|
/
Zope
/
Apsis
/
Pound Mailing List
/
Archive
/
2006
/
2006-05
/
Re: [Pound Mailing List] TTL for sessions
[
TTL for sessions / Russell Valentine ... ]
[
pound 2.0.5 config file syntax / Michael Kaplan ... ]
Re: [Pound Mailing List] TTL for sessions
Russell Valentine <russ(at)altec.org> |
2006-05-15 21:03:16 |
[ SNIP ]
|
Russell Valentine said the following on 05/15/2006 01:53 PM:
> It the 2.0 versions of pound it looks like the TTL for sessions never
> gets refreshed on request. So unlike what the man page says the TTL
> would then be the expire time from the first request. I don't think this
> is desired behavior. This patch should fixes it. I wasn't quite sure
> about the SESS_IP sticky mappings as it looks like sess_clean doesn't
> mess with those.
>
I forgot attachments get taken out:
http://users.altec.org/~russ/Pound-last_acc.patch
|
|
|
Re: [Pound Mailing List] TTL for sessions
Robert Segall <roseg(at)apsis.ch> |
2006-05-17 19:45:05 |
[ SNIP ]
|
On Mon, 2006-05-15 at 13:53 -0500, Russell Valentine wrote:
> It the 2.0 versions of pound it looks like the TTL for sessions never
> gets refreshed on request. So unlike what the man page says the TTL
> would then be the expire time from the first request. I don't think this
> is desired behavior. This patch should fixes it. I wasn't quite sure
> about the SESS_IP sticky mappings as it looks like sess_clean doesn't
> mess with those.
Many thanks - we'll have a look at the changes and integrate them ASAP.
--
Robert Segall
Apsis GmbH
Postfach, Uetikon am See, CH-8707
Tel: +41-44-920 4904
|
|
|
Re: [Pound Mailing List] SSL Headers
Ondra Kudlik <kepi(at)orthank.net> |
2006-05-25 00:52:45 |
[ SNIP ]
|
I think you can do this with current pound. See man pages if it is
what you are looking for.
HTTPSHeaders 1
or you can add own headers with
HTTPSHeaders 1 "Your-own-header: your-value"
--
.''`. Ondra 'Kepi' Kudlik
: :' : Debian GNU/Linux User
`. `'
`- http://www.nosoftwarepatents.com/cz/m/intro/index.html
St, kvě 24, 2006 ve 05:30:58 +0100, Will Tatam napsal:
> Can an option be added to pass the X_SSL_* headers to the backend ?
>
> If this were done then our web apps could be built to detect the
> presence of these headers to determine if the page has been requested
> via https regardless of whether mod_ssl+apache or pound has been used
>
|
|
|
Re: [Pound Mailing List] SSL Headers
Will Tatam <wtatam(at)premierit.com> |
2006-05-25 14:19:19 |
[ SNIP ]
|
Ondra Kudlik wrote:
> I think you can do this with current pound. See man pages if it is
> what you are looking for.
>
> HTTPSHeaders 1
>
> or you can add own headers with
>
> HTTPSHeaders 1 "Your-own-header: your-value"
>
> --
> .''`. Ondra 'Kepi' Kudlik
> : :' : Debian GNU/Linux User
> `. `'
> `- http://www.nosoftwarepatents.com/cz/m/intro/index.html
>
>
> St, kvě 24, 2006 ve 05:30:58 +0100, Will Tatam napsal:
>
>> Can an option be added to pass the X_SSL_* headers to the backend ?
>>
>> If this were done then our web apps could be built to detect the
>> presence of these headers to determine if the page has been requested
>> via https regardless of whether mod_ssl+apache or pound has been used
>>
This option is not listed in the man page for 2.0.4
--
Will Tatam
Internal Systems Manager
Tel +44 (0) 20 7837 2690
Fax +44 (0) 20 7278 3113
SIP wtatam(at)premierit.com
JID wtatam(at)jabber.premierit.com
Premier IT http://www.premierit.com/
New Premier House | Southampton Row
London | WC1B 5AL
|
|
|
Re: [Pound Mailing List] SSL Headers
Cliff Wells <cliff(at)develix.com> |
2006-05-25 20:51:02 |
[ SNIP ]
|
On Thu, 2006-05-25 at 13:19 +0100, Will Tatam wrote:
> >> Can an option be added to pass the X_SSL_* headers to the backend ?
