RE: Cryptic errors -simple Apache::Registry script ??? (newbie)
Hi there On Mon, 10 Jan 2000, Eric Cholet wrote: Apache 1.3.9 (with mod_perl 1.21/perl5.005_03) doesn't let me use a Location section in a VirtualHost section. Really? That's quite odd. What is the error message? Looks like I was wrong about this. Either my memory was playing tricks on me, or it's different on my development server. The former is at least three orders of magnitude more likely than the latter. I didn't want to try to restart my live server with a deliberately broken config, so I duplicated it on my development server and got this message output to stderr: Syntax error on line 941 of /usr/local/apache/conf/httpd.conf: FilesMatch cannot occur within Location section ../src/support/apachectl start: httpd could not be started Here is the (only) difference between the failing config and the one currently on the live server. This is in a VirtualHost section: 940,943c940,945 FilesMatch "\.html$" SetHandler perl-script PerlHandler Apache::Footer /FilesMatch --- Location / FilesMatch "\.html$" SetHandler perl-script PerlHandler Apache::Footer /FilesMatch /Location What seems to have confused me was that to repair the config I removed the Location directive. Sorry if this confused anyone else. 73 Ged.
RE: Trouble installing mod_perl
Hi there, On Sun, 9 Jan 2000, gnielson wrote: I am encountering some errors when trying to get an existing Apache server to support mod_perl. I am running Server version Apache/1.2.4 and perl, version 5.004_01. Is the fact that I have not yet ungraded to 5.004_04 giving me these problems? Didn't I read somewhere that mod_perl (at least v1.2 and later) no longer support Apache 1.2.x? Correct. Perhaps you should think about upgrading. Some of the add-on-goodies on CPAN need at least Perl 5.005_03, but I think you would want to go for a later version than that in any case. No you wouldn't, 5.00503 is the latest stable release. More recent versions are not supported by the current modperl version (1.21). -- Eric
mysql.pm on Apache/mod_perl/perl win98
Hi - I'm another *lost* soul trying to get their Apache 1.3.9, latest mysql, mod_perl working on Win98. I got a binary of Apache+Perl+mod_perl and it seems to work ok - my mod_perl is working ok, my Authz module is -sort of- working, but I'm getting hits in my apache error log from mysql.pm, a la: [Sun Jan 09 22:13:40 2000] [error] install_driver(mysql) failed: Can't locate loadable object for module DBD::mysql in @INC (@INC contains: C:/Perl/5.00503/lib/MSWin32-x86 C:/Perl/5.00503/lib C:/Perl/site/5.00503/lib/MSWin32-x86 C:/Perl/site/5.00503/lib . /apache/ /apache/lib/perl) at (eval 19) line 3 Perhaps a module that DBD::mysql requires hasn't been fully installed at C:/Perl/site/5.00503/lib/Apache/DBILogger.pm line 53 Perhaps! I'm also getting this: Had to create DBD::mysql::dr::imp_data_size unexpectedly at C:/Perl/site/5.00503/lib/DBI.pm line 657. Had to create DBD::mysql::db::imp_data_size unexpectedly at C:/Perl/site/5.00503/lib/DBI.pm line 657. [Sun Jan 09 22:13:44 2000] [error] Undefined subroutine DBD::mysql::db::_login called at C:/Perl/site/5.00503/lib/DBD/mysql.pm line 130. This kind of figures ... I'm certain I'm missing a supporting file for mysql.pm but after eyeballing the filesystem on my Win98 laptop and on my (working) linux installation, I'm out of gas. Help! Do I really have to compile my own mysql.pm to get this to work? I don't have VC++! I guess I could get it ... Does anyone know any secret that can get me around this? Dave Dunstan Mission Control Consulting LLC
Re: mysql.pm on Apache/mod_perl/perl win98
Hi Dave, I only do *nix, but I think that you should not need mysql.pm if you are using DBI/DBD. Jochen is quite helpful on the MySQL modules list. subscription info availble at www.mysql.com. Good Luck, Ed
RE: Embperl / Variable Scope Question
At the top of the config file put: package Config; and refer to the vars in your page as: [+ $Config::foo +] On 09-Jan-00 Mike Cantrell wrote: Quick question: Let's say I want to keep a common configuration file which defines variables and such. I'd like to [- Execute() -] the file but it seems that the variables are out of scope once I try to access them in the rest of the document. Am I doing soemthing wrong or is there a better way to accomplish this? Regards, Mike Cantrell --- Jason Bodnar + [EMAIL PROTECTED] + Tivoli Systems In Jail Rock house Rock, he was everything Rockabilly's about. No, I mean he is Rockabilly. Mean, Surly, Nasty, Brute. I mean in that movie he couldn't give a about nothin'. Just rockin' and rollin', livin' fast, dying young, leavin' a good lookin' corpse. --Clarence Worley, True Romance
Mason + Apache::Session .. strange problems.
