Matt List,
Is there any benefit of mod_proxy over a real proxy front end like "Oops"?
This is a good question..., the only answer I've come up with thus far
from reading the new-httpd devel list is compelling though. Here's
what people there said in response to folks trying to kill
Is anyone else having problems with Perl 5.6?
I just setup a new development box with fresh
installs of:
Perl 5.6
Apache 1.3.12 (compiled w/mod_perl 1.23 + PHP4 RC1)
Everything compiles and runs fine expect any
scripts that use either DBI or Apache::DBI.
My scripts work fine on a Perl 5.004 +
from his webtechniques article a while back--(source code
is available at www.webtechniques.com)... here's a slice from
r.schwartz's quickie DBIlogger--
$r-push_handlers (
PerlLogHandler =
sub {
my $orig = shift;
my $r = $orig-last;
my @data =
(
where would an intrepid innocent turn for details on what methods
and/or fields are available to the PerlLogHandler in the passed
arglist @_ array (okay, $_[0] or shift) ?
apparently
-last and
-request_time and
-status
..and $_[0]-last has submethods including
get_remote_host,
Right, but the difference with Oops is it's a threaded server, and while I
couldn't get it to work (the author appears to be Russian, and his idea of
documentation is "oops.cfg is easy to understand. Just edit it"), it looks
like it should be extremely quick, even if serving static images
Hello all!
Today I tried to install mod_auth_digest (Apache 1.3.12).
Installed without any problems, but when I request scripts with parameters
in protected directory -
Bad Request
requested URI /manager/script.asp not equals /manager/script.asp?param_1=23
Aha, this is a new bug with the new version of Apache::Filter. As of 1.008,
the headers aren't sent until the first body text is output. That means that
during a HEAD request, they're never sent.
I've got a fix in mind - in the meantime you can downgrade to 1.007.
[EMAIL PROTECTED] (Trevor
Hi buddy... I have a recommendation for you...
Here where I work, we have a unix and a linux running Oracle databases
accessed by perl and ASP, perl is embeded, I mean, .phtml, and it really
sucks, I mean, is really crazy to do that, but the ppl didn´t know that...
in that way we connect with
In last message I say this: in that way we connect with oracle with DBI
trought modperl
but what I did really want to say was... we connect with oracle trought DBI
and we use modperl for connect with the webserver.
Sorry, i hope is all clear...
bybye
Nazareno
Perl Programmer www.obsequie.com
Hi buddy, I have a recommendation for you. Keep recommendations like
this off the modperl list. Some people use Apache::Asp and they're
happy with it, others you Embperl, others use Mason. Some crazy
people like me occasionaly write web apps in c. If you have a
recommendation... I recommend
Steve Hay wrote:
I'm having a problem compiling mod_perl 1.23 (with Apache 1.3.12 / Perl
5.6.0) as a DSO using APXS on Solaris 2.4.
In case anyone is interested...
I've solved my own problem (just as well, really). If I re-compile
everything with the -Xa compiler flag then it all works out
Good For you buddie:)
We know that you can do that... ;)
bybye
Nazareno
Perl Programmer www.obsequie.com
On Wed, 26 Apr 2000, David Hajoglou wrote:
so, is it possible to take a GET request and rewrite the uri into a POST
request and if so how?
i'm not sure if that's really necessary. you could just put the GET args
into $r-pnotes, perhaps like so:
sub handler {
my $r = shift;
return
On Tue, 25 Apr 2000, Doug MacEachern wrote:
On Fri, 21 Apr 2000, Greg Cope wrote:
Does this mean that we {will|may} be able to use the interpreter pool to
set up X Perl interpreters (say 20 to service dynamic handlers) with Z
apache (say 60 to handle static + dynamic content -
The first release of the packaged up Apache XML Delivery Toolkit is now
available for download, at http://xml.sergeant.org/download/
The kit bundles together the following modules:
Apache::MimeXML
Apache::XMLStylesheet
Apache::NotXSLT
Apache::XPathScript
Theres not very much documentation
-Original Message-
From: Ken Y. Clark [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 27, 2000 9:06 AM
To: [EMAIL PROTECTED]
Subject: Re: how to rewrite to a POST
On Wed, 26 Apr 2000, David Hajoglou wrote:
so, is it possible to take a GET request and rewrite the
uri
On Thu, 27 Apr 2000, Ken Y. Clark wrote:
On Wed, 26 Apr 2000, David Hajoglou wrote:
so, is it possible to take a GET request and rewrite the uri into a POST
request and if so how?
i'm not sure if that's really necessary. you could just put the GET args
into $r-pnotes, perhaps like
According to Matt Sergeant:
Is there any benefit of mod_proxy over a real proxy front end like "Oops"?
