On Fri, Apr 04, 2003 at 04:10:03PM -0500, Kruse, Matt wrote:
I have a unique need purely for testing purposes. I'm not very familiar
(yet) with mod_perl handlers in Apache, so I've had a rough time
getting
anything going.
Here is my goal:
For every request to Apache:
1. Parse the cookie
And if they do have something to protect, they should put their
thinking caps on and realize that this sort of security is called
obfuscation for a reason: it does not accomplish anything except to
make the results hard to read. If you're giving away or selling the
perl source, obfuscating
I am in the process of releasing these two modules which together provide
perl source obfuscation. They are not uniquely Apache oriented though I've
never used them for anything else, thus the designation in Crypt. They
have been used in production for over 2 years with little in the way of
* Michael McLagan [EMAIL PROTECTED] [2002-09-21 11:45]:
There is a bug in Apache::Cookie. It doesn't handle a cookie with
zero bytes in it!
This is because Apache::Cookie is implemented in C, and C uses NULL as
the end of string terminator.
No quite accurate. C has no concept of a
On Tue, 24 Sep 2002, Allan P. Magmanlac wrote:
Hello,
Can anyone advise me on how to build
apache server with ssl and openssl and
using mod perl.
this is how I do it WITHOUT mod perl support
cd to modssl soure directory and then run the following command
./configure \
Test::Apache::CookieEmulator - test tool for Cookies without httpd
SYNOPSIS
use Test::Apache::CookieEmulator;
loads into Apache::Cookie namespace
DESCRIPTION
This module assists authors of Apache::* modules write test suites
that would use Apache::Cookie without actually
I have two identical hosts with the following
mod_perl-1.26
apache apache_1.3.26
ben apachessl_1.48
openssll-0.9.6b
on one, libapreq-1.0 installs just fine, on the other I get this error:
In file included from
/usr/lib/perl5/site_perl/i386-linux/auto/Apache/include/include/httpd.h:79,
never mind. It appears that the order in which things are done is
important. I finally got it to work by reinstalling mod-perl for the
umpteenth time and then again trying libapreq. Strange, the old version
that was installed would no re-install until I did this.
I have two identical hosts
I have a modperl handler that sets a cookie and does a redirect if the
cookie was not present. The redirected page eventually loads the same page
again. In addition, this page is called from a protected portion of the
site that requires Basic Auth.
When the redirect calls the mod_perl routine
cookies and tokens are expected very dicey...
Michael
- Original Message -
From: Michael Robinton [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, August 28, 2002 1:05 PM
Subject: odd authetication situation
I have a modperl handler that sets a cookie and does
Peter wrote:
Maybe you can try to add specifically:
$r-connection-user('who_the_user_is') before the cookie access control
returns OK in the module. Note that some of the cookie authentication
modules are based on access-only control so $r-connection-user() can
return a value in late phases
I have a proposed perl / modperl module that will go to CPAN
Graphics::ColorPicker : A perl module for WYSIWYG web
applications that allow selection of HEX color numbers
I think this is an appropriate name, but have not submitted in
this category before. Please advise.
See:
Stas wrote:
Michael Robinton wrote:
I have a proposed perl / modperl module that will go to CPAN
Graphics::ColorPicker : A perl module for WYSIWYG web
applications that allow selection of HEX color numbers
I think this is an appropriate name, but have not submitted
makes only unsplit Licensed modules
makeCrypt.plmakes a split Licensed module
makePOD.pl separates POD from mixed module
mod_parser.pl used by makeCrypt, makePOD, makeLicenseMod
=head1 AUTHOR
Michael Robinton, [EMAIL PROTECTED]
=head1 COPYRIGHT
Copyright 2000 Michael
On Sun, 14 Jul 2002, eric wrote:
I've tried every which way and still can't get mod_perl to compile.
snip
apache 2.x is not supported well at this point
You didn't say which SSL you were running, but if it's ben's apache-ssl,
this simple set of instructions will work.
build and install
LaBrea::Tarpit is an enhanced reporting module that generates web pages
showing the activity of worm and trojan attacks agains your netblock. It
uses Tom Liston's LaBrea daemon as a front end to provide data for the
reports.
New Features
* paginated reporting, much nicer than the BIG long page
From: Noam Solomon [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Porting to OS X
Date sent:Tue, 4 Jun 2002 13:43:11 -0400
[ Double-click this line for list subscription options ]
Can anyone give me a rough idea how much time it would take to move a
I'm just curious - what's wrong with the function you're already using?