This will be posted to both the mod_perl and mason mailing lists.
I'm tearing my hair out here. I'm using Apache::Session with Mason (snippet
of calls to Apache::Session below). For some reason, when I hit certain
pages with java applets (opencube scroller), and then do a browser "refresh"
(IE5 and NS4.5) Apache::Session die()'s and posts:
[Mon Jan 10 12:27:43 2000] [error] Object does not exist in the data store
at /usr/local/lib/perl5/site_perl/5.005/Apache/Session/DBIStore.pm line 192.
Which typically happens when you request a session id that's not in the
store. A quick query reveals that the session is still there:
mysql SELECT id, length FROM sessions WHERE id='48434f27feea873a';
+--++
| id | length |
+--++
| 48434f27feea873a | 41 |
+--++
1 row in set (0.00 sec)
Jumping to a page that pulls the cookie from the browser and spits it out
shows that the cookie holds a new value (ie. bc7d790fa9f76185). Another
query shows that it exists as well:
mysql SELECT id, length FROM sessions WHERE id='bc7d790fa9f76185';
+--++
| id | length |
+--++
| bc7d790fa9f76185 | 41 |
+--++
1 row in set (0.00 sec)
From what I've found so far, I can query $session for my _session_id.. then
if I request the cookie containing my session ID, I find that it is unset!
So naturally, another session ID is set and I loose all the old data.
So I have a couple questions here: How is my cookie getting "unset" /
mangled? How can I tell which "Object does not exist in the data store"
(ie. logging the session id in the error log)? What's the best way to debug
this?
### Setting up sessions for mason
my %session;
my $cookie = $r-header_in('Cookie');
$cookie =~ s/SESSION_ID=(\w*)/$1/;
tie %session, 'Apache::Session::DBI', $cookie, {
DataSource = 'dbi:mysql:mydb',
UserName = 'username',
Password = 'password'
};
$r-header_out("Set-Cookie" = "SESSION_ID=$session{_session_id};") if
!$cookie );
local *HTML::Mason::Commands::session = \%session;
$ah-handle_request($r);
untie %HTML::Mason::Commands::session;
RE: Mason + Apache::Session .. strange problems.
I've got a few things to add.. I wrapped my tie in an eval so I can see what cookie is being set, etc. It's been a big help for debugging. This has helped me to discover that the scroller applet I'm using makes a query to a text file on the server.. so if I have a page w/ the scroller applet in it, two requests are made to the handler.. not just one (which makes sense). Ok.. scenario #1: I open a fresh browser and go to some generic page w/out the scroller in it.. session_id is set.. no problems. Then I go to the page with the scroller in it.. and still no problems. Everything is as I would expect it to be. The log file shows this when I load and refresh once: [Mon Jan 10 13:47:57 2000] [info] tie() successful: '' [Mon Jan 10 13:48:13 2000] [info] tie() successful: '4f6b9edbe40e0c2b' So the first line is request #1.. and the second line is the refresh. scenario #2: I open a fresh browser and go directly to the page with the scroller in it. The page comes up fine. When I refresh, the handler bombs. The log file shows this: [Mon Jan 10 13:50:43 2000] [info] tie() successful: '' [Mon Jan 10 13:50:47 2000] [info] tie() successful: '' [Mon Jan 10 13:51:54 2000] [error] tie() failed: 'Object does not exist in the data store at /usr/local/lib/perl5/site_perl/5.005/Apache/Session/DBIStore.pm line 192. ' panic: POPSTACK Callback called exit. So the first line is request #1.. the second line is the java applet requesting its file.. the third and all following lines are the result of a refresh. It looks like the java applet is causing the server to set a second cookie.. am I correct in assuming this? Ian
Re: VirtualSellers.com TAME patent
IANAL, but I understand that technologies that were in the public domain can not be patented. And if a patent is issued, it's not enforcable in that case. Again, IANAL, but I feel that FreeType falls in that same category (see http://www.freetype.org). Randy On Mon, Jan 10, 2000 at 11:43:47AM -0800, Cliff Rayman wrote: looks like they submitted a patent for an embedded mark-up language. the language can actually be embedded inside an html page (what a concept!). see virtualsellers.com and the TAME language section. patent filing info was on business wire. soapbox These patents scare me since the patent granters seem not to understand software very well - and it seems like it is diametrically opposed to what the open software movement stands for. /soapbox cliff rayman genwax.com
Re: VirtualSellers.com TAME patent
docs for the embedded language http://shop1.virtualsellers.com/4xdoc I had not included the original article because it came from individual.com and you have to have an account to access it. I was able to dig up the original source. I am not sure how long this link will be valid for: http://www.businesswire.com/cgi-bin/f_headline.cgi?day3/200071089ticker=vdot cliff rayman genwax.com Bill wrote: Got the actual links for these? I'm interested in forwarding them to a colleague... - Bill Cliff Rayman wrote: looks like they submitted a patent for an embedded mark-up language. the language can actually be embedded inside an html page (what a concept!). see virtualsellers.com and the TAME language section. patent filing info was on business wire. soapbox These patents scare me since the patent granters seem not to understand software very well - and it seems like it is diametrically opposed to what the open software movement stands for. /soapbox cliff rayman genwax.com
RE: Mason + Apache::Session .. strange problems.
