Looks like you might want to merge the IP-based throttling from mod_throttle
with the location-based throttling from mod_throttle_access. The site that
hosted the source for mod_throttle_access has been lost, but here is the
latest from that site.
Thanks,
Christian
-
Christian
an unmodified AuthCookie to ensure that whatever format
the inbound cookie is in is sufficient and will not need to be modified or
supplemented? I believe the answer is no, and, if it is, should this be
something that AuthCookie be modified to handle?
Thanks,
Christian
-
Christian
finds the proposed design lacking for security or
anything else, please let me know.
Thanks,
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
-Original Message-
From: Michael Schout [mailto:mschout;gkg.net]
Sent
Josh,
I believe the virus only affects systems pre-0.9.6e:
http://www.openssl.org/news/secadv_20020730.txt.
Thanks,
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
-Original Message-
From: Josh Chamas [mailto
How does the Carp module interact with mod_perl? Is there a built-in catch
for croak or does it actually kill the child process, for instance?
Thanks,
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
Is there a reason you don't just use a Redirect?
VirtualHost __default__:80
Redirect / https://secure.server.com/
/VirtualHost
Regards,
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
to
produce that data. mod_bandwidth probably doesn't apply in the current
scenario being discussed.
Thanks,
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
Bill,
If you're looking to throttle access to a particular URI (or set of URIs),
give mod_throttle_access a look. It is available via the Apache Module
Registry and at http://www.fremen.org/apache/mod_throttle_access.html .
Regards,
Christian
-
Christian Gilmore
Technology
Alex,
Thanks for the report! I'll look into it and your provided patch as soon
as I have a chance.
Thanks,
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
-Original Message-
From: Alex Menendez [mailto:[EMAIL
Anyone looked at CPAN's front page today: www.cpan.org? It is either a
pretty amusing April Fools joke or a hack. Fun either way!
Christian
-
Christian Gilmore
Technology Leader
GeT WW Global Applications Development
IBM Software Group
idea is to just write a note on the board and have a downstream
content handler do the redirection, but I was hoping to roll it all into
one package, since the problem, password expiration, is most directly tied
to authentication.
Thanks,
Christian
-
Christian Gilmore
Team Lead
Web
:13 2002] [error] mkdir : No such file or directory at
/opt/gnu/depot/perl-5.6.1/lib/site_perl/5.6.1/Cache/FileBackend.pm line
220
Regards,
Christian
-Original Message-
From: Perrin Harkins [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 28, 2002 4:38 PM
To: Christian Gilmore; Modperl
: No such file or directory at
/opt/gnu
/depot/perl-5.6.1/lib/site_perl/5.6.1/Cache/FileBackend.pm line 220
I'm trying to use the default /tmp (I have also tried a non-default), but
I get a burp from within Cache::FileCache's library. Ideas?
Regards,
Christian
-
Christian Gilmore
Team Lead
If you're looking for limiting simultaneous requests to a URI resource
(and not the entire server, which can be handled by MaxClients), you may
be looking for mod_throttle_access. It can be found at
http://modules.apache.org/search?id=232.
Regards,
Christian
-
Christian Gilmore
Ditto. DSO makes my life so much better in terms of portability and
administratability that having my services down for a few seconds during a
log rotation is certainly worth it.
Regards,
Christian
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of
Does anyone know if there is a perl module that implements HTTP/1.1
caching? I'd like to use one with Apache::ProxyRewrite and don't want to
reinvent the wheel. :)
Regards,
Christian
-
Christian Gilmore
Team Lead
Web Infrastructure Tools
IBM Software Group
Putting it into the auth phase would be appropriate, but I have to wonder
why this module is needed other than to refrain from keeping your
configuration file clean. Your unsecure virtual host should have no auth
statements in it if you want all auth to be on your secure virtual host...
You'll
to keep the same content on both virtualhosts as much
as possible.
Ideas? Comments?