> >>
> >> If this were done then our web apps could be built to detect the
> >> presence of these headers to determine if the page has been requested
> >> via https regardless of whether mod_ssl+apache or pound has been used
> >>
> This option is not listed in the man page for 2.0.4
In 2.0.x it is AddHeader. It is in the man page.
Regards,
Cliff
|
|
|
Re: [Pound Mailing List] SSL Headers
Will Tatam <wtatam(at)premierit.com> |
2006-05-26 10:49:14 |
[ SNIP ]
|
Cliff Wells wrote:
>On Thu, 2006-05-25 at 13:19 +0100, Will Tatam wrote:
>
>
>
>>>>Can an option be added to pass the X_SSL_* headers to the backend ?
>>>>
>>>>If this were done then our web apps could be built to detect the
>>>>presence of these headers to determine if the page has been requested
>>>>via https regardless of whether mod_ssl+apache or pound has been used
>>>>
>>>>
>>>>
>>This option is not listed in the man page for 2.0.4
>>
>>
>
>In 2.0.x it is AddHeader. It is in the man page.
>
>Regards,
>Cliff
>
>
No, that adds a header of your choice, rather than passing though the
X_SSL_* headers
|
|
|
Re: [Pound Mailing List] SSL Headers
Robert Segall <roseg(at)apsis.ch> |
2006-05-29 18:55:39 |
[ SNIP ]
|
On Wed, 2006-05-24 at 17:30 +0100, Will Tatam wrote:
> Can an option be added to pass the X_SSL_* headers to the backend ?
>
> If this were done then our web apps could be built to detect the
> presence of these headers to determine if the page has been requested
> via https regardless of whether mod_ssl+apache or pound has been used
You don't need any option. In the 2.x series the X-SSL-... headers are
added automatically for every SSL connection.
--
Robert Segall
Apsis GmbH
Postfach, Uetikon am See, CH-8707
Tel: +41-44-920 4904
|
|
|
Re: [Pound Mailing List] SSL Headers
Will Tatam <wtatam(at)premierit.com> |
2006-05-30 10:10:23 |
[ SNIP ]
|
Robert Segall wrote:
> On Wed, 2006-05-24 at 17:30 +0100, Will Tatam wrote:
>
>> Can an option be added to pass the X_SSL_* headers to the backend ?
>>
>> If this were done then our web apps could be built to detect the
>> presence of these headers to determine if the page has been requested
>> via https regardless of whether mod_ssl+apache or pound has been used
>>
>
> You don't need any option. In the 2.x series the X-SSL-... headers are
> added automatically for every SSL connection.
>
We are not seeing them, however if we manually add a header we see that
header appear correctly
--
Will Tatam
Internal Systems Manager
Tel +44 (0) 20 7837 2690
Fax +44 (0) 20 7278 3113
SIP wtatam(at)premierit.com
JID wtatam(at)jabber.premierit.com
Premier IT http://www.premierit.com/
New Premier House | Southampton Row
London | WC1B 5AL
|
|
|
Re: [Pound Mailing List] SSL Headers
Robert Segall <roseg(at)apsis.ch> |
2006-05-30 19:41:37 |
[ SNIP ]
|
On Tue, 2006-05-30 at 09:10 +0100, Will Tatam wrote:
> Robert Segall wrote:
> > On Wed, 2006-05-24 at 17:30 +0100, Will Tatam wrote:
> >
> >> Can an option be added to pass the X_SSL_* headers to the backend ?
> >>
> >> If this were done then our web apps could be built to detect the
> >> presence of these headers to determine if the page has been requested
> >> via https regardless of whether mod_ssl+apache or pound has been used
> >>
> >
> > You don't need any option. In the 2.x series the X-SSL-... headers are
> > added automatically for every SSL connection.
> >
> We are not seeing them, however if we manually add a header we see that
> header appear correctly
Please check what actually passes on the wire - some web servers remove
these headers! As far as we can tell the headers are added correctly by
Pound.
--
Robert Segall
Apsis GmbH
Postfach, Uetikon am See, CH-8707
Tel: +41-44-920 4904
|
|
|
|