It turns out that the java applet making another request for a page on the server was causing my cookie to be reset. Moving the file it was requesting out of mason's reach fixed the problem.
Hey, that ain't tainted, is it?
With regard to yesterday's "Cryptic errors -simple Apache::Registry script ??? (newbie)" post, I have discovered some more information. Not that it clarifies my understanding of the error much. By hacking (process of elimination) I have discovered that when I turn off taint checking in my httpsd.conf the script (helloworld.pl) runs and produces no errors. On 634 of the eagle book, it says that PerlTaintCheck will activate taint checks on ... user provided data ... dangerous functions such as exec(), eval(), and system(). This seems like a wise precaution. I don't see where the user name is getting execed, evaled, or supplied to a system call. Can anyone explain this to my pea brain? Also, What would I have to do with the parameter value to make mod_perl think I had "untainted" the value? John Walker _ Special Projects Manager, JSW4.NET [EMAIL PROTECTED] http://www.jsw4.net/
Re: Hey, that ain't tainted, is it?
"JW" == John Walker [EMAIL PROTECTED] writes: JW I don't see where the user name is getting execed, evaled, or supplied JW to a system call. Can anyone explain this to my pea brain? I had one server suddenly, out of nowhere, decide to mark some things as tainted even though they are not. Nothing was upgraded on that machine when this started to happen. My only recourse was to turn off taint checking. Most annoying, this was, but when you gotta get something working...
Re: Hey, that ain't tainted, is it?
% perldoc perlsec -- is what you are looking for. it's all there... With regard to yesterday's "Cryptic errors -simple Apache::Registry script ??? (newbie)" post, I have discovered some more information. Not that it clarifies my understanding of the error much. By hacking (process of elimination) I have discovered that when I turn off taint checking in my httpsd.conf the script (helloworld.pl) runs and produces no errors. On 634 of the eagle book, it says that PerlTaintCheck will activate taint checks on ... user provided data ... dangerous functions such as exec(), eval(), and system(). This seems like a wise precaution. I don't see where the user name is getting execed, evaled, or supplied to a system call. Can anyone explain this to my pea brain? Also, What would I have to do with the parameter value to make mod_perl think I had "untainted" the value? John Walker _ Special Projects Manager, JSW4.NET [EMAIL PROTECTED] http://www.jsw4.net/ ___ Stas Bekmanmailto:[EMAIL PROTECTED] http://www.stason.org/stas Perl,CGI,Apache,Linux,Web,Java,PC http://www.stason.org/stas/TULARC perl.apache.orgmodperl.sourcegarden.org perlmonth.comperl.org single o- + single o-+ = singlesheavenhttp://www.singlesheaven.com
Re: VirtualSellers.com TAME patent
Actually, prior art prohibits something from being patented. If somebody can demonstrate that the pantented concept is not new due to prior art then the patent office will not issue the patent. On 10-Jan-00 Randy Harmon wrote: IANAL, but I understand that technologies that were in the public domain can not be patented. And if a patent is issued, it's not enforcable in that case. Again, IANAL, but I feel that FreeType falls in that same category (see http://www.freetype.org). Randy On Mon, Jan 10, 2000 at 11:43:47AM -0800, Cliff Rayman wrote: looks like they submitted a patent for an embedded mark-up language. the language can actually be embedded inside an html page (what a concept!). see virtualsellers.com and the TAME language section. patent filing info was on business wire. soapbox These patents scare me since the patent granters seem not to understand software very well - and it seems like it is diametrically opposed to what the open software movement stands for. /soapbox cliff rayman genwax.com --- Jason Bodnar + [EMAIL PROTECTED] + Tivoli Systems That boy wouldn't know the difference between the Internet and a hair net. -- Jason Bodnar
RE: Hey, that ain't tainted, is it?
