This security release includes fixes for the following:
[ CVE-2013-6393 ] - ml_parser_scan_tag_uri function in scanner.c performs incorrect cast
[ CVE-2013-4353 ] - allows remote TLS servers to cause a denial of service
[ CVE-2013-2070 ] - when proxy_pass is used with untrusted servers, allows remote attackers to cause a denial of service
[ CVE-2013-4547] - allows remote attackers to bypass intended …
nginx logs : Your nginx logs are located at /var/log/ nginx.org . Also Martin Fjordvald has a nice post on tuning nginx for high loads , albeit in a context. However he covers both the access and error log and makes some …/. Nginx log events are stored in the yourapp.access.log and yourapp.error.log. The access log contains records of requests made to the web server, with any related errors being sent to the error.log. Further info on nginx logs can be found at
Passenger vs Unicorn
Error Resistant Deploys
, Nginx support
Documentation and Support
Listen to the podcast at the website
Thanks Ruby Rogues for hosting us!
Yes, it should. I have personally tried, , , Unicorn, Thin, and . They all understood PATCH requests out of the box.
Also,should be in general able to issue PATCH requests. For example in curl(1) you'd execute: curl -d'user[name]=wadus' -X PATCH http://localhost:3000/users/1
We would like to thank David Lee for this contribution and endless patience to keep interested in this even after months of …
Our currently include things like installing and recipes (from source and through a launchpad repository), , , , haproxy and many other things. The list was literally growing every day for the first few weeks.
Continue reading "Getting the most out of Chef with and vagrant"
The idea is generalizing a service so it fits in the kernel comes at a high performance cost. So moveinto user space. The result is a web server with ~3.5x the throughput of Nginx "while experiencing low CPU utilization, linear scaling on multicore systems, and saturating current hardware."
They're thinking about putting Nginx in front of their services to add a little HTTP caching.
They're still investigating security between services.
WTF is PEX
This is the first time Brian has really formally announced PEX.
This is a shortened version of an internal talk he gave, so I'm not going to take notes for everything he said.
You can create a __main__.py, and then run "python .", and it'll work.
pip search twitter.common …
…header on POST and PUT requests, which was causing issues when running a chef server cluster behind nginx. Akzhan also made the webui sort nodes by name, so they'll be easier to find, and patched ohai to support network devices with underscores in the name.
Joshua Sierles, in addition to being one of the earliest adopters of this release and providing invaluable testing for the attribute precedence updates, fixed the ability to access automatic attributes in attribute files.
[Excellent write-up that covers protected downloads using, , the local filsystem, and/or . Awesome.]
A pretty good idea would be to contribute heavily to open source, and then look for work at companies that look at open source work as equivalent to a resume. If you build up enough really good open source work, you'll soon find people clamoring to hire you. [Even with my limited experience, I've found this to be true. Working …
Phusion Passenger for Apache.
Phusion Passenger versions older than 4.0.0 are also not affected because those versions did not try to set the Date header.
Web apps that set a Date header themselves.
Cookies that expire after 2014.
We've taken immediate action and we've released version 4.0.30 which addresses this issue. You should upgrade immediately. …