I've run squid as an alternative and did not see any serious
differences except that the caching was defeated about 10% of the
time even on images, apparently because the clients were hitting
"MS" == Matt Sergeant [EMAIL PROTECTED] writes:
doing - and the TCP listen queue will hold a few more
connections if you are slightly short of backends.
MS Is there any benefit of mod_proxy over a real proxy front end like "Oops"?
Not being familiar with "Oops", I can say that I use
All this talk of mod_proxy has me wondering: What's the conventional
wisdom regarding the speed up or load balancing of a server running
something like Apache::ASP, or anything else that tracks sessions?
If you split things between a proxy and a mod_perl server, the first hit
would have to go
On: Thu, 27 Apr 2000 09:06:24 EDT "Ken Y. Clark" wrote:
On Wed, 26 Apr 2000, David Hajoglou wrote:
so, is it possible to take a GET request and rewrite the uri into a POST
request and if so how?
i'm not sure if that's really necessary. you could just put the GET args
into $r-pnotes, perhaps
I'm behind a 64k leased line here (net access is *extremely* expensive
here in the UK) and I was thinking, a proxy front end is probably really
not necessary for me. Worst case scenario: I get 8 clients connecting to
my at about 1KB/s - my pipe is maxed out anyway, so pushing them
onto a proxy is
hi,
so your saying that say 'squid' would not be productive? seems
to me that if you are caching http and ftp stuff well that is going to
provide you with the pseudo of more bandwidth.. since not all requests
need to go beyond squid .. being delivered from the cache or chain of
On Thu, 27 Apr 2000, dreamwvr wrote:
hi,
so your saying that say 'squid' would not be productive? seems
to me that if you are caching http and ftp stuff well that is going to
provide you with the pseudo of more bandwidth.. since not all requests
need to go beyond squid .. being
hi,
that is the whole point about squid since not all requests need to go all
the way out there and all the way back:-))
On Thu, 27 Apr 2000, Matt Sergeant wrote:
On Thu, 27 Apr 2000, dreamwvr wrote:
hi,
so your saying that say 'squid' would not be productive? seems
to me
Matt Sergeant wrote:
If I can't serve pages any faster, or to more people because
of bandwidth limitations - what good can it do me?
dreamwvr may to trying to get the point across that squid could
be on the ISP side of your 64K line. I don't think this is going
to happen in practice, though.
"d" == dreamwvr [EMAIL PROTECTED] writes:
d that is the whole point about squid since not all requests need to go all
d the way out there and all the way back:-))
The discussion here is using squid as a reverse proxy, to accelerate
your httpd to the outside world. Not using squid as a
You could however have someone with much more bandwidth than you use
mod_proxy to proxy and cache your site. Like someone such as myself
where bandwidth in the US is so cheap it's ridiculous. Upgrading to
T1 size pipe in a couple weeks at $200/mo with DSL... hehe, too
awesome. (384k now) So,
Talking about speed... I have a SGI with a line of 64k running two Apache,
one with mod_perl, mod_ssl and mod_asp with databases Oracle and seems like
httpd overload, he eat a lot of memory and the site is getting slow, i
suposse the problem is on the databases
(we all know about Oracle
On Thu, 27 Apr 2000 [EMAIL PROTECTED] wrote:
You could however have someone with much more bandwidth than you use
mod_proxy to proxy and cache your site. Like someone such as myself
where bandwidth in the US is so cheap it's ridiculous. Upgrading to
T1 size pipe in a couple weeks at
Ok, looking at all the posts I need to spell all of it out. I am using
the database through the backend to prevend any passwords from being
transmited and possibally cached in a browser. Here is how it works:
Our user, lets call him John, loggs into our portal. This is a microsoft
environment
On Apr 27, David Hajoglou wrote:
I need to use the post, because that is what php3 is expecting. If
anybody can think of any better way I would like to hear it. If not, then
is it possible to translate a GET uri into a POST uri with a
PerlTransHandler (or any other handler for that
On Thu, 27 Apr 2000, Matt Sergeant wrote:
1 mod_perl process could handle all the load
you could possibly generate, and just let the mod_proxies build up and
you'll see a lot lower memory usage on your box... seriously, in low
bandwidth situations if your using the box for more than
Install mod_proxy. It will help... you see..., with a pipe that small
your httpd children are just sort of hanging around feeding really
really small packets. With mod_proxy you have two sets of processes.
