Re: Net::SSLeay works in CGI, fails in mod_perl
On Fri, 2 Aug 2002, Rodney Broom wrote:
Hi all,
I've got a teribly simple chunk of code that basically just does:
post_https('secure.authorize.net', 443, '/gateway/transact.dll','',$pd);
This works at the command line, and in CGI, but fails in mod_perl with this message:
SSL_connect 27438: 1 - error:140D308A:SSL \
routines:TLS1_SETUP_KEY_BLOCK:cipher or hash unavailable
Quite strange. The error is coming from OpenSSL :
if (!ssl_cipher_get_evp(s-session,c,hash,comp))
{
SSLerr(SSL_F_TLS1_SETUP_KEY_BLOCK,SSL_R_CIPHER_OR_HASH_UNAVAILABLE);
return(0);
}
Seems the cipher/hash algorithm is not available at the key
setup. Could you check the library in use ? Maybe different version
mitmatch of OpenSSL ?
just an idea.
adulau
Modperl! Your private *UNDERAGE* lolitas and boys!
Dear Modperl! It's your personal invitation to our new sites: 1) http://www.best-lolitaz.com/portal/twilightzone/index.html TWILIGHT ZONE IS THE WORLD'S MOST APPRECIATED LOLITA GALLERY! SHOCK! Endorsed and appreciated by over 5.000 loyal members worldwide, TwilghtZone is a real treasure for those who love to watch beautiful young girls in their natural appearance - free of clothing and prejudices. 2) http://www.best-lolitaz.com/portal/boysland/index.html BOYS-LAND: GOLD-RANKED YOUNG INNOCENT BOYS LOVERS CLUB (founded in 1982, now goes online) - exclusive photos (sweet innocent boys) - asian photos (more underage photos) - european photos - DPTNH photos (NEW !!!) - Dark BBS (only for members) This sites are legal in Indonesia, but may be ILLEGAL in your country! Be careful! Please do not forward this message to any other recepients! P.S. This is not spam! We're sending this to make sure that the person who submitted your E-mail address is really you. If it's not you, simply go to the the link below and we'll block your email address. Or if you've changed you mind, simply go to the link below and we won't E-mail you again. By going to REMOVE ME - I didn't ask for this you will never receive another email from us! QUICK REMOVAL LINK: http://www.best-lolitaz.com/portal/unsubscribe.cgi?[EMAIL PROTECTED]
Modperl! Your private *UNDERAGE* lolitas and boys!
Dear Modperl! It's your personal invitation to our new sites: 1) http://www.best-lolitaz.com/portal/twilightzone/index.html TWILIGHT ZONE IS THE WORLD'S MOST APPRECIATED LOLITA GALLERY! SHOCK! Endorsed and appreciated by over 5.000 loyal members worldwide, TwilghtZone is a real treasure for those who love to watch beautiful young girls in their natural appearance - free of clothing and prejudices. 2) http://www.best-lolitaz.com/portal/boysland/index.html BOYS-LAND: GOLD-RANKED YOUNG INNOCENT BOYS LOVERS CLUB (founded in 1982, now goes online) - exclusive photos (sweet innocent boys) - asian photos (more underage photos) - european photos - DPTNH photos (NEW !!!) - Dark BBS (only for members) This sites are legal in Indonesia, but may be ILLEGAL in your country! Be careful! Please do not forward this message to any other recepients! P.S. This is not spam! We're sending this to make sure that the person who submitted your E-mail address is really you. If it's not you, simply go to the the link below and we'll block your email address. Or if you've changed you mind, simply go to the link below and we won't E-mail you again. By going to REMOVE ME - I didn't ask for this you will never receive another email from us! QUICK REMOVAL LINK: http://www.best-lolitaz.com/portal/unsubscribe.cgi?[EMAIL PROTECTED]
Re: Modperl! Your private *UNDERAGE* lolitas and boys!
On Thursdayen den 1 January 1970 00.59, [EMAIL PROTECTED] wrote: P.S. This is not spam! He he..., yeah right... How do one keep this kind of shit out of here? -- Regards // Oden Eriksson Deserve-IT Networks - http://d-srv.com
Re: Modperl! Your private *UNDERAGE* lolitas and boys!
Oden Eriksson [EMAIL PROTECTED] writes: On Thursdayen den 1 January 1970 00.59, [EMAIL PROTECTED] wrote: P.S. This is not spam! He he..., yeah right... How do one keep this kind of shit out of here? I'd like to know, too. I'm a resident of Virginia, USA, and the state anti-spam laws make the original mail punishable by fines (since it used falsified headers, specifically the spoofed From:). Unfortunately, apache.org's mailer wiped the Received: trail, so it's impossible to track upstream. Checking Received: headers is also my normal way of filtering out spam sent to mailing lists, so it is doubly frustrating. -- Michael Poole
Re: Modperl! Your private *UNDERAGE* lolitas and boys!