That would be ALL of it wouldn't it? G Anyway, I'm still not sure how the hello world script violates the use of tainted data... it just goes to STDOUT (browser). If I understand this correctly, I've got to run *all* my user input through a regex and use the resultant $1, $2 parts as my data? What about data from an SQL db via DBI, is that "pre-tainted"? Thanks, John. PS The updated guide is very nice. (Maybe my problem is I shouldn't be reading the guide, the panther book, the ram book, and the eagle book, all at the same time. G) -Original Message- From: Stas Bekman [mailto:[EMAIL PROTECTED]] Sent: Monday, January 10, 2000 4:34 PM To: John Walker Cc: '[EMAIL PROTECTED]' Subject: Re: Hey, that ain't tainted, is it? % perldoc perlsec -- is what you are looking for. it's all there... [...]
Re: VirtualSellers.com TAME patent
"JB" == Jason Bodnar [EMAIL PROTECTED] writes: JB Actually, prior art prohibits something from being patented. If JB somebody can demonstrate that the pantented concept is not new due JB to prior art then the patent office will not issue the patent. So, to all of you, what does this have to do with mod_perl? This certainly is not a patent-reform mailing list. Please take this discussion somewhere more appropriate. Thanks.
Re: VirtualSellers.com TAME patent
I think I missed the initial email but I was guessing it was sent due to the fact that there are several embedded scripting languages that use mod_perl. If that's why it was sent then it's very appropriate. Perhaps you should relax. I think a grand total of 4 or 5 emails have been sent on this topic. Certainly not anything to get upset about. On 10-Jan-00 Vivek Khera wrote: "JB" == Jason Bodnar [EMAIL PROTECTED] writes: JB Actually, prior art prohibits something from being patented. If JB somebody can demonstrate that the pantented concept is not new due JB to prior art then the patent office will not issue the patent. So, to all of you, what does this have to do with mod_perl? This certainly is not a patent-reform mailing list. Please take this discussion somewhere more appropriate. Thanks. --- Jason Bodnar + [EMAIL PROTECTED] + Tivoli Systems That boy wouldn't know the difference between the Internet and a hair net. -- Jason Bodnar
Re: mysql.pm on Apache/mod_perl/perl win98
On Mon, 10 Jan 2000, Tim Tompkins wrote: There is a DBD::mysql available from ActiveState. You can install it with ppm. ppm install DBD-mysql Hi, This would normally work, but the perl binary being used most probably isn't ActiveState's, because as of yet mod_perl doesn't work with ActiveState's perl. So there would most likely be a binary incompatibitly using this perl binary with ActiveState's DBD::mysql. I'm currently testing out an apache/mod_perl/perl Win32 binary that will have DBD::mysql and DBD::msql support, as well as mod_ssl. As a new mod_perl version is in the works, I'll probably wait until that is released. best regards, Randy Kobes
Re: VirtualSellers.com TAME patent
Vivek Khera wrote: "JB" == Jason Bodnar [EMAIL PROTECTED] writes: JB Actually, prior art prohibits something from being patented. If JB somebody can demonstrate that the pantented concept is not new due JB to prior art then the patent office will not issue the patent. So, to all of you, what does this have to do with mod_perl? This certainly is not a patent-reform mailing list. Please take this discussion somewhere more appropriate. Thanks. Oh be serious. A patent on a programming language embedded in a markup langauge would have a serious effect on the mod_perl community. There are several such languages which work with mod_perl, and at least two of them are supported directly on this list. -jwb
Re: VirtualSellers.com TAME patent
I brought it up. I guess I should have been more clear, but I did it specifically for the authors of embedded perl/tag packages such as Embperl, ASP, Mason and HTML::Template. I intended for the authors of the packages to get "up in arms" and send the patent office documentation on prior art so they could nip this patent process in the bud. Once it becomes patented, it is much more expensive to fight than before a patent is issued. If Embperl gets taken out of circulation because of patent infringement, I have a lot of work to do in order to replace it. cliff rayman genwax.com "Jeffrey W. Baker" wrote: Vivek Khera wrote: "JB" == Jason Bodnar [EMAIL PROTECTED] writes: JB Actually, prior art prohibits something from being patented. If JB somebody can demonstrate that the pantented concept is not new due JB to prior art then the patent office will not issue the patent. So, to all of you, what does this have to do with mod_perl? This certainly is not a patent-reform mailing list. Please take this discussion somewhere more appropriate. Thanks. Oh be serious. A patent on a programming language embedded in a markup langauge would have a serious effect on the mod_perl community. There are several such languages which work with mod_perl, and at least two of them are supported directly on this list. -jwb
Re: VirtualSellers.com TAME patent
Hi there, On Mon, 10 Jan 2000, Cliff Rayman wrote: soapbox These patents scare me since the patent granters seem not to understand software very well - and it seems like it is diametrically opposed to what the open software movement stands for. /soapbox Then come to the United Kingdom, where you can't patent software! And no, that's right, you can't patent _anything_ if it's already been published. The most famous case is the ball-point pen. Big mistake. 73 Ged.