For your bandwidth, you only need ONE big old fat mod_perl process.
And ten really really
"Michael" == Michael Schout [EMAIL PROTECTED] writes:
Michael Okay. I guess I am at a loss as to what this module should
Michael be named then. It is heaily based on the TicketAccess
Michael system in the modperl book. It is a ticket based
Michael authentication system.
"Bruce W. Hoylman" [EMAIL PROTECTED] wrote:
"Michael" == Michael Schout [EMAIL PROTECTED] writes:
Michael Okay. I guess I am at a loss as to what this module should
Michael be named then. It is heaily based on the TicketAccess
Michael system in the modperl book. It is a ticket
OK, just to get this onto a different subject line... I can't seem to get
mod_proxy to work on the front end with name based virtual hosts on the
backend, I can only get it to work if I have name based virtual hosts on
both ends. So I have a front end saying:
NameVirtualHost 194.70.26.133
I'm not very skilled in this area, but it looks like you are proxying to
a backend on port 8080, but you never specify port 8080 in the config
for the backend... Perhaps this is it? Or did you leave out part of the
backend config?
Matt Sergeant wrote:
OK, just to get this onto a different
"MS" == Matt Sergeant [EMAIL PROTECTED] writes:
MS OK, I can't figure this out.. help me out here. I want to deal with my
MS virtual hosts on the heavyweight server. The frontend server should just
MS be a simple thing that I never have to touch.
Front end must be virtual-host aware as well.
"MS" == Matt Sergeant [EMAIL PROTECTED] writes:
MS OK, just to get this onto a different subject line... I can't seem to get
MS mod_proxy to work on the front end with name based virtual hosts on the
MS backend, I can only get it to work if I have name based virtual hosts on
MS both ends. So I
On Thu, 27 Apr 2000, Drew Taylor wrote:
I'm not very skilled in this area, but it looks like you are proxying to
a backend on port 8080, but you never specify port 8080 in the config
for the backend... Perhaps this is it? Or did you leave out part of the
backend config?
No - I just left
| Oh, almost forget it... ASP is a loose of time on developer time... and
the
| module is to heavy, sorry but betwen oracle and ASP our server is down in
| performance, we run unix on a SGI and with 256mb ram...
| If you are trying to put ASP cause you don´t want to break the designer
| work, you
On Thu, 27 Apr 2000, Vivek Khera wrote:
"MS" == Matt Sergeant [EMAIL PROTECTED] writes:
MS OK, just to get this onto a different subject line... I can't seem to get
MS mod_proxy to work on the front end with name based virtual hosts on the
MS backend, I can only get it to work if I have
I'm interested in providing 'HTML email' support for my users (like HotMail, Outlook
Express, Eudora 4.0, etc provide), but I'm very nervous about security. Essentially,
providing HTML email involves letting any arbitrary HTML get displayed by Apache...
Has anyone done this, or can anyone
"MS" == Matt Sergeant [EMAIL PROTECTED] writes:
MS Still doesn't solve the problem of editing only 1 config file, unless I
MS generate a config file with perl :(
I don't think it is possible to do it such that you only have one
config file to edit. Both sides need to know about the virtual
According to Matt Sergeant:
OK, just to get this onto a different subject line... I can't seem to get
mod_proxy to work on the front end with name based virtual hosts on the
backend, I can only get it to work if I have name based virtual hosts on
both ends.