Thanks,
JJ
* Christian Gilmore ([EMAIL PROTECTED]) [010918 11:36]:
Putting it into the auth phase would be appropriate, but I
have to wonder
why this module is needed other than to refrain from keeping
--
Christian Gilmore
Team Lead
Web Infrastructure Tools
IBM Software Group
-Original Message-
From: Stephen Adkins [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 18, 2001 3:09 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: ANNOUNCE: Starting work on Apache::RedirectUnless
Hi
It greatly depends upon how you built perl. If you're using the
OS-provided perl installation, you'll have to use IBM C for AIX to compile
apache/mod_perl. Also, other problems/pitfalls exist if you wish to use
mod_perl as a DSO. These problems can be overcome, but you'll need
specific versions
the problem. I currently do not have the IBM
supplied cc on
the system. If the answer is to use only the IBM cc I'm not
sure there will
be an answer.
Everything else compiles fine, Apache, as well as the
other modules.
Thanks.
Christian Gilmore wrote:
It greatly depends
Actually, you want mod_throttle_access. Standard C apache plugin module.
http://www.fremen.org/apache/.
Regards,
Christian
-Original Message-
From: Perrin Harkins [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 14, 2001 5:28 PM
To: Rod Butcher; [EMAIL PROTECTED]
Subject: Re:
The uploaded file
Apache-AuthenLDAP-0.61.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-AuthenLDAP-0.61.tar.gz
size: 8287 bytes
md5: 51603e4084fd448e9f72e6e5e0f26baa
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore)
Request
The uploaded file
Apache-AuthzCache-0.06.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-AuthzCache-0.06.tar.gz
size: 8800 bytes
md5: e4b15058f8b67b4906248f27c3f62fbd
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore)
Request
The uploaded file
Apache-AuthzLDAP-0.61.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-AuthzLDAP-0.61.tar.gz
size: 9821 bytes
md5: 0942df504a5569cc8db4aff00a8980e1
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore)
Request
To: Christian Gilmore
Cc: 'Modperl Mailing List (E-mail)'
Subject: Re: announce: mod_perl-1.25_01
On Mon, 9 Jul 2001, Christian Gilmore wrote:
Doug,
I didn't see in the announcement that the below fix is included in
1.25_01. Can you please confirm?
the patch has not been committed
Doug,
I didn't see in the announcement that the below fix is included in
1.25_01. Can you please confirm?
Regards,
Christian
-Original Message-
From: Doug MacEachern [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 15, 2000 7:59 PM
To: [EMAIL PROTECTED]
Cc: 'Modperl Mailing List
There are known bugs in push_handlers/set_handlers that I believe are
corrected in CVS and should be part of the 1.26 release. Perhaps these
bugs are the problem.
Regards,
Christian
-Original Message-
From: Bolt Thrower [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 25, 2001 10:50 PM
Doug,
Will this patch make it into 1.26? If so, is there a slated release date
for 1.26?
Thanks,
Christian
-Original Message-
From: Doug MacEachern [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 18, 2001 9:04 PM
To: Paul G. Weiss
Cc: mod_perl list
Subject: Re: Confusion resolved
You'd want to look at the scoreboard. mod_throttle_access
(http://www.fremen.org/apache/) does this function based upon URI. The
only changes would be to base it upon client IP and change the scope to
allow it to be outside a Directory block. It would be a minor change.
Regards,
Christian
The uploaded file
Apache-AuthenLDAP-0.60.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-AuthenLDAP-0.60.tar.gz
size: 8176 bytes
md5: 07405d95c2e62f5ce20f3dc067317755
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore)
Request
The uploaded file
Apache-AuthzLDAP-0.60.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-AuthzLDAP-0.60.tar.gz
size: 9718 bytes
md5: ee2f18984cea35f0c2c139c25a255526
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore)
Request
The uploaded file
Apache-ProxyRewrite-0.14.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-ProxyRewrite-0.14.tar.gz
size: 11720 bytes
md5: 5d9f08ffb63b78f279bffef5b3afb8dd
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore
The uploaded file
Apache-ProxyRewrite-0.13.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-ProxyRewrite-0.13.tar.gz
size: 11473 bytes
md5: 2d071b8a4f8aed938b349804b7648890
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore
The uploaded file
Apache-AuthzCache-0.04.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-AuthzCache-0.04.tar.gz
size: 8624 bytes
md5: 1a7794bc9878041af34f7fc4511b52ef
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore)
Request
The uploaded file
Apache-ProxyRewrite-0.12.tar.gz
has entered CPAN as
file: $CPAN/authors/id/C/CG/CGILMORE/Apache-ProxyRewrite-0.12.tar.gz
size: 11412 bytes
md5: 3155ae03a511171270d88a8ead86677d
No action is required on your part
Request entered by: CGILMORE (Christian Gilmore
I didn't get any responses on this thread a few weeks ago. Does anyone
have any successful experience with adding a custom menu in
Apache::Status?