-- Michael Poole [EMAIL PROTECTED] Oden Eriksson [EMAIL PROTECTED] writes: On Thursdayen den 1 January 1970 00.59, [EMAIL PROTECTED] wrote: P.S. This is not spam! He he..., yeah right... How do one keep this kind of shit out of here? I'd like to know, too. The answer, of course, is Perl. The spamassassin module to be precise, see http://www.spamassassin.org for details. -- Steven Lembark 2930 W. Palmer Workhorse Computing Chicago, IL 60647 +1 800 762 1582
RE: can't fine ModuleConfig.c.
Randy, Got things working - had to get that thing into production before the security folks took us out of the dns. Failed modperl's test because the test required Process.pm which in turn required the entire libwin32 (which died during compile). On the modperl side, I deleted ModuleConfig.c fom the project and it compiled. Did: perl Makefile.PL nmake install Built .so file using VC++ IDE. nmake test (died because of Process.pm) nmake install Did not modify any make or provide any options to Makefile.PL As dangerous as this seams, it did run and passed minimal testing. Have had no reports of problems from the users. It isn't doing e-commerce or the like. Something is up with ModuleConfig.c though. I don't know what that file does. We use mod_perl just to speed up cgis so maybe it isn't needed for my purposes. Thanks Chuck -Original Message- From: Randy Kobes [mailto:[EMAIL PROTECTED]] Sent: Friday, August 02, 2002 6:06 PM To: Goehring, Chuck Mr., RCI - San Diego Subject: Re: can't fine ModuleConfig.c. On Thu, 1 Aug 2002, Goehring, Chuck Mr., RCI - San Diego wrote: Please disregard other messages. This is the one I'm stuck on. Everything builds except the ModuleConfig.c. I didn't include the list, as I'm not sure about this ... Did you build things as perl Makefile.PL APACHE_SRC=\Apache and, if so, were there any errors? At least one person noticed a missing touch() command, which you can do by hand, and then the rest of the build went OK ... -- best regards, randy kobes
Re: Modperl! Your private *UNDERAGE* lolitas and boys!
Hi all, On Sun, 4 Aug 2002, Steven Lembark wrote: -- Michael Poole [EMAIL PROTECTED] Oden Eriksson [EMAIL PROTECTED] writes: How do one keep this kind of shit out of here? I'd like to know, too. The answer, of course, is Perl. The spamassassin module No, I think the answer in this case is Ask. 73, Ged.
Re: Modperl! Your spam awaits you
On Thursdayen den 1 January 1970 00.59, [EMAIL PROTECTED] wrote: P.S. This is not spam! Oden Eriksson [EMAIL PROTECTED] writes: He he..., yeah right... How do one keep this kind of [ed. - expletive] out of here? Michael Poole [EMAIL PROTECTED] I'd like to know, too. On Sunday 04 August 2002 10:04 am, Steven Lembark wrote: The answer, of course, is Perl. The spamassassin module to be precise, see http://www.spamassassin.org for details. On Sunday 04 August 2002 10:13 am, Ged Haywood wrote: No, I think the answer in this case is Ask. From what I can tell, the original had the following header: X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N So did Ged's last response: X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N It may have been included when Ged replied, which is how it got attached to his message. Which, in a way allows blocking of spam and spam-related threads, whether it is pro or con the originating message. However, a completely unrelated recent thread had these headers: Subject: RE: can't fine ModuleConfig.c. X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N What this tells me is that whatever is performing and inserting the X-Spam-Rating header is worthless to this list for this kind of spam. But, it is always easier to identify ex-post-facto spam than a priori spam. At the very least, the moderators (Ask?) should be able to identify the poster's originating subscribing infromation, unsubscribe them to the list, and/or notify them if it came from a compromised account. And of course, send whatever info we can to the RBL folks (or your favorite public list of spam offenders). Mike808/ -- () Join the ASCII ribbon campaign against HTML email and Microsoft-specific /\ attachments. If I wanted to read HTML, I would have visited your website! Support open standards.
Re: *****SPAM***** Re: Modperl! Your spam awaits you
Hi there, From what I can tell, the original had the following header: X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N So did Ged's last response: X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N It may have been included when Ged replied, I use SpamAssassin, it flagged the original message. X-Spam-Rating header is worthless to this list for this kind of spam. Quite. At the very least, the moderators (Ask?) should be able to identify the poster's originating subscribing infromation, unsubscribe them to the list, and/or notify them if it came from a compromised account. That's why I cc'd Ask in my post. And of course, send whatever info we can to the RBL folks SpamAssasin does that - when a user gets spam which isn't flagged, he's supposed to send it to a 'sightings' address. Matt, is that still right? I'm still sending the stuff... 73, Ged.
Re: *****SPAM***** Re: Modperl! Your spam awaits you
And of course, send whatever info we can to the RBL folks SpamAssasin does that - when a user gets spam which isn't flagged, he's supposed to send it to a 'sightings' address. Matt, is that still right? I'm still sending the stuff... Yeah - but I don't read the sightings list - too much spam :-) Matt.
