> This depends on how your certificate is issued. If your certificate is
issued directly by root CA certificate, then you don't need any extra certs
here. If there are some intermediate certs, then you'll have to put them
also.
> When this directive was introduced, almost all certificates were issu
Hi,
There are some tweaks required to nginx configurations. If the same
image which usually takes second to response can takes upto 10-20 seconds
to load, the wide guess would be exceeding concurrent connections at peak
traffic. The directive worker_rlimit_nofile value is set much lower as
comp
Hi Francis,
> Can you tell from nginx logs whether the slowness is due to
> slow-read-from-disk, or slow-write-to-client, or something else?
Could you please tell me how to check this out?
My nginx logs do not contain this sort of information.
> Can you find any pattern in the requests which res
Hello!
On Thu, May 07, 2015 at 11:54:21AM -0400, 173279834462 wrote:
[...]
> problem 1
> -
>
> nginx's "ssl_certificate" (note the singular) is truly a bundle of the
> certificate and the intermediate.
> In fact, if we remove the intermediate, we break the chain.
>
> The descript
> Note that this isn't really indicate anything: there are two forms of OCSP
requests, POST and GET. And Firefox uses POST, while nginx uses GET. Given
the fact that the responder was completely broken just a few days ago - it's
quite possible that it's still broken for GETs in some cases.
To comp
Hello!
On Thu, May 07, 2015 at 10:58:11AM -0400, zilog80 wrote:
> Hi thanks for the answer
>
> infact I add in the main
>
> "resolver 8.8.8.8 8.8.4.4;"
>
> you means that in my config I have a names without dns resolution?
Hostnames of OCSP resolvers are resolved during configuration
testin
Hi thanks for the answer
infact I add in the main
"resolver 8.8.8.8 8.8.4.4;"
you means that in my config I have a names without dns resolution?
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,258721,258723#msg-258723
___
nginx mailing lis
Hello!
On Thu, May 07, 2015 at 10:17:14AM -0400, zilog80 wrote:
> Hi all
>
> after several modification (implemented ocsp stapling) the command
>
> "service nginx configtest"
>
> I wait the return of configtest for circa one minute
>
> i don't understand the problem, before the command run in
Hi all
after several modification (implemented ocsp stapling) the command
"service nginx configtest"
I wait the return of configtest for circa one minute
i don't understand the problem, before the command run in on second or less.
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,25872
Hi,
It looks like we made the false calculation based on entertaining
concurrent connections per seconds and worker_connections limit was set to
be very low. I've increased this limit to 16000 and issue looks to be
fixed. Here's the mechanism i used to calculate concurrent connections/sec:
wor
Hello!
On Wed, Apr 29, 2015 at 05:09:26PM -0400, lieut_data wrote:
> Thanks for getting back to me so quickly!
>
> Maxim Dounin Wrote:
> ---
> > What nginx doesn't support (or, rather, explicitly forbids) is
> > renegotiation. On the other ha
11 matches
Mail list logo