Regards,
Christian
-Original Message-
From: Christian Gilmore [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, January 24, 2001 5:26 PM
-
From: Vivek Khera [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 07, 2001 1:05 PM
To: Modperl Mailing List (E-mail)
Subject: Re: [RESEND] Apache::Status and custom menu_items
"CG" == Christian Gilmore [EMAIL PROTECTED] writes:
CG I didn't get any responses on this thread a
] Apache::Status and custom menu_items
"CG" == Christian Gilmore [EMAIL PROTECTED] writes:
CG Are you saying that you see an extra menu from
Apache::DBI when using
CG Apache::Status? I'm not seeing any custom menus. For instance,
Yes, I do. You need to load Apache::Status before A
/5.6.0
/opt/gnu/depot/perl-5.6.0/lib/site_perl
.
-Original Message-
From: Jens-Uwe Mager [mailto:[EMAIL PROTECTED]]
Sent: Sunday, January 28, 2001 8:46 AM
To: Christian Gilmore
Cc: Modperl Mailing List (E-mail)
Subject: Re: mod_perl as DSO on AIX with perl-5.6
On Sat, Ja
Geoff, et al:
I've toyed with ModuleConfig, and it is really cool, but I was under the
impression that people stayed away from using it since it appears to
require a recompile of mod_perl for every module that inserts a new
directive into the list. That's why I assumed the use of PerlSetVar was
There is no negation of an entire regex in apache's configuration. You
have to do something like this:
DirectoryMatch "^(cgi-bin|perl)$"
PerlAccessHandler Apache::GateKeeper
ErrorDocument 403 /index.html
Files "login.cgi"
PerlAccessHandler Apache::OK
Sure, you could do this, but it sounds horribly insecure...
In httpd.conf:
Location /secure
PerlAuthenHandler MyAuthHandler
/Location
In MyAuthHandler:
sub handler {
my $r = shift;
$r-connection-user('USERNAME');
return OK;
}
Regards,
Christian
On Tue, 30 Jan 2001, harilaos wrote:
Hey. I see in mod_perl's INSTALL document that there's a required patch
for DynaLoader if you intend to run mod_perl as DSO on AIX (4.3) with
perl-5.005_3. Is patching required for 5.6? If so, will the same patch in
the INSTALL doc apply?
Regards,
Christian
-
Christian Gilmore
ems listed and available for
deparsing, dumps, etc.
Also, the "Memory Usage" item that should show up when
StatusTerseSizeMainSummary is on is not showing up.
Regards,
Christian
---------
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
problem. That
is an impossible task.
Regards,
Christian
-
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 15, 2001 4:10 AM
Christian Gilmore [EMAIL PROTECTED]
o Added 'base' as an element of the LINK_ELEMENT hash
o Made release 0.11
2001-01-02 Christian Gilmore [EMAIL PROTECTED]
o Made first public release 0.10
$Id: ChangeLog,v 1.2 2001/01/14 19:47:28 cgilmore Exp $
Enjoy
authenticates a user against an LDAP
backend. It can be combined with Apache::AuthzLDAP to provide
LDAP authorization as well.
See AuthenLDAP.pm pod for detailed documentation.
$Id: README,v 1.1 2000/09/26 18:27:36 cgilmore Exp $
2001-01-08 Christian Gilmore [EMAIL PROTECTED]
o Added
a user against an LDAP
backend. It can be combined with Apache::AuthenLDAP to provide
LDAP authentication as well.
See AuthzLDAP.pm pod for detailed documentation.
