lighty labs

Today

UL 09:03 Lighttpd Feature #3304: Host selection for sockproxy via SNI

gstrauss wrote in #note-1:
> Please check @lighttpd -f /etc/lighttpd/lighttpd.conf -p@ and look at @server.modules@. Is @"mod_sockproxy"@ loaded before or after @"mod_openssl"@? Have you tried testing with @"mod_sockproxy"@ loaded aft... ultimator

GS 04:57 Lighttpd Feature #3304: Host selection for sockproxy via SNI

Please check @lighttpd -f /etc/lighttpd/lighttpd.conf -p@ and look at @server.modules@. Is @"mod_sockproxy"@ loaded before or after @"mod_openssl"@? Have you tried testing with @"mod_sockproxy"@ loaded after @"mod_openssl"@ ? gstrauss

GS 05:17 Lighttpd Feature #3305 (Invalid): connection.errors-per-second, connection.hard-error-limit

> but, in the end, it was acceptible to me
This sums up why this patch is not acceptable to generic users of lighttpd.
For example, 5xx errors are defined as server error response codes, not client error response codes.
BTW, you... gstrauss

2026-04-13

SD 22:42 Lighttpd Feature #3305 (Invalid): connection.errors-per-second, connection.hard-error-limit

Hello.
As said on IRC, i had spent some hours on Friday and Sunday to crawl along the codeflow via log_error(), in order to get that functionality.
The idea behind is too slow down "nonsense lookup attacks", the latter even more so i... sdaoden

UL 21:39 Lighttpd Feature #3304 (New): Host selection for sockproxy via SNI

Currently, different hosts can be selected via the $HTTP["host"] field.
But the selection only works if the HTTP protocol is used. When I setup a sockproxy server to redirect users based on the requested host, something like this does n... ultimator