[Ach] Reverse proxies / HTTPS frontend servers.
Oliver J. Morais
oliver.morais at gmail.com
Thu Nov 21 07:56:21 CET 2013
[Wed, Nov 20, 2013 at 01:06:21AM +0100] Aaron Zauner
> On 20 Nov 2013, at 00:32, L. Aaron Kaplan <kaplan at cert.at> wrote:
> > How common is "pound" ?
> > How many people use it?
> A lot of people use that. We should include it in the paper, it’s a good product.
OK, I admit I'm not tex-savvy, but I tried to give it a "first shot":
$ diff -u practical_settings.tex practical_settings_pound.tex
--- practical_settings.tex 2013-11-21 07:43:54.418619197 +0100
+++ practical_settings_pound.tex 2013-11-21 07:46:23.935870184 +0100
@@ -183,6 +183,41 @@
\item Bing
\end{enumerate}
+\subsection{Reverse Proxies / HTTPS Frontend Servers}
+
+This section documents the most common reverse proxy servers and HTTPS frontend servers.
+
+\subsubsection{Pound}
+
+% See http://www.apsis.ch/pound
+% See https://help.ubuntu.com/community/Pound
+
+Pound 2.6
+
+\begin{lstlisting}[breaklines]
+# HTTP Listener, redirects to HTTPS
+ Address 10.10.0.10
+ Port 80
+ Service
+ Redirect "https://some.site.tld
+ End
+End
+## HTTPS Listener
+ListenHTTPS
+ Address 10.10.0.10
+ Port 443
+ AddHeader "Front-End-Https: on"
+ Cert "/path/to/your/cert.pem"
+ ## See 'man ciphers'.
+ Ciphers "+TLSv1.2:!SSLv3:!SSLv2:AES256:!aNULL:!eNULL:!NULL"
+ Service
+ BackEnd
+ Address 10.20.0.10
+ Port 80
+ End
+ End
+End
+\end{lstlisting}
\subsection{MaIL Servers}
More information about the Ach
mailing list