YXORP free download, YXORP download on software download

Free reverse proxy for the HTTP protocol The main focus for YXORP is checking the validity of the traffic, i.e. what would be called 'application layer firewalling' or 'secure reverse proxy' in commercial products. YXORP can check, validate, and change just about anything about a HTTP request or response, can load balance, and all other normal reversed proxy functions. YXORP aims to conform to RFC 2518, RFC 2109, RFC 2616 and other applicable standards. What's New in This Release: · client states can now be mapped by including function calls in a rule that derive some information from the request that is unique enough to reliably map into a state entry. An example of such information might be a jsession cookie that an application server has generated, or some unique bits in the URL. The new functions are setclientstateid() and setclientstateidgenerate(). · entries where the URI has parameters are no longer added to the cache. · the generated configuration, ie. from yxorpconfig -r, now includes a read-only attribute that shows whether or not a listener has opened the socket it is associated with. The attribute is named open. · added a new section of information-only output to generated configuration ie. yxorpconfig -r. The tag name of this section is daemon. · added comment tags to the various sections in the generated configuration. · mkinstallconfig script now also installs the dtd · header Authentication-Info: added to the default table. · header Cookie2: added to the default header table. · build problem in ypriv fixed · mode attribute in virtualserver added to dtd · adding support for sni, rfc4366/3546. New tag to be included inside listener tag is certlist, takes attributes of hostname, certfile, certpasswd, cafile. · certificates defined on a listener (in sni context, these are the default certificates that a non-sni capable browser will get) can now be updated. · changed default header buffer check for Server: header not to reject, because Apache2's default may send out a Server: header that violates RFC2616. · many changes to the sources to build without warnings, in spite of a higher default warning level. · added globalconfiguration item localhostname, this allows to set which name will be reported in for instance Via: and X-Cache: headers · added X-Cache: header to header table. · added globalconfiguration item generatexcache to control whether X-Cache headers are generated. Note that X-Cache headers are only generated if caching is applicable to the request; if the request is not cachable, no header is generated irrespective of the setting of generatexcache. · added weighted random scheduling, virtualserver attribute schedule value "weightedrandom". Also, weight tag on virtualserver real tag. · removed mode parameter from virtualserver, replaced by clearrealservers tag. · added add and remove tags to virtualserver real tag. · added virtualserver command. · several changes to fix a limitation in the maximum content length. Previously, this was limited at 2Gb; now, it is unlimited. · fixed a memory leak occurring when server side ssl was used. · added globalconfiguration item workerthreadstacksize to enable tuning of memory mapping in case yxorp is running many threads. In this scenario, most platform defaults for the thread stack size are much larger than yxorp requires, and issues with system-imposed limits may arise. Preferably, though, platform tools (like ulimit) should be used; this configuration item exists only where using the platform tool is not practicable. · the default error log fmt no longer contains %clientiplookup · feature request 1860197: attribute added on listener tag, pvtkeyfile, enables to load private key from a separate file instead of the same file as the certfile. If this attribute is not set, yxorp will try to load the private key from the certfile. · feature request 1860197: attribute added on certlist tag, pvtkeyfile, enables to load private key from a separate file instead of the same file as the certfile. If this attribute is not set, yxorp will try to load the private key from the certfile. · ssl items in a listener could be initialized twice . · fixed bug in message formatting when running on a system without functioning name resolver · added checks if sufficient entropy can be found for use by OpenSSL. If not, yxorp will refuse to start . · feature request 1860197: yxorp no longer checks where the configuration files reside (including ssl certs, keys, etc) · feature request 1860195: yxorp by default now installs binaries for both the daemon and tools in /.../sbin · added new function strremove to rule language · added clientprotocol and serverprotocol as formats for request and error logs. Default for both logs is now serverprotocol. · changed processing of wakeup for out-of-service real servers. If all defined servers are out of service, always try to wake one up. · Location: headers that contain a hostname (in absoluteURI form) are now rewritten to the hostname that the client originally used. This can be disabled by the new setting rewritelocationheader in globalconfig. · changed default check for content-type header to text · added option renameonrotate in globalconfiguration if 1, yxorp will append a time stamp to the old (rotated) log file after closing it. If 0, which is default, yxorp will just close and then reopen the log files. · added functions setsslserverconnecttimeout, setsslserverreadtimeout, setsslserverwritetimeout, setsslserverclosetimeout, setconnectservertimeout, setreadfromservertimeout setwritetoservertimeout; these can be used to modify the timeout values used for the server connection for specific requests.

YXORP Related Software