Re: mysql.pm on Apache/mod_perl/perl win98
[cc list trimmed; this is more a mod_perl issue than a mysql one.] Thanks a bunch for your efforts here. I understand that earlier such bundles were built with VC6, eh? Will you have the opportunity/ability/tuits to distribute one built with Cygwin, so that the resultant installation can freely install new/updated modules from CPAN, including those that need a C compiler? I wouldn't suggest to bundle Cygwin, but to work with its standard install location, at any rate. The reason I ask is that I'd like to have a distribution available that includes HTML::Mason, and which is open for folks to add the precise modules that they need. Combined with SSH and CVS, this becomes a pretty decent development environment even for a web developer with only a Windows box. Perhaps it's more reasonable to request that you add HTML::Mason into the existing bundle, but that will have its own share of difficulties, considering the other unspecified modules that people would still be without. A cygwin-based distribution perhaps could simply ship with Perl's base install - let the user install their packages through CPAN. I've looked at getting apache/perl/mod_perl to build wtih cygwin, but I lacked the knowledge to understand the build hints for Perl, speak nothing of the rest. By the way, HTML::Mason may still have a problem here or there on Windows, which we folks on the Mason list will be glad to help get ironed out, I believe. At least, I'd be willing to help. Randy On Mon, Jan 10, 2000 at 04:10:08PM -0600, Randy Kobes wrote: On Mon, 10 Jan 2000, Tim Tompkins wrote: There is a DBD::mysql available from ActiveState. You can install it with ppm. ppm install DBD-mysql Hi, This would normally work, but the perl binary being used most probably isn't ActiveState's, because as of yet mod_perl doesn't work with ActiveState's perl. So there would most likely be a binary incompatibitly using this perl binary with ActiveState's DBD::mysql. I'm currently testing out an apache/mod_perl/perl Win32 binary that will have DBD::mysql and DBD::msql support, as well as mod_ssl. As a new mod_perl version is in the works, I'll probably wait until that is released. best regards, Randy Kobes
infamous mod_perl mod_ssl together not making...
found snippet (below) on archive, obviously i'm missing something... after following the notes in ./mod_perl-1.3.1/INSTALL.simple.ssl, ./mod_ssl-2.4.10-1.3.9 and previous suggestions from the mailing list: make[1]: Entering directory `/var/CPAN/build/apache_1.3.9' === src make[2]: Entering directory `/var/CPAN/build/apache_1.3.9' make[3]: Entering directory `/var/CPAN/build/apache_1.3.9/src' make[3]: *** No rule to make target `all'. make[3]: Leaving directory `/var/CPAN/build/apache_1.3.9/src' make[2]: *** [build-std] Error 2 if i leave out mod_perl the whole thing makes, including mod_perl seems to break it every time. basic steps: extract, make, make test make install of openssl-0.9.4, mm-1.0.12, rsaref2. all of those worked. blew off ./apache-1.3.9, re-extracted it. extracted mod_ssl-2.4.10-1.3.9. went through the "flexible APACI-only way" just for grins, ran make in apache. this much worked. went through the key generation, got snakeoil, etc. cd ../mod_perl-1.2.1; made the ~/.makepl_args.mod_perl with: EVERYTHING=1 USE_APACI=1 APACI_ARGS=--enable-module=rewrite APACI_ARGS=--enable-module=ssl APACI_ARGS=--enable-module=proxy export SSL_BASE=/opt/ssl; export APACHE_PREFIX=/opt/apache/1.3.9; ls $SSL_BASE/lib shows me libcrypto.a libssl.a [could be first scewup, SSL_BASE == install dir w/ lib include or ./lib itself?] perl Makefile.PL; make -wk 21 | tee Make.log; which then finally gives me: make[3]: Entering directory `/var/CPAN/build/apache_1.3.9/src' make[3]: *** No rule to make target `all'. wunnerful. as a variation i blew off apache-1.3.9, ran all the steps as above without the make after configuring mod_ssl, went directly to the perl Makefile.PL. same result. blowing off apache-1.3.9 one more time and running the usual apaci config make w/ mod_perl only works fine. something i'm screwing up w/ the two of them... system is heavily hacked RH-6.0 w/ current perl: Linux dizzy.wrkhors.com 2.2.14 #19 SMP Sat Jan 8 00:59:20 CST 2000 i686 unknown Summary of my perl5 (5.0 patchlevel 5 subversion 3) configuration: Platform: osname=linux, osvers=2.2.13, archname=i686-linux uname='linux dizzy.wrkhors.com 2.2.13 #9 smp sat nov 13 22:03:19 cst 1999 i686 unknown ' hint=recommended, useposix=true, d_sigaction=define usethreads=undef useperlio=undef d_sfio=undef Compiler: cc='cc', optimize='-O2', gccversion=egcs-2.91.66 19990314/Linux (egcs-1.1.2 