Hi Lukas,
On 05/15/14 20:12, Lukas Tribus wrote:
I can login in the SAP-Gui and a connection is established:
May 15 10:10:54 ha1 haproxy[2294]: 128.130.YY.61:50947
[15/May/2014:10:10:54.680] router-zap router-12a 128.130.XXX.63:3299
1/30/86 3306 -- 0/0/0/0/0 0/0
and then the connection is
Hi,
Le 15/05/2014 20:12, Lukas Tribus a écrit :
Still, its strange, because timeout server is configured with 2 hours
in your case.
I answer quickly and will look at this thread tonight too, but this is
not true : the configuration is confusing because it declares
timeout client 7200s
On 05/16/14 09:19, Cyril Bonté wrote:
Hi,
Le 15/05/2014 20:12, Lukas Tribus a écrit :
Still, its strange, because timeout server is configured with 2 hours
in your case.
I answer quickly and will look at this thread tonight too, but this is
not true : the configuration is confusing because
Title: kit_600x500
Cliquez ici pour lire cet e-mail dans votre navigateur. Cliquez ici pour lire cet e-mail dans votre navigateur.Participez au grand jeu concoursDsinscrivez vous ici
Hi,
I just figured out some of the missing pieces. When sending USR1 to the
workers, they just close() their listening sockets instead of shutdown()
(like they do for TTOU), causing the file descriptor to stay open in the
parent process, which is why there are still epoll events coming in for it.
Hi,
On 15.05.2014 22:36, Lukas Tribus wrote:
backtrace full
This was somewhat complex. Iam using OpenWrt for HAProxy with eglibc.
Nevertheless here is the trace
ymbol file not found for linux-vdso.so.1
Reading symbols from /lib/libcrypt.so.1...done.
Loaded symbols for /lib/libcrypt.so.1
While going through the Qualys SSL test
(https://www.ssllabs.com/ssltest), one of the items it mentions is a DoS
vulnerability in regards to client-side initiated SSL renegotiation
(https://community.qualys.com/blogs/securitylabs/2011/10/31/tls-renegotiation-and-denial-of-service-attacks).
While
Hi Patrick,
While going through the Qualys SSL test
(https://www.ssllabs.com/ssltest), one of the items it mentions is a
DoS vulnerability in regards to client-side initiated SSL renegotiation
*From: *Lukas Tribus luky...@hotmail.com
*Sent: * 2014-05-16 13:23:43 E
*To: *Patrick Hemmer hapr...@stormcloud9.net, haproxy@formilux.org
haproxy@formilux.org
*Subject: *RE: Disable TLS renegotiation
Hi Patrick,
While going through the Qualys SSL test
(https://www.ssllabs.com/ssltest),
Hi Thomas,
This was somewhat complex. I am using OpenWrt for HAProxy with eglibc.
I see. Are you using local gdb on this box or are you transferring
executable and core to another box and backtracing there?
So HAProxy crashes as soon as acl tries to use
acl ex_de hdr_reg(host) -i
Hi,
I'm wondering how I can set up a simple ACL that is based on a field in the
Subject DN of the cert.
I want to restrict access to the backend matching %[ssl_c_s_dn(uid)] as part of
the URL.
Example:
URL for UID = 1234 would match /abc/1234/xyz
I've tried:
acl acl_uid url_reg
Hi,
On 16.05.2014 20:28, Lukas Tribus wrote:
Hi Thomas,
This was somewhat complex. I am using OpenWrt for HAProxy with eglibc.
I see. Are you using local gdb on this box or are you transferring
executable and core to another box and backtracing there?
Yes, Iam using a local gdb on the box
Hello Guys,
Do you know if there is any significant improvement between these 2 versions
?
I was considering to switch, but I couldn't notice anything related in the
changelogs, didn't I forgot checking something ?
Sincerely,
Fred
Hi guys,
On Fri, May 16, 2014 at 11:34:45PM +0200, Thomas Heil wrote:
So HAProxy crashes as soon as acl tries to use
acl ex_de hdr_reg(host) -i www\.example\.de
Ok, so its probably about the modifications in src/pattern.c.
No it was in
#
-diff --git a/src/cfgparse.c b/src/cfgparse.c
Hello Fred,
On Fri, May 16, 2014 at 08:35:58PM -0300, Fred Pedrisa wrote:
Hello Guys,
Do you know if there is any significant improvement between these 2 versions
?
With 1016 commits coming from 38 different contributors, I do hope
that there's indeed some improvements.
I was
Hi Conrad,
first, thanks for your detailed analysis.
[ merging your two mails for an easier response ]
On 05/15/2014 11:26 AM, Conrad Hoffmann wrote:
If haproxy has been running for a certain amount of time (this part
makes reproduction cumbersome), we quite often run into the following
16 matches
Mail list logo
