to tow aby Cliff Wells - Nginx Mailing List - English
On Sun, 2010-10-03 at 00:59 -0400, Ilan Berkner wrote: > Hi All, > > > I didn't realize that I needed a CGI wrapper for the nagios CGI > scripts, oops... When I am forced to run CGI, I usually choose one of the tiny HTTP servers such as thttpd (see http://wiki.nginx.org/ThttpdCGI) and proxy to it from Nginx. This keeps the memory footprint small (no Apache required) and still lby Cliff Wells - Nginx Mailing List - English
On Sat, 2010-10-02 at 16:49 -0400, bluethundr wrote: > Greetings > > > I am attempting to compile nginx-0.8.49 with the upstream fair module. > The configure script seems to run ok with the following options: > > > #./configure --add-module=../upfair > > > > but when I run make it fails with this error: > > > objs/src/os/unix/ngx_process.o: Iby Cliff Wells - Nginx Mailing List - English
Sorry about the outage this morning. Patching for new 0-day kernel vulnerability on 64 bit Linux systems. http://blog.ksplice.com/2010/09/cve-2010-3081/ Cliff -- _______________________________________________ nginx mailing list nginx@nginx.org http://nginx.org/mailman/listinfo/nginxby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-09-17 at 11:27 -0500, Ryan Malayter wrote: > Is it possible to conditionally disable keep-alives via some sort of > configuration? I have a customer with a buggy proxy that they cannot > fix short-term, but I do not want to disable keepalives entirely for > every user. With keepalives enabled, they intermittently see "raw" > HTTP streams in the browser, headerby Cliff Wells - Nginx Mailing List - English
On Wed, 2010-09-08 at 12:40 -0400, jlangevin wrote: > So apparently Engine Yard has a patch for Nginx, called > nginx-ey-balancer, to add a max_connections directive for connections > being passed upstream. > The patch is to fix issues such as Mongrel backend servers being dropped > by Nginx (at least, that's my understanding). Not exactly. The issue being solved is that Rails caby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-08-27 at 11:15 -0700, Michael Shadle wrote: > On Fri, Aug 27, 2010 at 11:13 AM, Cliff Wells <cliff@develix.com> wrote: > > > It is subtle, but all fixes are, because the underlying vulnerability is > > quite subtle. What user isn't going to look at that and say to > > themselves "why do I need this if statement?". Just use the try_files >by Cliff Wells - Nginx Mailing List - English
On Fri, 2010-08-27 at 18:48 +0100, Ed W wrote: > On 27/08/2010 18:05, Cliff Wells wrote: > > Nevertheless, I've updated the MediaWiki entry. > > I'm still having problems getting to the wiki - no .js files are loading > which is causing some wierd stuff to happen. I do not see any issues... does anyone else have a problem? > However, my opinion is that just adding try_fileby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-08-27 at 19:52 +0200, ubitux wrote: > On Fri, Aug 27, 2010 at 06:48:12PM +0100, Ed W wrote: > > On 27/08/2010 18:05, Cliff Wells wrote: > > >Nevertheless, I've updated the MediaWiki entry. > > > > I'm still having problems getting to the wiki - no .js files are > > loading which is causing some wierd stuff to happen. > > > > However,by Cliff Wells - Nginx Mailing List - English
On Fri, 2010-08-27 at 18:21 +0100, Ed W wrote: > > Nevertheless, I've updated the MediaWiki entry. I'm sure there's still > > 8000 other security holes in MediaWiki that allow remote execution of > > code, but hopefully this isn't one of them. > > The nginx wiki has of a few moments ago stopped responding for me? I > could get to it a before, now the browser just haby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-08-27 at 11:13 -0600, Adam Younce wrote: > Gentlemen, please. Let's keep this civil. > > The simplest solution to the problem presented would be to change the > wiki to encourage users to set their upload directory to a location > not served by nginx (and thus not executable by PHP). This is > *entirely* a PHP configuration issue. This won't work for most canned apby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-08-27 at 17:45 +0100, Ed W wrote: > On 27/08/2010 17:32, Nuno Magalhães wrote: > >> I said to stop complaining about the content of the Wiki and feel > >> free to fix it. You seem to have all the answers. > > > >> Oh fuck off you twit. > > Gee, you're so mature. > > How is your post advancing the solution? > > How about you avby Cliff Wells - Nginx Mailing List - English