Mod_Perl hangs on to it's PID, so it's no longer unique. (I _believe_)
TIMESTAMP . $$ . $GLOBAL++
I use the above.
If you create a global for the child process then that is adequate since
the PID belongs to the
Apache/1.3.22 Ben-SSL/1.47 (Unix) DAV/1.0.3 mod_perl/1.26
The function
getservbyport
causes Apache to segfault
when run from a terminal or as a normal cgi script it works fine
when run with mod_perl it crashes.
sample cgi is the part commented out.
#!/usr/bin/perl
my $proto = 'tcp';
my
On Sat, Mar 09, 2002 at 10:12:32AM -0800, Kirk Rogers wrote:
Hi all,
So I went ahead and tried to install apache-ssl and am following the
instructions to the T.
I've acquired:
mod_perl-1.26.tar.gz
openssl-0.9.6c.tar.gz
apache_1.3.22.tar.gz
apache_1.3.22+ssl_1.47.tar.gz
Man
On Sat, 23 Mar 2002, Jesse and Rebecca Stay wrote:
Ok - I got rid of the Apache::Cookie stuff, and am now doing things manually,
but it still doesn't generate a cookie in IE. It still works in Netscape. I
get a redirect, but no cookie. Here is my code:
my $r = Apache-request;
-install the DBD / DBI modules with the new pointers to the
database lib.
Michael Robinton
BizSystems
4600 El Camino Real - Ste 206
Los Altos, CA 94022
650-947-3351
I've just taken a quick look at the modssl site and the apache-ssl site.
Does anyone want to comment on the pros and cons of these 2 approaches?
Can mod_perl co-exist with either or both of these?
All responses welcome, including "don't do it, go back, save yourself!".
Don't know
On Tue, 5 Dec 2000, Jeffrey W. Baker wrote:
On Tue, 5 Dec 2000, Perrin Harkins wrote:
Brian, you've been taking a beating on this thread. I don't want to add
to it, but you did raise a couple of interesting questions in this post.
snip
The Big Thing for a serious project is
where are you located??
Michael Robinton
BizSystems
4600 El Camino Real - Suite 206B
Los Altos, CA 94022
650 947-3351
[EMAIL PROTECTED]
On Wed, 29 Nov 2000, Robert Monical wrote:
Hello.
We have an Apache/Modperl/Mason/Oracle system and no programmers
experienced with the front end
I am trying to implement a database driven solution for a small university
website (300+ users) and quite happy with Authentication and Authorization
packages provided by mod_perl. However, there doesn't seems to be a solution
to dynamically protect a directory without restarting Apache.
Recently, I reinstalled mod_perl and Apache::ASP on my system in order to
fix a problem I was having with ASP not using the new version of perl on
my system. However, I'm having problem with some old code.
That functionality was never intended to be supported, and
am surprised it
On Sat, 26 Aug 2000, Michael Robinton wrote:
apache_ssl and mod_perl co-exist nicely together, try that instead. I've
a couple of these in production environments that work very well.
I don't understand... what does SSL have to do with this?
-Philip Mak ([EMAIL PROTECTED])
Oops
as:
unshift @INC, './lib';
require 'LibChk.pl';
LibChk::Install (# check libraries for currency
'WhoisLib.pl',
'SocksLib.pl',
'DomRegLib.pl',
);
library:
#!/usr/bin/perl
#
# LibChk.pl
#
# version 1.01 6-16-00
# copyright Michael Robinton [EMAIL PROTECTED
Sure, load the page in a frame that hides the second url request
On Fri, 14 Jul 2000, Sam Carleton wrote:
I have an apache question and I have NO idea where to post it. Is there
a newsgroup or mailing list simply for apache?
I have multipal domain names: domain.net domain.org. I would
There are a large number of happy, silent Apache::Session users.
Yes, I am a silent and happy Apache::Session user. You're right Jeffrey,
happy users should not be silent.
Ditto that. Have Apache::Session serving content for a dynamic chat page.
It gets hit every 30 - 45 sec by every
On Sun, 30 Jan 2000, Bill Bradford wrote:
Is it possible to compile/install mod_perl as a DSO, on an existing
pre-compiled copy of apache (with mod_so enabled), yet? If so,
how? I couldnt find it in the docs... and I'm tired of having to
statically compile the module in... so any help
you use the crypt lib and do a dual password entry. no confirmation is
needed if the two passwords match. Everything is handled by the perl
script, you don use htpasswd. Crypting is very straightforward.
[EMAIL PROTECTED] (in palo alto)
On Thu, 9 Dec 1999, dave_dunstan wrote:
Hi gang, I
33 matches
Mail list logo