$Id: README,v 1.1 2000/09/26 18:51:51 cgilmore Exp $
2001-01-08 Christian Gilmore [EMAIL PROTECTED]
o Fixed bug
2001-01-08 Christian Gilmore [EMAIL PROTECTED]
o Better handled pre-1.26 set_handlers bugs
2000-09-26 Christian Gilmore [EMAIL PROTECTED]
o Made first public release 0.02
$Id: ChangeLog,v 1.2 2001/01/08 17:41:17 cgilmore Exp $
Enjoy,
Christian
-
]]
Sent: Monday, January 08, 2001 12:48 PM
To: 'Christian Gilmore'; Modperl Mailing List (E-mail)
Subject: RE: [ANNOUNCE] Apache-AuthenLDAP 0.52
-Original Message-
From: Christian Gilmore [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 08, 2001 12:52 PM
To: Modperl Mailing List
Geoff,
Here's the relevant note from Doug last August.
Regards,
Christian
-Original Message-
From: Doug MacEachern [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 30, 2000 10:54 PM
To: Geoffrey Young
Cc: '[EMAIL PROTECTED]'
Subject: RE: $r-get_handlers bug/oversight?
i committed 2
-
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
You might want to take a look at Strudel. It is a project people from my
last job were working on: http://www.research.att.com/~mff/strudel/.
Regards,
Christian
-Original Message-
From: Philip Mak [mailto:[EMAIL PROTECTED]]
Sent: Friday, December 22, 2000 8:09 PM
To: [EMAIL
The thing is, though, that as a web administrator I don't want those
same developers (or at least all of them) to be able to create and in-
stall _arbitrary_ handlers or arbitrary perl code. Sometimes the de-
velopers just don't know enough. And sometimes I just don't trust
them enough to
f our
installation.
Please send comments, questions, flames (hopefully none of these!) back to
the list. I attempted to contact the owner of the Apache::RewritingProxy
package to no avail. His package, though, seems designed to rewrite
content, not URIs, so I think there's room for both.
Thanks,
Christia
I also never build mod_perl as a DSO. For the life of me I can't
understand why so many people do it, and then they act all surprised
when things go wrong.
I do it out of a desire to not have multiple builds of apache lying around
for the various needs I have of each service I run. For those
I'm leaning along the lines of just killing the
process, rotating the logs, and restarting it. It should take
no more than 5 seconds once a week a 4:00am.
This is exactly what I do, except I have it scripted. The downside is that
your service is unavailable for a few seconds (maybe more
]]On Behalf
Of Buddy Lee Haystack
Sent: Tuesday, November 07, 2000 3:27 PM
To: Christian Gilmore
Cc: 'G.W. Haywood'; 'mod_perl list'
Subject: Re: Memory Usage
Thanks Christian!
Scripts would be nice.;-)
I take it you've used DSO much more than I have, so I'm
interested in any information
It sounds like you're looking for a proxy. If that's the case, there are a
huge variety of options starting with apache's own built-in mod_proxy.
Regards,
Christian
-Original Message-
From: Allen Wilson [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 26, 2000 3:54 PM
To: Modperl
If you have a startup.pl, why not just
use lib qw(/usr/local/MyPerl/lib);
within the startup.pl script?
Regards,
Christian
-Original Message-
From: Keith G. Murphy [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, September 26, 2000 5:32 PM
To: [EMAIL PROTECTED]
Subject: Why isn't
Have you tried wrapping Apache::AuthenCache around Authen::Smb? It may
help you out with the occasional communication issues with the backend
PDC.
Regards,
Christian
-Original Message-
From: Jerrad Pierce [mailto:[EMAIL PROTECTED]]
Sent: Monday, September 25, 2000 10:54 AM
To:
Felix,
There's not much available that is efficient and does per-resource
throttling based upon CPU, RAM, and time of which I know. I looked around
for such things about 8 months ago.
I instead decided that, for my needs, limiting simultaneous client access
to resource hogs was good enough. I
ut this doesn't work as the brackets remove any sense of string, reducing
my match to the set of words that are not completely within the jumbled
letters inside the brackets.
Regards,
Christian
---------
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
)
and the Apache eagle book (such as page 271) and my own common sense, I'd
say it should be the former (same as the beginning of the parent). What
would you say?
Regards,
Christian
-
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
I'm
right with respect to the analysis of the problems.
Regards,
Christian
-Original Message-
From: Christian Gilmore [mailto:[EMAIL PROTECTED]]
Sent: Friday, July 07, 2000 3:34 PM
To: Modperl Mailing List (E-mail)
Subject: More on the set_handlers() / push_handlers() bug...
