Lukas, you're of course right!
My mistake, I see so many times the "ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY"
error that I forgot there was another one which is completely different.
Shahzaib, I'm very sorry, I can't help you :-(
As said by Lukas, have you tried others files than the mp4 we see in y
Hello!
This issue often happens when a cipher is missing in your cipher list and
Chrome tries to use another cipher forbidden in the HTTP/2 spec. Using SSL
Labs would normally display such error (in the "Handshake Simulation" part
of thei results).
And yes, Chrome sucks for displaying an error re
Hello :-)
Maxim Dounin Wrote:
---
> Yes, but there isn't much difference: as long as httpready sees
> something different from a HTTP request, it just passes the
> connection to nginx.
>
> Quoting accf_http(9):
>
> If something other tha
Hello !
steveh Wrote:
---
> listen 443 default_server accept_filter=httpready ssl;
> listen 80 default_server accept_filter=httpready;
Not related to your problem: I think you'll want "accept_filter=dataready"
for your SSL configuration.
Best
Hello,
Andrei Wrote:
---
> does not support HTTP/2 with "Server Push" (which most consider the
> primary
> boost in HTTP/2), however it is available in Nginx Plus (paid
No, parallel requests are the primary boost of HTTP/2.
Personally I'm very
Hello,
You just need fail2ban and no need to know Perl. But you'll probably need to
know regular expressions.
Fail2ban can be adapted to most log format, but nginx logs format is the
same as apache, so it's easy :-)
I'm sure you can find many tutorials to explain how to install and configure
it b
Hello,
Not sure if it can help you, because only some bots respect it and not in
the same way, but you could look at the "crawl-delay" directive in the
robots.txt file:
https://en.wikipedia.org/wiki/Robots_exclusion_standard#Crawl-delay_directive
Posted at Nginx Forum:
https://forum.nginx.org/re
Hello,
I don't agree with Robert Paprocki: adding modules like naxsi or modsecurity
to nginx is not a solution. They have bugs, performance hits, need patch
when there's new versions of nginx,...
gariac, you say you send 444 to hackers then use a script to display those.
Why not use fail2ban to s
GreenGecko Wrote:
---
> answering my own question. If any of the files are missing, it returns
> a
> 404.
Hello,
I've never used nginx-http-concat, but you can disable this behavior with
"concat_ignore_file_error on". Found in the doc:
https:/
Amanat Wrote:
---
> I can use 2 Gb ram whole day with apache and with Nginx even 32 gb ram
> works only for 5 min.
Oh, I wonder how I'm using nginx with PHP on servers with 2GB of RAM and no
swap... uptimes are in the hundreds days (reboots only
Hello,
Muhammad Yousuf Khan Wrote:
---
> I can access php files properly like info.php. to check whether php
> is
> working or not. however the problem part is wordpress.
>
> when i try to load my wordpress site chrome shows an error saying
> r
Hello,
I don't know CentOS, so I can't really help, but there are some instructions
here: http://nginx.org/en/linux_packages.html
And if you are getting an error, could you give more details (error,
commands you are typing,...)?
Best Regards
Posted at Nginx Forum:
https://forum.nginx.org/read.p
Hello!
George Wrote:
---
> But no love for LibreSSL users as Nginx 1.9.12 seems to broken
> compilation against LibreSSL 2.2.6 for me
> https://trac.nginx.org/nginx/ticket/908#ticket ?
Great news, there's a fix in LibreSSL:
https://github.com/li
Hello,
Great, thanks Andrew!
Best Regards
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,265036,265115#msg-265115
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hello,
Jim Ohlstein Wrote:
---
> If you need http2 there is always the option to compile your own nginx
> binary against a more modern version of OpenSSL than what your
> operating system provides, or to change operating systems to one which
> pr
Hello,
"In most cases HTTP/2 with NPN in OpenSSL 1.0.1 will work for now.", yes,
for now, sadly Google will remove the NPN support in Chrome "soon": "We plan
to remove support for SPDY in early 2016, and to also remove support for the
TLS extension named NPN in favor of ALPN in Chrome at the same
Hello,
You can check with this command found on this website:
https://unmitigatedrisk.com/?p=100
openssl s_client -connect login.live.com:443 -tls1 -tlsextdebug -status
If everything goes well, you should find something like:
"OCSP response:
==
OCSP Response
Hello,
Thanks for this new nginx release!
It would be great to officially support LibreSSL in nginx. Until now, nginx
had no problem compiling LibreSSL using "--with-openssl=".
Best Regards
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264770,264805#msg-264805
Hello,
Thanks also Maxim for your answer!
