haproxy
nixos
Our great sponsors
haproxy | nixos | |
---|---|---|
16 | 19 | |
4,445 | 159 | |
2.7% | - | |
9.9 | 9.3 | |
6 days ago | 9 days ago | |
C | Nix | |
GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
haproxy
-
HAProxy is not affected by the HTTP/2 Rapid Reset Attack (CVE-2023-44487)
I wanted to try it out just now but hit a roadblock immediately - it cannot automatically obtain and maintain TLS certificates. You have to use an external client (e.g. acme.sh), set up a cron to check/renew them, and poke HAProxy to reload them if necessary. I'm way past doing this in 2023.
https://www.haproxy.com/blog/haproxy-and-let-s-encrypt
https://github.com/haproxy/haproxy/issues/1864
-
Why Haproxy is not build with PROMEX by default (Linux / BSD)
For context I think this might be useful: https://github.com/haproxy/haproxy/blob/master/addons/promex/README
-
minexmr2.com updated to p2pool v3.1, monerod v0.18.2.0, and ready for Mar 18 p2pool (not monero) hardfork
I turn on 1 relatively cheap cloud server to process DNS, https and stratum connections and route them via haproxy to one of N miner servers described above.
-
HAProxy Security Update (CVE-2023-25725) - HTTP content smuggling attack
Full technical writeup here: https://github.com/haproxy/haproxy/commit/a8598a2eb11b6c989e81f0dbf10be361782e8d32
- Request smuggling in HAProxy via empty header name
- Enormous session rate
- Update to haproxy 2.4.18 breaks WebDAV
-
HAProxy 2.7
With the recent discussions about memory safe languages, HAProxy is still surprisingly written in C [0].
[0]: https://github.com/haproxy/haproxy
-
35M Hot Dogs: Benchmarking Caddy vs. Nginx
It does not, because HAProxy does not perform any disk access at runtime and thus would be unable to persist the certificates anywhere. Disks accesses can be unpredictably slow and would block the entire thread which is not something you want when handling hundreds of thousands of requests per second.
See this issue and especially the comment from Lukas Tribus: https://github.com/haproxy/haproxy/issues/1864
Disclosure: Community contributor to HAProxy, I help maintain HAProxy's issue tracker.
-
Guide to Adapting HAProxy to openGauss
Code link: https://github.com/haproxy/haproxy
nixos
-
miasma
I don't know. Have been using colorbuddy for ages now and it has always done exactly what I want. I don't need the "instant reaload" that lush advertices, doing :source on the colorscheme file, does the same for me to preview changes instantly. This is my theme, in case you need something to start with: - https://github.com/pinpox/nixos/blob/main/home-manager/modules/nvim/lua/config/pinpox-colors.lua
-
Looking for a transfer tool for command line
I use this to serve a directory temporarily.
-
Bluetooth headphones problem
I can't remember why I put that workaround in there, might not be needed any more. The above config is part of my dotfiles, I use my Bose blueutooth headphones by connecting them via the blueman-applet if the don't pair automatically
- Building GTK Theme in Overlay (Sass not found)
-
Including third party flakes in a NixOS (or Home Manager) configuration flake
Here is an example from my config : I'm using an external flake called "matrix-hook", which is a little tool I wrote and have put in a separate flake. It get's included here. I am then passing self to each of the nixosConfigurations here, this allows me to import the module from the external flake in the configuration.nix of the host where I want to use it.
-
NixOS for selfhosting?
Yep, I have two different modules with defaults for server and for desktop. Host-specific settings are set in the according /machines//configuration.nix file. Most stuff is modularized into modules that can be reuesed and enabled at will.
-
Nix-rice: rice your system with nix
Yep, I'm using the toJSON function already. The problem I had, was that not all applications use JSON as configuration format. Also the nix code gets very long, if you have to write the whole template as a string, which I find quite unreadable. Mustache is a pretty simple frequently used templating language, here is an example template that get's rendered by the nix code above.
-
Ricing with NixOS?
My system uses a uniform colorscheme defined here. Configs for all applications I use read that and use the same colors. The wallpapers are randomly generated by a tool I wrote, it also automatically matches the colorscheme. Icons and symbols are colored the same way for awesomeWM.
-
My neovim config with a colorscheme created with nix
In case you are interested I use this and this to generate colorschemes, awesome config and a matching wallpaper
-
Dumping Tmux
Check out wezterm it has replaced tmux for me. Very active development, fast and just the right amount of features for my taste. It is configured in Lua, so if you are doing that for neovim already, it's another plus. I use it in combination with awesomeWM. My (not very special) config is here if you need something to start with.
What are some alternatives?
zstd - Zstandard - Fast real-time compression algorithm
eww - ElKowars wacky widgets
ClickHouse - ClickHouse® is a free analytics DBMS for big data
asdf - Extendable version manager with support for Ruby, Node.js, Elixir, Erlang & more
3proxy - 3proxy - tiny free proxy server
wezterm - A GPU-accelerated cross-platform terminal emulator and multiplexer written by @wez and implemented in Rust
Caddy - Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
nix-doom-emacs - doom-emacs packaged for Nix
Jool - SIIT and NAT64 for Linux
nixpkgs - Nix Packages collection & NixOS
brotli - Brotli compression format
digga - A flake utility library to craft shell-, home-, and hosts- environments.