Hello
stack to what is in the
configuration. See about line 65 of each log file for this difference.
Regards,
Christian
-
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
AuthzCache.pm
AuthzLDAP.pm
Title: Index of /home/passwd/group
the time and opportunity, give the AuthzCache a try. I'd
really like to know that others can reproduce the problem. It can wrap
around any perl Authz handler as follows:
PerlAuthzHandler Tivoli::Apache::AuthzCache your authz handler here
Tivoli::Apache::AuthzCache::manage_cache
Regards,
Christia
erl_run ()
#6 0x2115c in main ()
-
Christian Gilmore
Infrastructure Tools Team Lead
Web Multimedia Development
Tivoli Systems, Inc.
So, I've done a bit more debugging. It looks like set_handlers is all
befuddled. I have the below code:
my $handlers = $r-get_handlers('PerlAuthzHandler');
foreach (@$handlers) {
$r-log-debug("handler: (Pre) PerlAuthzHandler $_ next in line");
}
# Per Eric Cholet
#
,
Christian
-Original Message-
From: Gerald Richter [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 03, 2000 11:27 PM
To: Christian Gilmore; ModPerl Mailing List (E-mail)
Subject: RE: Embperl: loop control bug
Embperl (1.2.0) causes a core dump when I put in a loop control
statement
: Gerald Richter [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 03, 2000 11:29 PM
To: Christian Gilmore; ModPerl Mailing List (E-mail)
Subject: RE: Embperl: problem with module imports
The test.html file contains only the [- use MODULE_HERE -]
line.
Try
[- use MODULE_HERE
; #]
[* } *]
[- $i++; -]
[* } *]
Regards,
Christian
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of Christian Gilmore
Sent: Friday, February 04, 2000 10:33 AM
To: 'Gerald Richter'; 'ModPerl Mailing List (E-mail)'
Subject: RE: Embperl: loop
++ -]
[$ endwhile $]
The problem occurs regardless of what looping mechanism I use (foreach, while,
etc). Can someone confirm that this problem also occurs on their system,
please?
Regards,
Christian
-
Christian Gilmore
Senior Technical Staff Member
ATT Labs IP Technology, Florham
Jason,
Using both 'EMBPERL_LOG /dev/null' and 'EMBPERL_DEBUG 0' will do the trick.
Without redirecting EMBPERL_LOG, embperl will always try to open
/tmp/embperl.log on its first use. I consider this a bug and a security hazard
(writing anything blindly to /tmp can have potentially lethal side
I'm not seeing the proper behavior from either EMBPERL_LOG or EMBPERL_DEBUG.
Here's the configuration in httpd.conf:
Perlrequire /www/www/lib/modperl-startup.pl
PerlSetEnv EMBPERL_OPTIONS 2178
PerlSetEnv EMBPERL_LOG /tmp/embperl_testlog
PerlSetEnv EMBPERL_DEBUG
3): The Args:
[Thu Dec 2 17:07:21 1999] [debug]
/weblab/services/pushweb/lib/TransTest.pm(35): TransTest Handler exit
Thanks,
Christian
-
Christian Gilmore
Senior Technical Staff Member
ATT Labs IP Technology, Florham Park
[EMAIL PROTECTED]
http://www.research.att.com/info/cgilmore
I found that writing my own parser to fit my specific need was far and away
the fastest thing I could do. It really depends upon your specific
application. HTML::Parser is nice if you want to see the structure of the
document your parsing but is just too slow to use for wresting particular tags
Any help on this would be appreciated.
Regards,
Christian
-
Christian Gilmore
Senior Technical Staff Member
ATT Labs IP Technology, Florham Park
[EMAIL PROTECTED]
http://www.research.att.com/info/cgilmore
used for purposes not intended to be Embperl...
Regards,
Christian
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of Gerald Richter
Sent: Tuesday, November 09, 1999 1:53 PM
To: Christian Gilmore; 'David Bushong'; [EMAIL PROTECTED]
Subject: RE: Embperl
...and Embperl runs under mod_perl? Not as CGI? In CGI Mode
the only chance
is to print to stderr, which always shows up in the error log. Under
mod_perl, the timestamp should apear and the message only
get's logged when
loglevel is error or below.
If you run under mod_perl, how do you
82 matches
Mail list logo