Best Regards
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264554,264559#msg-264559
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hello,
Thanks Valentin for your answer!
Best Regards
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,264554,264558#msg-264558
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hello,
To use pcre_jit ( http://nginx.org/r/pcre_jit ), is it mandatory to compile
nginx with "--with-pcre-jit"?
On FreeBSD, nginx isn't compiled with "--with-pcre-jit", but I can still use
"pcre_jit on;" without nginx throwing errors. So, does nginx really use PCRE
JIT in this case?
This bug rep
Hello again :-)
As said in my last message, in theory you shouldn't lose your configuration.
But : backup, backup and backup :-) And compile and test on a test server,
not on a production server :-)
Best Regards.
Posted at Nginx Forum:
https://forum.nginx.org/read.php?2,263657,263677#msg-263677
Hello Thierry,
Just rebuilding a Debian package and installing it shouldn't break anything.
But a problem or mistake can always happen, so I don't recommend doing
eveything I said in my previous message on your production server.
I don't think you want to spend your XMas fixing your server :-) So
Hello Thierry,
Here's a quick howto build a nginx debian package, I hope it's clear and
that I'm not making mistakes.
First, you need to get the source of nginx and others files to build the
package. You can probably do something like "apt-get source nginx", but I
prefer to go on this page: https
Hello,
It looks very interesting, but how the brotli static module works with the
gzip static module also enabled?
Best Regards
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,262088,262093#msg-262093
___
nginx mailing list
nginx@nginx.org
h
Hello,
I've found this archive explaining why it's not in the documentation:
http://mailman.nginx.org/pipermail/nginx/2012-November/036199.html
Best Regards
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,262008,262012#msg-262012
___
nginx m
Which version of chrome do you have? This version supports HTTP/2?
I've just tried https://www.onestopmarketing.club with chromium and the
network tab was correctly showing "h2".
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,261987,262001#msg-262001
___
Hello,
Just use Chrome/Chromium: open the dev tools (F12 key), choose the "Network"
tab and visit your website: "h2" should be displayed in the "Protocol"
column :-)
I don't remember, the "Protocol" column may not be visible by default: right
click on the column headers (Name, Status,...) then che
Hello,
Markus Linnala has found at least two bugs with afl-fuzz:
http://forum.nginx.org/read.php?29,261583
http://forum.nginx.org/read.php?29,261582
nginScript is very new, I'm sure you can help to test it if you know how to
use afl-fuzz.
Best Regards,
Olivier
Posted at Nginx Forum:
http://for
Hello,
If I understand well, you are streaming video files from PHP? Here PHP will
kill your performance and you really should avoid that and stream directly
from nginx.
Best Regards
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,260615,260861#msg-260861
_
Hello,
I've never used python with nginx, but there are some examples on how to
configure everything here:
http://wiki.nginx.org/Configuration#Python_via_FastCGI
Best Regards
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,260817,260818#msg-260818
_
Hello,
Thanks again Roman for the explanation and link!
Best Regards
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,260148,260179#msg-260179
___
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx
Hello Roman,
Thanks for the explanation.
At which moment this revalidation is executed? When there's a new client
request or is it done automatically when a cache entry is about to expire?
The nginx's cache manager is deleting expiring cache file, so I'm not sure
to understand how it all works.
B
Hello,
>From the documentation, I don't understand how the fastcgi_cache_revalidate
(or scgi_cache_revalidate or proxy_cache_revalidate or
uwsgi_cache_revalidate) works.
Please, can someone explain what nginx does when cache is enabled and the
revalidate directive is set to "on"?
Best Regards
Po
Hello,
Francis Daly asked you several times to check the access.log file (you
should not find the fragment part in there).
oscaretu and I told you browsers don't send the fragment part of an URL.
The problem isn't from nginx nor the browser: it's a normal behavior.
Best Regards
Posted at Nginx
Hello okamzol and thanks a lot for your answer!
Yes, it's exactly the same question, looks like I'll need to use include.
Best Regards
Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,260102,260104#msg-260104
___
nginx mailing list
nginx@ngin
Hello,
I'm using PHP with nginx 1.9.2 and it works great!
But there's something I don't understand with the add_header directive.
I use add_header in server and location block, but it seems only the one in
location is used.
If I remove the add_header in the location block, I get the header I adde
Why don't you try with requests to real pages, not to a fragment?
"#" and everything after this character isn't sent to the web server, it's
only used by the web client.
You really should read at least:
https://en.wikipedia.org/wiki/Fragment_identifier
Some browsers will keep the fragment after th
38 matches
Mail list logo
