HTTP Alternative services allow an origin's resources to be authoritatively available at a separate network location, possibly accessed with a different protocol configuration.
Opportunistic Encryption (OE) provides unauthenticated encryption over TLS for data that would otherwise be carried via clear text. It allows a http:// connection to use secure resources.
The problem : be able to cache a backend response if it took more than 5 seconds. If not, don't cache it!
A good challenge from @florentsolt. He solves the problem with a nodejs reverse proxy behind nginx, but I prefer a pure nginx implementation ;)
A new vulnerability has been discovered in bash, related to how environment variables are processed. You can read more on redhat security blog.
This vulnerability can be used to execute remote code, even via ssh, if the remote shell is bash.
Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits…
It can be usefull to ban bots who try to bruteforce your ssh and flood your logs (another solution is to restrict allowed IP or change sshd port).
Archlinux.fr est le principal site francophone autour de la distribution Archlinux.
Comme tout site animé par une communauté, il a subi des hauts et des bas au niveau de son activité. Je vais tenter de faire un état des lieux et des projets futurs.