darix
darix
well my initial go would be adding a /etc/sysconfig/step-ca ``` # default, should trigger the password agent hopefully STEP_CA_OPTIONS="" # to cover your example: STEP_CA_OPTIONS="--password-file /usr/local/lib/step/secrets/intermediate_pass" ``` and then patch...
I went with the following now for my package: ``` ==> README.SUSE step-ca.service step-ca-init
Is a dynamic user really applicable for a service that writes data files?
Given that you want to back up the DB ... and maybe restore that ... 1. how do you find the DB 2. lets say I start step-ca on a...
Already existing implementations * https://github.com/armon/go-proxyproto * https://github.com/pires/go-proxyproto
yes it can do plain tcp proxying. the only reason why you want to implement their proxy protocol, is that your daemon can log the real client address instead of...
proxy protocol really just means this: ``` PROXY TCP4 192.168.0.1 192.168.0.11 56324 443\r\n ``` Example is v1 protocol, v2 is binary. pires/go-proxyproto implements both. Maybe this configuration file will help...
correct. and for some business case considerations ... haproxy is not the only proxy which can emit those proxy header. AWS loadbalancer e.g. supports them as well. and there is...
you can do a lot of access control on the tcp proxy already.
the easiest would be to add an option to use the sgml catalogs and have the style sheet in listed in the xml file via the url. xsltproc --nonet --catalogs