release) cppflags='-Dbool=char -DHAS_BOOL' ccflags ='-Dbool=char -DHAS_BOOL' stdchar='char', d_stdstdio=undef, usevfork=false intsize=4, longsize=4, ptrsize=4, doublesize=8 d_longlong=define, longlongsize=8, d_longdbl=define, longdblsize=12 alignbytes=4, usemymalloc=n, prototype=define Linker and Libraries: ld='cc', ldflags =' -L/usr/local/lib' libpth=/usr/local/lib /lib /usr/lib libs=-lnsl -lndbm -lgdbm -ldb -ldl -lm -lc -lposix -lcrypt libc=, so=so, useshrplib=false, libperl=libperl.a Dynamic Linking: dlsrc=dl_dlopen.xs, dlext=so, d_dlsymun=undef, ccdlflags='-rdynamic' cccdlflags='-fpic', lddlflags='-shared -L/usr/local/lib' Characteristics of this binary (from libperl): Built under linux Compiled at Nov 16 1999 19:32:59 @INC: /opt/perl5/lib/5.00503/i686-linux /opt/perl5/lib/5.00503 /opt/perl5/lib/site_perl/5.005/i686-linux /opt/perl5/lib/site_perl/5.005 . from email archive: snip Installing mod_ssl was a breeze for me. I followed mod_ssl's instructions for "b) The flexible APACI-only way": ./configure --with-apache=../apache_1.3.x Then: mod_perl-x.xx % SSL_BASE=... perl Makefile.PL ... make test make install For your configure options, just create a $HOME/.makepl_args.mod_perl that looks like so: APACHE_PREFIX=/weblab/software/packages/apache-1.3.2 APACI_ARGS=--enable-module=rewrite APACI_ARGS=--enable-module=ssl When Makefile.PL is run, it'll read in those options and pass then to Apache's configure script. -- Steven Lembark 2930 W. Palmer St. Chicago, IL 60647 [EMAIL PROTECTED] 800-762-1582
RE: VirtualSellers.com TAME patent
I brought it up. I guess I should have been more clear, but I did it specifically for the authors of embedded perl/tag packages such as Embperl, ASP, Mason and HTML::Template. I am not sure if they want to pantent embbedding a programming language in HTML, or just their language (They later won't touch us): "VirtualSellers.com Inc. (OTC BB:VDOT) Friday announced that it has submitted an application with the United States Patent and Trademark Office to obtain patent protection for its proprietary programming language, TAME(R) (Tag Activated Markup Enhancer)" (from http://www.businesswire.com/cgi-bin/f_headline.cgi?day3/200071089ticker=vdo t) If they want to patent the gerneral aproach, Mircosoft also can't use it's ASP anymore. I don't think that this will happen. If Microsoft ASP is allowed to coexist, why not Apache::ASP and if APache::ASP why not Embperl, Mason etc. I intended for the authors of the packages to get "up in arms" and send the patent office documentation on prior art so they could nip this patent process in the bud. Once it becomes patented, it is much more expensive to fight than before a patent is issued. My english is much to bad to write about juristic things (I won't understand most of them even in german :-(, I even not quite sure if I understand all the details of the article in the above URL, so anybody with better english and more juritic knowlegde should take a look at it. Anyway, if anybody can write an email to the pantent office and tell them that there are already a bunch of other solutions out there,(Embperl is out for 4 year now, Apache::ASP at least 3 years, so I guess, but I don't know they are older then TAME.) that would be fine with me. If Embperl gets taken out of circulation because of patent infringement, I have a lot of work to do in order to replace it. Not only you... Gerald - Gerald Richterecos electronic communication services gmbh Internetconnect * Webserver/-design/-datenbanken * Consulting Post: Tulpenstrasse 5 D-55276 Dienheim b. Mainz E-Mail: [EMAIL PROTECTED] Voice:+49 6133 925151 WWW:http://www.ecos.de Fax: +49 6133 925152 -
Re: VirtualSellers.com TAME patent
I forgot about Micro$oft and ASP, they could squash a patent like a bug. I tried to look up the patent but the database is only current through Jan 4th. I will check it out and report back when the actual patent is available. cliff rayman genwax.com Gerald Richter wrote: > I brought it up. I guess I should have been more clear, but I > did it specifically for the authors of embedded perl/tag > packages such as Embperl, ASP, Mason and HTML::Template. > I am not sure if they want to pantent embbedding a programming language in HTML, or just their language (They later won't touch us): "VirtualSellers.com Inc. (OTC BB:VDOT) Friday announced that it has submitted an application with the United States Patent and Trademark Office to obtain patent protection for its proprietary programming language, TAME(R) (Tag Activated Markup Enhancer)" (from http://www.businesswire.com/cgi-bin/f_headline.cgi?day3/200071089ticker=vdo t)
Re: infamous mod_perl mod_ssl together not making...