You should be able to use IP based
I was looking at Apache::Request file uploads again. IIRC, I decided to
prohibit file uploads early on in RequestNotes because at that time
RequestNotes was parsing the request and storing it in a hash and putting
that in pnotes and some suggested that blindly storing files in memory was a
bad
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I first tried to compile mod_perl-1.22 using APXS, but whenever I would
load the module, the Apache child would die.
Here's the command line I used:
perl Makefile.PL NO_HTTPD=1 EVERYTHING=1
WITH_APXS=/opt/apache-1.3.12/bin/apxs USE_APXS=1
I then
On Thu, 27 Apr 2000, Matt Sergeant wrote:
Is there any benefit of mod_proxy over a real proxy front end like "Oops"?
There's a big study of proxy servers posted at
http://bakeoff.ircache.net/N02/. There are some expensive ones with
dedicated hardware that perform well. Of course, there are
On Thu, 27 Apr 2000, Jeremy Howard wrote:
I'm interested in providing 'HTML email' support for my users (like
HotMail, Outlook Express, Eudora 4.0, etc provide), but I'm very
nervous about security. Essentially, providing HTML email involves
letting any arbitrary HTML get displayed by
On Thu, 27 Apr 2000, Marc Slemko wrote:
Cookies are not secure and will never be secure. They may be "good
enough", and you may not have much choice, but they are still simply not
secure when you put everything together.
Can you be more specific about why you say that? If I set an
On Thu, 27 Apr 2000, Nick Tonkin wrote:
On Thu, 27 Apr 2000, Marc Slemko wrote:
Cookies are not secure and will never be secure. They may be "good
enough", and you may not have much choice, but they are still simply not
secure when you put everything together.
Can you be more
On Thu, 27 Apr 2000, Marc Slemko wrote:
Can you be more specific about why you say that? If I set an encrypted,
short-lived cookie upon validated authentication, why is that any less
secure than any of the other approaches you mentioned?
It isn't necessarily any "less secure", but you
"SC" == Steven Champeon [EMAIL PROTECTED] writes:
SC developers and designers) for Webmonkey:
SC http://hotwired.lycos.com/webmonkey/00/18/index3a.html
SC If you want to see what sort of stuff the XSS problem opens you up for,
SC just try appending ?tw=scriptalert("aha!");/script to the URL
On Thu, 27 Apr 2000, Vivek Khera wrote:
Why on earth would you take user input and output it verbatim to your
pages? Rule number 1 of developing a web site is to never trust the
user's input values. *Always* validate it against what you're
expecting.
I guess someone had better tell the
On Thu, 27 Apr 2000, Vivek Khera wrote:
"SC" == Steven Champeon [EMAIL PROTECTED] writes:
SC developers and designers) for Webmonkey:
SC http://hotwired.lycos.com/webmonkey/00/18/index3a.html
SC If you want to see what sort of stuff the XSS problem opens you up for,
SC just try
Are php3 and ASP mutually exclusive?
I enabled mod_perl and mod_php3 (the defaults that come in the RH6.1
distrib)
and installed Apache::ASP, and while either or work, if I enable both the
server spontaneously combusts. (It will touch the log files if they do not
exist, and then disappear).
hi all...
well, this isn't a new module quite yet... I've been toying with
the idea of a module that does automatic server monitoring. I know there
must be programs out there that do this, and the guide has some examples,
but I was interested in creating a module add-in that would take
On Thu, 27 Apr 2000, Vivek Khera wrote:
"SC" == Steven Champeon [EMAIL PROTECTED] writes:
SC developers and designers) for Webmonkey:
SC http://hotwired.lycos.com/webmonkey/00/18/index3a.html
SC If you want to see what sort of stuff the XSS problem opens you up for,
SC just try
I have a question. I'm working on a project that requires not only file-by-file
authentication and authorization, but task-by-task authorization within a file (for
instance...read access, but not write). Basically, I'd like to have a database table
define permissions (which can be associated
Different paradigm. There aren't going to be any unix users corresponding to the
users on the site (read: like an amazon.com user, not a unix user). This is going to
be used on a website for personalization stuff, and I think the potential of having
100+ unix users is a bad thing for
On Thu, 27 Apr 2000, bahwi wrote:
I have a question about OOP, Inheritance, and mod_perl. I have OO
pre-loaded module A, which clients B, C, and D use. Each one get's
their own, and the configuration variables are different. My question here
is how much memory does this take up? Is the
On Thu, 27 Apr 2000, Dan McCormick wrote:
If you split things between a proxy and a mod_perl server, the first hit
would have to go through to the mod_perl server to initiate the session,
but subsequent requests which may not need the session info could be
sent to the proxy. Is that
We use a two stage system, Access and a combination
Authentication/Authorization stage.
