Who's Online |
57 user(s) are online ( 47 user(s) are browsing Forums)
Members: 0
Guests: 57
more...
|
|
Headlines |
-
amissl-sdk.lha - development/misc
May 31, 2023
-
amissl.lha - library/misc
May 31, 2023
-
seq.lha - audio/misc
May 29, 2023
-
lharchiver.lha - utility/archive
May 29, 2023
-
supermario64_gl4es.lha - game/platform
May 28, 2023
-
supermario64_mgl.lha - game/platform
May 28, 2023
-
amiarcadia.lha - emulation/gamesystem
May 26, 2023
-
smb2fs.lha - network/samba
May 26, 2023
-
cpubench.lha - utility/benchmark
May 26, 2023
-
sploinergui.lha - utility/workbench
May 26, 2023
|
|
|
|
Re: osdepot certificate not updated?
|
|
Just popping in 
|
It is all very well trying to fix the JS to make the Cloudflare check code work in Odyssey, but IMHO it is more important to figure out why Cloudflare is serving this page to Odyssey in the first place. It is likely to have absolutely nothing to do with JS, but will be related to the HTTP headers that Odyssey is sending and the HTTP connection mode. Obviously, Cloudflare is flagging these as suspicious for Odyssey, but not for IBrowse.
It is completely safe to use Cloudflare to serve Amiga related sites, since it is highly configurable. These bot blocking checks could be switched off via a rule for Odyssey, and other Amiga browsers, for example. Obviously, non-Amiga sites are not going to want to do this.
|
|
|
|
Re: Find my ko-fi posts on Gemini
|
|
Just popping in 
|
@walkero
One of those limitations is Gemini support - it is disabled in the demo version of IBrowse.
|
|
|
|
Re: osdepot certificate not updated?
|
|
Just popping in 
|
@msteed
Those features can be switched off or adjusted globally, and also via page rules (where, for example, you could disable them using a user agent match). That said, I don't think I've ever stumbled on one of Cloudflare's captcha pages using IBrowse.
However, with Cloudflare I'd be more concerned about how much bandwidth OS4Depot uses. Cloudflare could reduce the bandwidth uses at the hosting provider, but sometimes object to sites serving a lot of large static files and cancel accounts because of it (even paid subscriptions).
Most hosting providers offer Let's Encrypt certificates free of charge - it is a feature built into cPanel, for example. So, that would be the easiest solution. Cloudflare takes a fair bit of learning to get the best out of it.
|
|
|
|
Re: osdepot certificate not updated?
|
|
Just popping in 
|
@msteed Quote: msteed wrote:Quote:Put everything behind cloudflare... Definitely don't do that- it would make it inaccessible to Odyssey (and presumably IBrowse, too). Um, check the IBrowse website's certificate - it has been behind Cloudflare for some time. Needless to say, it works fine in IBrowse, otherwise we wouldn't use Cloudflare.
|
|
|
|
Re: osdepot certificate not updated?
|
|
Just popping in 
|
Shouldn't cost anything at all if using Let's Encrypt.
|
|
|
|
Re: What TLS version does Amiga support?
|
Posted on: 12/18 13:17
#6
|
Just popping in 
|
@white
Not going to work, I'm afraid. It appears to rely unnecessarily heavily on JavaScript, failing even at the first hurdle. If you check the source code in IBrowse it attempts to redirect the page by setting window.onload, which IBrowse doesn't yet support. It could be done using meta refresh instead, or by setting the onload attribute in <body> (which was the "classic" way of using onload).
That said, even with that working in IBrowse, I fear it may then display the site, but nothing much else would work due to the heavy JavaScript usage required (for example, to read user input).
