Dimitri Herzog
Dimitri Herzog
It looks like only the origin IP will be passed, not the request host name. For DoT it is possible to use the client identifier in the host name (like...
> Will you implementation works with Traefik behind it (using the certs from Traefik itself?) If you mean the https://github.com/0xERR0R/dns-proxy implementation: no, it generates own Let's encrypt certificates with DNS...
I tested traefik as TLS entry point and blocky as TCP service (port 53) with activated proxy protocol 2. Traefik sends only IP addresses. The TLS informations (like hostname) will...
I don't think so. I'm not familiar with traefik's code base and it would be a lot of effort to implement this feature. I make my projects in my spare...
Hey, thanks for your PR! I skimmed over the code: the usage of the CD bit in the cache key will potentially increase the number of cached entries if some...
Yes, you're right, blocky doesn't care actually about request flags and simple caches responses. This will work for the most cases, but it should be fixed. Regarding the scope expansion...
Do we need this after #589 is merged?
As mentioned by @kwitsch and @ThinkChaos , the workaround is to define one url per group. I think, we could change the internal cache representation to provide more detailed information....
Thanks for your work! Unfortunately, I'm not aware of MacOS and launchd, so I can't test your implementation. Just curious, did you try to start blocky with CAP_NET_BIND_SERVICE as described...
Thanks for your work! If I understand it right, "hideClient" is only used in databaseWriter (mysql and postgres), but not for CSV and console. I think, it would also make...