When the user attempts to access a page a mod_perl Access handler checks
for a cookie (we think it's pretty secure :) showing they have been
previously authenticated. If not, they are sent off to an
I am a bad hacker and watching your line. I see cookies A and B go to you.
I set cookies A and B in my web browser. I am now you. You can try to
permute the cookies with IP# (breaks on proxies) or Browser type, but all
cookie based approaches believe in the value of something sent cleartext.
can you see if this patch fixes the problem? make sure you let mod_perl
build httpd and pass USE_APACI=1 to Makefile.PL
--- Makefile.PL 2000/04/21 06:24:27 1.158
+++ Makefile.PL 2000/04/27 22:45:30 1.160
@@ -186,7 +186,7 @@
$PERL_DEBUG = "";
$PERL_DESTRUCT_LEVEL = "";
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
At 4:27 PM -0500 4/27/00, Igor Chudov @ home wrote:
Please disregard my previous email, I have figured out what store
and locker to use.
What did you use?
I thought that it was due to EMBPERL_COOKIE_PATH not being set, but
setting it did not help.
| Are php3 and ASP mutually exclusive?
Nope... I have Apache/1.3.12 (Linux 2.2.12), PHP/3.0.15, mod_perl/1.21_03
and Apache::ASP running perfectly well together. On another system
PHP/4.0RC1 is working in the same environment just as fine. However, as I
don't like the RedHat provided RPMs I
Doug MacEachern [EMAIL PROTECTED] writes:
perl Makefile.PL USE_APXS=1 WITH_APXS=/usr/local/sbin/apxs EVERYTHING=1
probably a long shot, but any difference if you build with USE_DSO=1
instead of USE_APXS ?
My apologies for taking so long to reply -- it's been a busy week.
From a clean
Doug MacEachern [EMAIL PROTECTED] writes:
can you see if this patch fixes the problem? make sure you let mod_perl
build httpd and pass USE_APACI=1 to Makefile.PL
--- Makefile.PL 2000/04/21 06:24:27 1.158
+++ Makefile.PL 2000/04/27 22:45:30 1.160
@@ -186,7 +186,7 @@
$PERL_DEBUG
On Thu, 27 Apr 2000, John M Vinopal wrote:
I am a bad hacker and watching your line. I see cookies A and B go to you.
I set cookies A and B in my web browser. I am now you. You can try to
permute the cookies with IP# (breaks on proxies) or Browser type, but all
cookie based approaches
Is it just me, or does libapreq not handle the response from select
multiple correctly? It appears to only make one of the values
accessible.
From what I can tell, this appears to go all the way down to the
Apache::Table implementation, where the underlying Apache data
structure does not quite
On Apr 27, Jim Winstead wrote:
Is it just me, or does libapreq not handle the response from select
multiple correctly? It appears to only make one of the values
accessible.
From what I can tell, this appears to go all the way down to the
Apache::Table implementation, where the underlying
FEITO Nazareno wrote:
Hi buddy... I have a recommendation for you...
Here where I work, we have a unix and a linux running Oracle databases
accessed by perl and ASP, perl is embeded, I mean, .phtml, and it really
sucks, I mean, is really crazy to do that, but the ppl didn´t know that...
in
Jerrad Pierce wrote:
Are php3 and ASP mutually exclusive?
I enabled mod_perl and mod_php3 (the defaults that come in the RH6.1
distrib)
and installed Apache::ASP, and while either or work, if I enable both the
server spontaneously combusts. (It will touch the log files if they do not
dougm 00/04/27 14:48:38
Modified:lib/ModPerl Code.pm
Log:
hookup PerlPostConfigHandler
Revision ChangesPath
1.20 +1 -0 modperl-2.0/lib/ModPerl/Code.pm
Index: Code.pm
===
RCS file:
76 matches
Mail list logo