maintenant si.

c'est fou comme la vie est plus facile avec un domaine, un #serveur, un #haproxy et des conteneurs #lxc !

#homelab #autohebergement #geek

À la demande de l' #ANSSI, #HAProxy a été audité : le code est blindé ! Dans quel but ? Tout simplement parce qu'il s'agit d'une initiative de l'ANSSI destinée à évaluer la #sécurité des briques #opensource les plus utilisées, dont HAProxy fait partie.
https://www.it-connect.fr/audit-securite-haproxy-demande-anssi-2026/
#proxy

I'm pleased to say I've been able to write a Tutorial series on how to get a quick-and-dirty implementation of Client Certificate Authentication using PFSense and HAProxy!

Feel free to have a read here:
https://seantodd.co.uk/series/client-certificate-authentication-in-pfsense-with-haproxy/

#sysadmin #haproxy #pfsense #homelab

Just managed to get my first Client SSL authentication working with PFSense and HAProxy!

Getting to understand the ACL ordering was my biggest hurdle, but I can now reject access to my internal apps from the wider internet unless theyre using a client certificate. There's even a bypass for internal IP addresses so I don't need to resort to split-brained DNS!

#sysadmin #haproxy #pfsense #homelab

Security Audit of HAProxy funded by the french Cybersecurity Agency (ANSSI). It was aimed at evaluating the security level, focusing on code source analysis, fuzzing and dynamic penetration testing. Evaluation and report by Almond #Infosec #HAProxy https://almond.eu/cybersecurity-insights/publication-of-a-security-audit-report-performed-on-haproxy/

Morning thought: HAProxy’s caching may not be as advanced as other solutions (such as the excellent Varnish), but for some use cases it is fantastic.

#haproxy #Varnish #IT #SysAdmin #Caching

Comment extraire des données pertinentes depuis les paquets du protocole Proxy #haproxy.
https://www.haproxy.com/blog/how-to-extract-insightful-data-from-proxy-protocol-packets