Le 11/09/2017 à 17:12, Daniel Gruno a écrit :
For those who wont to accept inline scripts and styles with a nonce
according to the CSP directives.
You must reinstall your apache server with lua support.
In my Mac I had installed httpd2.4 with brew
Open
/usr/local/Homebrew/Library/Taps
I'll top-post.
You can't modify the headers with a filter, but you can change them
before the filtering starts...I think
The filter script starts with coroutine.yield().
before that, you can establish the nonce and set the header using either
r.headers_out or the more robust r.err_headers_out tabl
Le 11/09/2017 à 12:02, Daniel Gruno a écrit :
You could alternately use mod_lua as an output filter.
LuaOutputFilter fixupNonce /path/to/nonce.lua nonce
SetOutputFilter fixupNonce # or AddOutputFilterByType
and then in nonce.lua, you'd have:
function fixNonce(stype, str)
if str:match("s
Hello,
Am 11.09.2017 um 14:58 schrieb Eric Covener:
On Mon, Sep 11, 2017 at 4:28 AM, Hajo Locke wrote:
Hello List,
currently i use classic mod_fastcgi (fastcgiexternalserver) with php-fpm,
which is quite reliable.
A disadvantage of this setup is, that not every response-header set by
.htacces
On Mon, Sep 11, 2017 at 4:28 AM, Hajo Locke wrote:
> Hello List,
>
> currently i use classic mod_fastcgi (fastcgiexternalserver) with php-fpm,
> which is quite reliable.
> A disadvantage of this setup is, that not every response-header set by
> .htaccess will really send to client.
> Something lik
Thank you for the proposition, I tried it without success.
I've used:
RewriteCond %{ENV:REDIRECT_URL} ^(.+)$
RewriteRule ^ - [E=originalPath:%1]
RewriteCond %{ENV:originalPath} ^$
RewriteRule ^ - [E=originalPath:%{REQUEST_URI}]
ErrorDocument 404 /pagenotfound
In the rewrite log I see something
Le 11/09/2017 à 12:02, Daniel Gruno a écrit :
On 09/11/2017 11:51 AM, Luis Speciale wrote:
Le 11/09/2017 à 11:38, Mitchell Krog Photography a écrit :
As per the original article from Scott Helme that you intially
referred to, you will need to generate a random string yourself.
Something like th
On 09/11/2017 11:51 AM, Luis Speciale wrote:
> Le 11/09/2017 à 11:38, Mitchell Krog Photography a écrit :
>> As per the original article from Scott Helme that you intially
>> referred to, you will need to generate a random string yourself.
>> Something like this might help you in the right directio
Le 11/09/2017 à 11:38, Mitchell Krog Photography a écrit :
As per the original article from Scott Helme that you intially referred
to, you will need to generate a random string yourself.
Something like this might help you in the right direction -
https://gist.github.com/earthgecko/3089509
I w
As per the original article from Scott Helme that you intially referred to, you
will need to generate a random string yourself.
Something like this might help you in the right direction -
https://gist.github.com/earthgecko/3089509
From: Luis Speciale
Reply: users@httpd.apache.org , lspeci...@
Le 11/09/2017 à 10:59, Daniel Gruno a écrit :
On 09/11/2017 10:48 AM, Luis Speciale wrote:
Le 07/09/2017 à 20:57, Daniel Gruno a écrit :
might be that you need to uppercase it to NUMBNONCE.
After a week trying I'm beginning to think that it can't be done the way
I thought. Is there a way (a
On 09/11/2017 10:48 AM, Luis Speciale wrote:
> Le 07/09/2017 à 20:57, Daniel Gruno a écrit :
>
>>
>> might be that you need to uppercase it to NUMBNONCE.
>
> After a week trying I'm beginning to think that it can't be done the way
> I thought. Is there a way (another, of course) to achieve this?
Le 07/09/2017 à 20:57, Daniel Gruno a écrit :
might be that you need to uppercase it to NUMBNONCE.
After a week trying I'm beginning to think that it can't be done the way
I thought. Is there a way (another, of course) to achieve this?
Luis
Hello List,
currently i use classic mod_fastcgi (fastcgiexternalserver) with
php-fpm, which is quite reliable.
A disadvantage of this setup is, that not every response-header set by
.htaccess will really send to client.
Something like this is the current setup:
AddHandler myphp-cgi .php
14 matches
Mail list logo
