Re: Few Important Questions
Eric Cholet wrote: Mustafa Tan wrote: Hi Everybody, mod_perl is a great software. Thanks for everybody who spent time on it and make it available. When you send a reply to this, can you also describe how we can help, as an individiual, to support mod_perl and people behind it financially. Mustafa, one way to provide financial support is a donation: http://www.apache.org/foundation/contributing.html There's a paypal button on that page, and an address for sending checks. The ASF is a non profit org which makes donations tax deductible. mod_perl relies on the ASF infrastructure for its CVS server, mailing lists and web sites. Donations help fund these infrastructure expenses. Actually I think it's better to contribute to perl foundation instead. Since it now supports specific grants for specific tasks/people, whereas ASF's donation won't go to the mod_perl developers but will be used to support the global ASF infrastructure (which is of course not least important, but that won't fulfill your goal) Therefore if you have someone who you want to sponsor you can submit a request for it here: http://www.perl-foundation.org/index.cgi?page=grants __ Stas BekmanJAm_pH -- Just Another mod_perl Hacker http://stason.org/ mod_perl Guide --- http://perl.apache.org mailto:[EMAIL PROTECTED] http://use.perl.org http://apacheweek.com http://modperlbook.org http://apache.org http://ticketmaster.com
Re: Few Important Questions
On, or in the near vicinity of Wed, 18 Jun 2003 18:34:09 -0700 (PDT)
Mustafa Tan [EMAIL PROTECTED] has thus spoken:
Another question is that, why hosting guys avoid using
mod_perl. Is it just because mod_perl is memory
hungry?
One reason I've heard is because of namespace security issues. Ie. if ISPs
allow all their users access to mod_perl on the same Apache server, then any
user can potentially interfere with/have access to other users' mod_perl
modules. Don't know if this is a really valid reason (it seems with
Apache::Registry this would not be a problem), it's just something I've heard.
Has anyone in the mod_perl community given namespace security much thought?
Finally how can I dynamically ban an ip address in
mod_perl. For example, normally you can specify
certain ip addresses with Allow, Deny directives. How
can I do that dynamically using mod_perl.
You would need to write your own AuthzHandler, and specify it with a
PerlAuthzHandler directive in your Apache conf file. See the mod_perl
docs/guide/books etc. Very briefly, you'll want to do something like:
package My::IPFilter;
use Apache::Constants qw(:common M_GET FORBIDDEN REDIRECT);
sub ip_filter {
my ($class, $r) = @_;
my $ip = $r-connection-remote_ip;
my @banned_ips = ('w.x.y.z', 'a.b.c.d', ...);
if (grep($ip eq $_, @banned_ips)) {
return FORBIDDEN;
}
return OK;
}
Then, in your httpd.conf:
Location /secure_uris
SetHandler perl-script
PerlAuthzHandler My::IPFilter-ip_filter
/Location
This is a very minimal example of what you need, just to get you started in the
right direction - you should consult the docs to get you further. You may want
to use require statements in your conf file, in which case you'll need more
than that. I recommend Apache::AuthCookie as it has good builtin support for
custom require methods in mod_perl.
-Adi
Re: Few Important Questions
On Mon, 2003-06-30 at 17:00, Adi Fairbank wrote: One reason I've heard is because of namespace security issues. Ie. if ISPs allow all their users access to mod_perl on the same Apache server, then any user can potentially interfere with/have access to other users' mod_perl modules. Don't know if this is a really valid reason (it seems with Apache::Registry this would not be a problem), it's just something I've heard. It is valid. You can easily interfere with other people's code if you want to. Has anyone in the mod_perl community given namespace security much thought? It's so cheap to rent a virtual server these days that it's not really worth trying to fix it in mod_perl. Just rent your own virtual server with root access and set it up how you want it. - Perrin
Re: Few Important Questions
Mustafa Tan wrote: Hi Everybody, mod_perl is a great software. Thanks for everybody who spent time on it and make it available. When you send a reply to this, can you also describe how we can help, as an individiual, to support mod_perl and people behind it financially. Mustafa, one way to provide financial support is a donation: http://www.apache.org/foundation/contributing.html There's a paypal button on that page, and an address for sending checks. The ASF is a non profit org which makes donations tax deductible. mod_perl relies on the ASF infrastructure for its CVS server, mailing lists and web sites. Donations help fund these infrastructure expenses. Thanks! -- Eric Cholet
Few Important Questions
Hi Everybody, mod_perl is a great software. Thanks for everybody who spent time on it and make it available. When you send a reply to this, can you also describe how we can help, as an individiual, to support mod_perl and people behind it financially. Now here are some of my questions. I am working on a project that will enable people, regular people, to use their computers remotely using apache and a web browser. I have various questions though. I started this with CGI, then migrated to mod_perl. However I want to bring a very general solution to the problem, so that developers can develop in any language they want. Number one issue is that, I selected perl because that's how I get started. Now I am using mod_perl for speed and various other issues. But what is the fastest solution out there. This application is supposed to run on a standalone PC, so it doesn't have to scale well, but it has to be as fast as possible. Is mod_perl the fastest solution available, other than the C of course. How does it compare to java. Second, what are my options if I want to combine mod_perl with other solutions, such as php, java and so on. One problem seem to be the session management. The second problem is that I want to be able to mix perl files with php files. For example the directory which should be handled by mod_perl should also have php files which should also run fine. Another question is that, why hosting guys avoid using mod_perl. Is it just because mod_perl is memory hungry? Finally how can I dynamically ban an ip address in mod_perl. For example, normally you can specify certain ip addresses with Allow, Deny directives. How can I do that dynamically using mod_perl. You can answer any of the above. Thanks __ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