So, for now, not much that can be done. Perhaps there are other solutions out there. Privoxy is the only one that I remember from days gone by.
|
|
|
|
Re: What TLS version does Amiga support?
|
Posted on: 12/15 19:39
#7
|
Just popping in 
|
|
|
|
|
Re: What TLS version does Amiga support?
|
Posted on: 12/14 16:35
#8
|
Just popping in 
|
@walkero
That's for certain, but as SimpleMail 0.45 was compiled to use AmiSSL v4, that should be fine too as AmiSSL 4.12 supports TLS 1.3. Just need to make sure AmiSSL 4.12 is installed, obviously, before installing AmiSSL v5.
|
|
|
|
Re: IBrowse 2.5.7 crashes on startup
|
Posted on: 2022/11/6 22:30
#9
|
Just popping in 
|
@eliyahu Quote: eliyahu wrote:
Looks like the 'hotfix' released earlier this morning addressed this. At least it doesn't crash any more. I wonder what the root cause of this was.... My stupidity?  . The history log entry in question is "Fixed major bug in the updated lock relative i/o code". Basically, I changed this code to directly support the new vector port filesystems. At the same time, I made some optimisations to the old code and changed a memcpy to a CopyMem without changing the argument order - ooops! The first crash would happen when trying to load the download log, with CopyMem writing to read-only memory. Since I recently upgraded my A1XE with a SSD, with most partitions using NGFS, my system was not affected, so I didn't notice. Those using FFS2 or SFS would get the crash. It also didn't crash on my A1200, but the bug was there too and caused things to not function correctly (crashing is better to be honest!).
|
|
|
|
Re: Updater tool: latest releases and updates
|
Posted on: 2022/11/4 12:25
#10
|
Just popping in 
|
@broadblues Quote: broadblues wrote:@Futaura
Quote: It appears to be using libcurl too - the latest libcurl has built-in AmiSSL v5 support, but you may not even need to use libcurl at all either. OpenSSL 3.0 has its own simple built-in HTTP(S) client.
Two bbits of useful info thanks. Does the inbuilt https support cookies etc?? Not directly - as you might expect with OpenSSL, things are a bit more low-level than Curl. However, you are free to add any outgoing HTTP headers as you wish, which includes adding a cookie header. See https://github.com/jens-maus/amissl/blob/master/test/httpget.c for a general example. Retrieving a "Set-Cookie" header from the response might be more problematic. I've not played to see how or if this is possible, but it seems not. I've opened a feature request at https://github.com/openssl/openssl/issues/19609.
Edited by Futaura on 2022/11/5 18:02:19
|
|
|
|
Re: Updater tool: latest releases and updates
|
Posted on: 2022/11/3 16:48
#11
|
Just popping in 
|
@amigakit Quote: amigakit wrote:Today the following public releases have been made available to download on Updater utility:
AmiSSL v5.5
To download goto the Packages tab May I ask why AmiSphereServer (and therefore Updater) doesn't itself use AmiSSL and instead uses an outdated, obsolete, statically linked OpenSSL 1.0.2o? It should be easy to make the switch and it'll make AmiSphereServer much smaller too! Please support AmiSSL, rather than waste time messing with OpenSSL directly. As the OpenSSL team itself says: "All older versions (including 1.1.0, 1.0.2, 1.0.0 and 0.9.8) are now out of support and should not be used." It appears to be using libcurl too - the latest libcurl has built-in AmiSSL v5 support, but you may not even need to use libcurl at all either. OpenSSL 3.0 has its own simple built-in HTTP(S) client.
Edited by Futaura on 2022/11/3 17:28:25
|
|
|
|
Re: Updater tool: latest releases and updates
|
Posted on: 2022/11/1 19:51
#12
|
Just popping in 
|
Quote: redfox wrote:@walkero
Thanks for the security alert regarding OpenSSL ...
I have rolled back to AmiSSL 5.3 and will await a future update.
AmiSSL 5.5 is now available - be sure to always use AmiUpdate to grab the latest release. I'm still a bit confused why they pulled OpenSSL 3.0.6. The regression issues were relatively minor, especially when compared to the high severity buffer overflow bugs which are also fixed in 3.0.7 and were present in all OpenSSL 3.0 versions (and therefore all AmiSSL v5 releases).
|
|
|
|
Re: New verson of CLiB2 from Andrea (afxgroup)
|
Posted on: 2022/8/20 15:51
#13
|
Just popping in 
|
@afxgroup
IIRC, the whole reason clib2 and clib2-ts co-existed in the first place was so that single threaded applications did not have all the extra overhead (both in terms of speed and size) imposed on them unnecessarily.