Well, I build mod_ssl/mod_perl just fine a few days ago (RH6.1). Follow the notes at: http://perl.apache.org/guide/install.html#mod_perl_and_mod_ssl_openssl_ The guide uses xxx for the ver numbers, so to ease on you, here is my copy-n-paste code: unarchive apache_1.3.9.tar.gz, mod_ssl-2.4.9-1.3.9.tar.gz, openssl-0.9.4.tar.gz cd ./openssl-0.9.4 ./config make cd ../mod_ssl-2.4.9-1.3.9 ./configure --with-apache=../apache_1.3.9 -with-ssl=../openssl-0.9.4 --prefix=/usr/local/apache/ cd ../mod_perl-x.xx perl Makefile.PL USE_APACI=1 EVERYTHING=1 \ DO_HTTPD=1 SSL_BASE=../openssl-0.9.4 \ APACHE_PREFIX=/usr/local/apache \ APACHE_SRC=../apache_1.3.9/src \ APACI_ARGS=--enable-module=ssl,--enable-module=rewrite make make test make install cd ../apache_1.3.9 make certificate make install found snippet (below) on archive, obviously i'm missing something... after following the notes in ./mod_perl-1.3.1/INSTALL.simple.ssl, ./mod_ssl-2.4.10-1.3.9 and previous suggestions from the mailing list: make[1]: Entering directory `/var/CPAN/build/apache_1.3.9' === src make[2]: Entering directory `/var/CPAN/build/apache_1.3.9' make[3]: Entering directory `/var/CPAN/build/apache_1.3.9/src' make[3]: *** No rule to make target `all'. make[3]: Leaving directory `/var/CPAN/build/apache_1.3.9/src' make[2]: *** [build-std] Error 2 if i leave out mod_perl the whole thing makes, including mod_perl seems to break it every time. basic steps: extract, make, make test make install of openssl-0.9.4, mm-1.0.12, rsaref2. all of those worked. blew off ./apache-1.3.9, re-extracted it. extracted mod_ssl-2.4.10-1.3.9. went through the "flexible APACI-only way" just for grins, ran make in apache. this much worked. went through the key generation, got snakeoil, etc. cd ../mod_perl-1.2.1; made the ~/.makepl_args.mod_perl with: EVERYTHING=1 USE_APACI=1 APACI_ARGS=--enable-module=rewrite APACI_ARGS=--enable-module=ssl APACI_ARGS=--enable-module=proxy export SSL_BASE=/opt/ssl; export APACHE_PREFIX=/opt/apache/1.3.9; ls $SSL_BASE/lib shows me libcrypto.a libssl.a [could be first scewup, SSL_BASE == install dir w/ lib include or ./lib itself?] perl Makefile.PL; make -wk 21 | tee Make.log; which then finally gives me: make[3]: Entering directory `/var/CPAN/build/apache_1.3.9/src' make[3]: *** No rule to make target `all'. wunnerful. as a variation i blew off apache-1.3.9, ran all the steps as above without the make after configuring mod_ssl, went directly to the perl Makefile.PL. same result. blowing off apache-1.3.9 one more time and running the usual apaci config make w/ mod_perl only works fine. something i'm screwing up w/ the two of them... system is heavily hacked RH-6.0 w/ current perl: Linux dizzy.wrkhors.com 2.2.14 #19 SMP Sat Jan 8 00:59:20 CST 2000 i686 unknown Summary of my perl5 (5.0 patchlevel 5 subversion 3) configuration: Platform: osname=linux, osvers=2.2.13, archname=i686-linux uname='linux dizzy.wrkhors.com 2.2.13 #9 smp sat nov 13 22:03:19 cst 1999 i686 unknown ' hint=recommended, useposix=true, d_sigaction=define usethreads=undef useperlio=undef d_sfio=undef Compiler: cc='cc', optimize='-O2', gccversion=egcs-2.91.66 19990314/Linux (egcs-1.1.2 release) cppflags='-Dbool=char -DHAS_BOOL' ccflags ='-Dbool=char -DHAS_BOOL' stdchar='char', d_stdstdio=undef, usevfork=false intsize=4, longsize=4, ptrsize=4, doublesize=8 d_longlong=define, longlongsize=8, d_longdbl=define, longdblsize=12 alignbytes=4, usemymalloc=n, prototype=define Linker and Libraries: ld='cc', ldflags =' -L/usr/local/lib' libpth=/usr/local/lib /lib /usr/lib libs=-lnsl -lndbm -lgdbm -ldb -ldl -lm -lc -lposix -lcrypt libc=, so=so, useshrplib=false, libperl=libperl.a Dynamic Linking: dlsrc=dl_dlopen.xs, dlext=so, d_dlsymun=undef, ccdlflags='-rdynamic' cccdlflags='-fpic', lddlflags='-shared -L/usr/local/lib' Characteristics of this binary (from libperl): Built under linux Compiled at Nov 16 1999 19:32:59 @INC: /opt/perl5/lib/5.00503/i686-linux /opt/perl5/lib/5.00503 /opt/perl5/lib/site_perl/5.005/i686-linux /opt/perl5/lib/site_perl/5.005 . from email archive: snip Installing mod_ssl was a breeze for me. I followed mod_ssl's instructions for "b) The flexible APACI-only way": ./configure --with-apache=../apache_1.3.x Then: mod_perl-x.xx % SSL_BASE=... perl Makefile.PL ... make test make install For your configure options, just create a $HOME/.makepl_args.mod_perl that looks like so: APACHE_PREFIX=/weblab/software/packages/apache-1.3.2
RE: Hey, that ain't tainted, is it?
That would be ALL of it wouldn't it? G
Anyway, I'm still not sure how the hello world script violates the use
of tainted data... it just goes to STDOUT (browser).
may be because you load some other module which is not taint-clean. Look
at this in this way -- lots of people run more complicated code than a
"hello world" and doesn't have a taint problem. So there is something
different about your server. Try to remove any preload and other code that
you don't need and start afresh with a hello world script, then move back
the rest one by one until you find the offensive one. BTW, try testing it
with mod_cgi too, don't forget to add -wT at the shebang line...
If I understand this correctly, I've got to run *all* my user input
through a regex and use the resultant $1, $2 parts as my data? What
about data from an SQL db via DBI, is that "pre-tainted"?
Not really, there are also other things to do when perl complains about
taint problems. Like setting $ENV{PATH} and more... the manpage talks
about these *other* things.
Thanks, John.
PS The updated guide is very nice. (Maybe my problem is I shouldn't be
reading the guide, the panther book, the ram book, and the eagle book,
all at the same time. G)
:)
-Original Message-
From: Stas Bekman [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 10, 2000 4:34 PM
To: John Walker
Cc: '[EMAIL PROTECTED]'
Subject: Re: Hey, that ain't tainted, is it?
% perldoc perlsec
-- is what you are looking for. it's all there...
[...]
___
Stas Bekmanmailto:[EMAIL PROTECTED] http://www.stason.org/stas
Perl,CGI,Apache,Linux,Web,Java,PC http://www.stason.org/stas/TULARC
perl.apache.orgmodperl.sourcegarden.org perlmonth.comperl.org
single o- + single o-+ = singlesheavenhttp://www.singlesheaven.com
Re: VirtualSellers.com TAME patent
On Mon, 10 Jan 2000, Jeffrey W. Baker wrote: Vivek Khera wrote: "JB" == Jason Bodnar [EMAIL PROTECTED] writes: JB Actually, prior art prohibits something from being patented. If JB somebody can demonstrate that the pantented concept is not new due JB to prior art then the patent office will not issue the patent. So, to all of you, what does this have to do with mod_perl? This certainly is not a patent-reform mailing list. Please take this discussion somewhere more appropriate. Thanks. Oh be serious. A patent on a programming language embedded in a markup langauge would have a serious effect on the mod_perl community. There are several such languages which work with mod_perl, and at least two of them are supported directly on this list. Wasn't Advocacy mod_perl list [EMAIL PROTECTED] created just for that and similar purposes? ___ Stas Bekmanmailto:[EMAIL PROTECTED] http://www.stason.org/stas Perl,CGI,Apache,Linux,Web,Java,PC http://www.stason.org/stas/TULARC perl.apache.orgmodperl.sourcegarden.org perlmonth.comperl.org single o- + single o-+ = singlesheavenhttp://www.singlesheaven.com