Are you certain it's Nginx and not Tornado? You might try using # issue warning if we block for over 200ms tornado.ioloop.set_blocking_log_threshold (0.2) Also you don't mention how many Tornado backends you have. If you don't have at least one Tornado backend per Nginx worker, you are probably wasting your time trying to tune Nginx. As an aside, you might check out ngx_postgres or ngx_driby Cliff Wells - Nginx Mailing List - English
Attached. You need to add a line to get_language_name_from_extension() in extensions/geshi/geshi/geshi.php like this: 'nginx' => array() and save the attached file to extensions/geshi/geshi/geshi/nginx.php. Regards, Cliff On Tue, 2010-08-24 at 13:10 -0400, brianmercer wrote: > Does anyone have a language file for nginx configurations for the GeSHI > syntax highlighter? Or have you uby Cliff Wells - Nginx Mailing List - English
This config does not have any location ~ \.htm$ { } Please post the actual, real config you are using. Trying to debug a phony config is a waste of time. Cliff On Wed, 2010-08-18 at 13:31 -0400, codetr wrote: > my nginx.conf > > #user nobody; > worker_processes 1; > > #error_log logs/error.log; > #error_log logs/error.log notice; > #error_log logs/error.log iby Cliff Wells - Nginx Mailing List - English
On Tue, 2010-08-17 at 17:38 -0700, antituhan wrote: > If I put the deny rules on a root directive, the rule will blocked all > access. Not a root location, a root *directive*: http://wiki.nginx.org/NginxHttpCoreModule#root Since you now get 404's for authorized clients, then it appears you are not properly setting your root for this location. > But I just want to block the specifiedby Cliff Wells - Nginx Mailing List - English
On Fri, 2010-03-26 at 11:10 +0100, Luka Horvatic wrote: > Edho P Arief wrote: > > On Fri, Mar 26, 2010 at 6:48 AM, Luka Horvatic <lists@ruby-forum.com> > > wrote: > >> That command in apache htaccess allows to read htm files as php,so then > >> you can load php file with extension htm.How do i enable this on nginx? > >> -- > > > > locatby Cliff Wells - Nginx Mailing List - English
On Mon, 2010-08-16 at 10:27 -0700, antituhan wrote: > Thanks, but this rules will show 404 not found on my site :( > Unlisted IP (allowed IP) will be redirected to 404 not found page. You need to have a root directive. Either put one in the server section (generally preferred) or if your .exe's are in a particular place, you can put it in the location directive. If that doesn't fix it theby Cliff Wells - Nginx Mailing List - English
On Thu, 2010-08-12 at 13:44 -0700, antituhan wrote: > Hi, Could nginx restrict direct link access / hotlink access to > specified file/extension ? > I try to write the rules like this : > location ~ ^/*(\.exe)$ { > deny ip.ad.dr.es; > } location ~ \.exe$ { deny ip.ad.dr.es; } Cliff -- _______________________________________________ nginx mailing list nginx@by Cliff Wells - Nginx Mailing List - English
On Thu, 2010-08-12 at 17:10 +0200, Mesaya@gmx.de wrote: > Are the vulnerabilities listed at http://nginx.org/en/security_advisories.html fixed in the recent debian lenny packet? > > # nginx -v > nginx version: nginx/0.6.32 > > I've installed nginx through apt-get install nginx, am I vunerable to any of those vulnerabilities? The vulnerable versions are listed on the page you lby Cliff Wells - Nginx Mailing List - English
On Wed, 2010-08-04 at 22:44 +0100, Ed W wrote: > See, just checked the wiki. Surely this example allows you to > immediately upload a new file with a .php suffix and exploit the server? > http://wiki.nginx.org/NginxMediaWiki Mediawiki doesn't allow that. It filters by an allowed list of extensions, and .php isn't among them. Of course, if you can also let Nginx provide anotherby Cliff Wells - Nginx Mailing List - English
On Mon, 2010-06-21 at 18:08 -0700, Cliff Wells wrote: > On Tue, 2010-06-22 at 00:14 +0100, Ian Hobson wrote: > > pcre and zlib are not packages apt-get recognises. > > Yes, they just follow the weird Debian naming "conventions": > > # aptitude install libpcre3-dev libssl-dev zlib1g-dev BTW, I highly suggest using aptitude in place of apt-get for all your packageby Cliff Wells - Nginx Mailing List - English