Re: [OT] Nimda, etc (was: New mod_perl hacker wannabe . . .)

Sun, 28 Oct 2001 22:01:22 -0800 

I tried
PerlPostReadRequestHandler Apache::DONE
and apache would not start

I changed it to:
<LocationMatch "\.(ida|exe)$">
SetHandler perl-script
PerlInitHandler Apache::DONE
</LocationMatch>

Apache then started
And it looks for the module DONE.pm
So I guess you have to write the module for it to work.

I then changed it to:

<LocationMatch "\.(ida|exe)$">
SetHandler perl-script
PerlInitHandler "sub { return OK; }"
</LocationMatch>

and got this in the error log.
Argument "OK" isn't numeric.    => tried changeing it from OK to 200 and
still did not work.
It did get rid of the file not found error.

So I changed the OK to 200 in this version and it does work.
<LocationMatch "\.(ida|exe)$">
SetHandler perl-script
PerlHandler "sub { return 200; }"
</LocationMatch>

I'm guessing this is because  apache::constants have not been loaded at this
point.

Thanks
JM

> David Young wrote:
>
> > FWIW, Apache::CodeRed seemed like a good idea for a while, and then
Nimbda
> > showed up, and it was apparent no one was actually doing anything about
the
> > infected machines. I got sick of the notifications and the junk in my
error
> > log, so I resorted to this handler:
> >
> >   <LocationMatch "\.(ida|exe)$">
> >     SetHandler perl-script
> >     PerlHandler "sub { return OK; }"
> >   </LocationMatch>
>
>
> And the most effective would be to use PerlPostReadRequestHandler
> (or PerlInitHandler, which is an alias to PerlPostReadRequestHandler)
>
> <LocationMatch "\.(ida|exe)$">
>      SetHandler perl-script
>
>     PerlPostReadRequestHandler Apache::DONE
>
>   </LocationMatch>
>
> since it returns at the earliest possible request phase. And you don't
> need the sub {}, just Apache::* will do.
>
> Apache::DONE tells Apache to immediately jumps out of the request
> loop, log the transaction and close the client connection.  This is
> one way to halt the transaction without generating an error status.
>
> _____________________________________________________________________
> Stas Bekman             JAm_pH      --   Just Another mod_perl Hacker
> http://stason.org/      mod_perl Guide   http://perl.apache.org/guide
> mailto:[EMAIL PROTECTED]  http://ticketmaster.com http://apacheweek.com
> http://singlesheaven.com http://perl.apache.org http://perlmonth.com/
>

Reply via email to