|
|
|
|
Re: New verson of CLiB2 from Andrea (afxgroup)
|
Posted on: 2022/8/19 16:23
#14
|
Just popping in 
|
@trgswe
This would require the compiler suites to be changed. IMHO, it makes more sense to keep the original clib2 and name this new one clib2-ts instead, replacing the old clib2-ts which probably not many people use or have installed. The bonus being that the compilers (even going back to GCC 4), support -mcrt=clib2-ts already. That said, there may be an issue in that clib2 and clib2-ts share the same headers (but have different link libs).
|
|
|
|
Re: New verson of CLiB2 from Andrea (afxgroup)
|
Posted on: 2022/7/29 12:58
#15
|
Just popping in 
|
@afxgroup
Having looked into this more closely, it appears GCC itself sets __CLIB2__, __THREAD_SAFE and __NEWLIB__, before any include files.
#if defined(__NEWLIB__) #error crt=newlib #elif defined(__CLIB2__) && defined(__THREAD_SAFE) #error crt=clib2-ts #elif defined(__CLIB2__) #error crt=clib2 #else #error unknown #endif
With this in mind, would it not make more sense for your clib2 libs to belong in SDK:clib2/lib.threadsafe opposed to SDK:clib2/lib? And then -mcrt=clib-ts would be used to use your library and that also means __THREAD_SAFE will be defined by the compiler. I've checked and -mcrt=clib2-ts still works and links fine with GCC 11. I mean your library is technically replacement for the old clib2-ts (I still have it installed!), not clib2, IYSWIM.
|
|
|
|
Re: New verson of CLiB2 from Andrea (afxgroup)
|
Posted on: 2022/7/28 20:57
#16
|
Just popping in 
|
@afxgroup
But, how can code conditionally detect that your clib2 is in use and not the original? For example:
#if defined(__NEWLIB__) || defined(__THREAD SAFE) // Newlib or clib-ts #define MALLOC_IS_THREADSAFE #emdof
Is there some other preprocessor symbol that can be checked?
I wouldn't worry if it was for my own code as I know what I'm using, but it is for open source code that needs to be compilable on multiple configurations.
|
|
|
|
Re: New verson of CLiB2 from Andrea (afxgroup)
|
Posted on: 2022/7/28 9:06
#17
|
Just popping in 
|
With the original clib2, it is possible for user code to check if it is thread safe using the __THREAD_SAFE preprocessor symbol. This is/was set only when using -mcrt=clib2-ts (causes libs to be used from SDK:clib2/lib.threadsafe) and not -mcrt=clib2. Does this check still work with this replacement clib2, which I understand is thread safe by default? If not, how can it be detected at compile-time?
The context to this question is that I am doing some work on adding proper OS4 support to libcurl and it really needs to detect whether clib2 is thread safe or not, in order to allow the threaded resolver to be enabled (which needs a thread safe malloc/calloc/free).
|
|
|
|
Re: Ibrowse
|
Posted on: 2022/3/5 20:57
#18
|
Just popping in 
|
@devils_advisor It is a solution, but not the best solution  . What do you have the "Max. number of connections" set to in the network preferences? This also affects the number of sockets cached for persistent connections. You can use "shownetstatus tcpsockets" in a shell to show the currently allocated sockets. It smells like a bug in the network card driver to me, which could be falling over if there are too many connections. It could be a bug in IBrowse, but I don't see it on my A1200 with PCMCIA network card + Miami, or on my A1XE with onboard networking.
|
|
|
|
Re: Ibrowse
|
Posted on: 2022/3/1 21:13
#19
|
Just popping in 
|
@devils_advisor Under the network settings, in IBrowse, try switching "Persistent connections" off. That would be the one thing I would think could cause a problem, although if it does, it is possibly a bug in the network driver. It works fine on my A1XE. I saw a similar report of this elsewhere - will try to find it, to remember what the resolution was  .
|
|
|
|
Re: AK DataType vs. WarpDT
|
Posted on: 2021/10/20 22:55
#20
|
Just popping in 
|
@ktadd
The one that will get used for reading is defined by which BMP descriptor you have installed in DEVS:Datatypes. "AddDatatypes LIST" will show you which are active.
|
|
|
|