Project

General

Profile

Activity

From 2018-02-28 to 2018-03-06

2018-03-06

15:38 Bug #2873: Basic Auth method not working
Thanks, guys.
Just tested the patch of Bug#2848 worked.
It is a duplicates. light_head
02:49 Bug #2873 (Duplicate): Basic Auth method not working
thanks, avij gstrauss
04:54 Bug #2875: CVE-2013-1599
gstrauss wrote:
So the vulnerability was not actually part of Lighttpd.? Okay, thanks.
"Please do your own hom... Caston
02:45 Bug #2875 (Invalid): CVE-2013-1599
The CVE you referenced (from 2013) has not been published and you pointed to a BlackHat video from 2013 which demonst... gstrauss
00:28 Bug #2875 (Invalid): CVE-2013-1599
I am doing a technical report on the security of security cameras. A fatal flaw in many cameras (most notably D-Link... Caston

2018-03-05

22:06 Bug #2873: Basic Auth method not working
So this would probably be a duplicate of bug 2848. avij
22:04 Bug #2873: Basic Auth method not working
Is this related to ARM? On my x86_64 system basic auth works OK with all password lengths ranging from 1 to 20.
ht... avij
21:27 Bug #2873: Basic Auth method not working
Sorry for the method I brought this issue.
I put some debugging codes into the mod_auth.c, what I found was, when th... light_head
11:11 Bug #2868 (Invalid): Certificate pinning support for client certificates
Not a bug in lighttpd; marking ticket invalid.
Were this discussion in the support forums (https://redmine.lighttp... gstrauss
07:11 Bug #2868: Certificate pinning support for client certificates
Thanks a lot, your right. The user certificate was indeed holding key usage for an HTTPS server. Everything works aft... iselind
04:52 Bug #2868: Certificate pinning support for client certificates
Another explanation:
http://www.openldap.org/lists/openldap-software/200704/msg00129.html
quote:
From the in... gstrauss
04:48 Bug #2868: Certificate pinning support for client certificates
Quoting from: https://stackoverflow.com/questions/11884731/openssl-invalid-purpose
There's an extension keyUsage w... gstrauss

2018-03-04

19:41 Feature #2860 (Fixed): RFE: mod_extforward CIDR support
Applied in changeset commit:fc7edb394648df215999df59fd9804e02850e1c4. gstrauss
12:38 Feature #2860 (Patch Pending): RFE: mod_extforward CIDR support
gstrauss
00:05 Feature #2860: RFE: mod_extforward CIDR support
Alternative: configure lighttpd mod_extforward to trust all IPs, and configure the firewall on the lighttpd server to... gstrauss
19:36 Revision 4a674224: [core] re-enable overloaded backends w/ multi wkrs
re-enable overloaded backends when server.max-worker is non-zero
(thx jens-maus)
x-ref:
"mod_proxy not re-enablin... gstrauss
12:16 Revision fc7edb39: [mod_extforward] CIDR support for trusted proxies (fixes #2860)
x-ref:
"RFE: mod_extforward CIDR support"
https://redmine.lighttpd.net/issues/2860 gstrauss

2018-03-03

11:08 Bug #2873 (Invalid): Basic Auth method not working
Please do not file bugs to ask questions.
Read the doc [[Docs_ModAuth]] and post more specific questions in the fo... gstrauss

2018-03-02

22:29 Bug #2873 (Duplicate): Basic Auth method not working
Hi I am a newbie on lighttpd,
when I created some like this, I got this issue,
Lighttpd version 1.4.48 on ar... light_head
14:01 Bug #2871: HTTP 400 response for chunked GET requests
> GuzzlePHP seems to set the encoding to chunked if it can't determine the length of the request body, which is the c... gstrauss
07:08 Bug #2871: HTTP 400 response for chunked GET requests
GuzzlePHP seems to set the encoding to chunked if it can't determine the length of the request body, which is the cas... yoshi

2018-03-01

13:58 Bug #2871 (Invalid): HTTP 400 response for chunked GET requests
> 2018-02-28 08:54:00: (request.c.1289) GET/HEAD with content-length -> 400
Not a bug. That's intentional. Why a... gstrauss
07:41 Bug #2871 (Invalid): HTTP 400 response for chunked GET requests
When lighttpd 1.4.48 receives a GET request with "Transfer-Encoding: chunked", it responds with HTTP 400 Bad Request.... yoshi
13:47 Feature #2872 (Invalid): ldap filter
Feature added in commit commit:59c753bf and was part of lighttpd 1.4.43, released 16 Oct 2016. gstrauss
09:15 Feature #2872 (Invalid): ldap filter
When try use several parameters of authorization, working only first.
For example:
Here work checking only user... diman9

2018-02-28

07:04 Bug #2870 (Invalid): Sending Huge data over Rest call
Please don't file bugs to ask questions. Use the forums.
https://redmine.lighttpd.net/projects/lighttpd/boards/2
... gstrauss
05:49 Bug #2870 (Invalid): Sending Huge data over Rest call
This is not an issue, more of a query. We are currently using lighttpd 1.4.32 and everything is working pretty fine. ... jasminder
03:33 Bug #2869 (Invalid): network.c.598
> 2018-02-27 16:41:08: (network.c.598) SSL: BIO_read_filename('/etc/letsencrypt/live/mamalibre.com.ar/ssl.pem') faile... gstrauss
 

Also available in: Atom