Re: modperl with SSL

2008-03-25 Thread Clinton Gormley 
On Tue, 2008-03-25 at 17:45 +0800, J. Peng wrote:
> thanks.
> how about the capability of it?
> We have more than 100 million users,that's a great challenge.

That's a lot of users :)

I don't have the experience of supporting that number of users, but I've
used it on a site with 80 requests / second, and it didn't blink.  Load
was always low, memory usage minimal.

Searching google, it appears that you may need to increase the number of
fd's available to pound in that busy an environment, but otherwise, I
think it unlikely that you'll have any issues.

Clint
> 
> 
> On Tue, Mar 25, 2008 at 5:14 PM, Clinton Gormley <[EMAIL PROTECTED]> wrote:
> >
> > On Mon, 2008-03-24 at 15:25 +0800, J. Peng wrote:
> >  > hello list,
> >  >
> >  > we have our own realserver called QHttpd.
> >  > This realserver doesn't support SSL protocal (https).
> >  > So I have to develop a proxy before QHttpd to get it be compatible with 
> > SSL.
> >  > I was thinking using modperl handler to do it.
> >  > modperl accept the SSL connection from clients, do the verification,
> >  > and if it's valid, redirect it to realserver with non-SSL (common
> >  > http) protocal.
> >  > Is it possible? if so, how to begin with it? at which stage?
> >  > Thanks in advance.
> >
> >  You could also use Pound (http://www.apsis.ch/pound) which I use in
> >  exactly the way described above.  Easy to set up, fast, stable, small.
> >
> >  clint
> >
> >

Re: modperl with SSL

2008-03-24 Thread xyon 
I also recommend stunnel. It has come through for me in these same
situations without problems.

On Mon, 2008-03-24 at 07:46 -0400, Roberto C. Sánchez wrote:
> On Mon, Mar 24, 2008 at 03:25:26PM +0800, J. Peng wrote:
> > hello list,
> > 
> > we have our own realserver called QHttpd.
> > This realserver doesn't support SSL protocal (https).
> > So I have to develop a proxy before QHttpd to get it be compatible with SSL.
> > I was thinking using modperl handler to do it.
> > modperl accept the SSL connection from clients, do the verification,
> > and if it's valid, redirect it to realserver with non-SSL (common
> > http) protocal.
> > Is it possible? if so, how to begin with it? at which stage?
> > Thanks in advance.
> > 
> Would something like iprelay or stunnel not be sufficient for your
> needs?
> 
> Regards,
> 
> -Roberto

Re: modperl with SSL

2008-03-24 Thread Roberto C . Sánchez 
On Mon, Mar 24, 2008 at 03:25:26PM +0800, J. Peng wrote:
> hello list,
> 
> we have our own realserver called QHttpd.
> This realserver doesn't support SSL protocal (https).
> So I have to develop a proxy before QHttpd to get it be compatible with SSL.
> I was thinking using modperl handler to do it.
> modperl accept the SSL connection from clients, do the verification,
> and if it's valid, redirect it to realserver with non-SSL (common
> http) protocal.
> Is it possible? if so, how to begin with it? at which stage?
> Thanks in advance.
> 
Would something like iprelay or stunnel not be sufficient for your
needs?

Regards,

-Roberto
-- 
Roberto C. Sánchez
http://people.connexer.com/~roberto
http://www.connexer.com


signature.asc
Description: Digital signature

Re: modperl with SSL

2008-03-24 Thread Issac Goldstand 


a backend server - the server that REALly serves the request.

Foo JH wrote:

What is a realserver?

J. Peng wrote:

hello list,

we have our own realserver called QHttpd.
This realserver doesn't support SSL protocal (https).
So I have to develop a proxy before QHttpd to get it be compatible 
with SSL.

I was thinking using modperl handler to do it.
modperl accept the SSL connection from clients, do the verification,
and if it's valid, redirect it to realserver with non-SSL (common
http) protocal.
Is it possible? if so, how to begin with it? at which stage?
Thanks in advance.

B. Regards,
Joy P.

Re: modperl with SSL

2008-03-24 Thread J. Peng 
realserver, generally, it means a web server like apache, which is
different from a proxy like squid.

On Mon, Mar 24, 2008 at 3:56 PM, Foo JH <[EMAIL PROTECTED]> wrote:
> What is a realserver?
>
>
>
>  J. Peng wrote:
>  > hello list,
>  >
>  > we have our own realserver called QHttpd.
>  > This realserver doesn't support SSL protocal (https).
>  > So I have to develop a proxy before QHttpd to get it be compatible with 
> SSL.
>  > I was thinking using modperl handler to do it.
>  > modperl accept the SSL connection from clients, do the verification,
>  > and if it's valid, redirect it to realserver with non-SSL (common
>  > http) protocal.
>  > Is it possible? if so, how to begin with it? at which stage?
>  > Thanks in advance.
>  >
>  > B. Regards,
>  > Joy P.
>  >
>
>

Re: modperl with SSL

2008-03-24 Thread Foo JH 

What is a realserver?

J. Peng wrote:

hello list,

we have our own realserver called QHttpd.
This realserver doesn't support SSL protocal (https).
So I have to develop a proxy before QHttpd to get it be compatible with SSL.
I was thinking using modperl handler to do it.
modperl accept the SSL connection from clients, do the verification,
and if it's valid, redirect it to realserver with non-SSL (common
http) protocal.
Is it possible? if so, how to begin with it? at which stage?
Thanks in advance.

B. Regards,
Joy P.

modperl with SSL

2008-03-24 Thread J. Peng 
hello list,

we have our own realserver called QHttpd.
This realserver doesn't support SSL protocal (https).
So I have to develop a proxy before QHttpd to get it be compatible with SSL.
I was thinking using modperl handler to do it.
modperl accept the SSL connection from clients, do the verification,
and if it's valid, redirect it to realserver with non-SSL (common
http) protocal.
Is it possible? if so, how to begin with it? at which stage?
Thanks in advance.

B. Regards,
Joy P.