On Tue, November 13, 2007 8:34 am, Jim Brandt wrote:
> Where are those ENV variables being set? Is it in:
>
> PerlRequire /opt/rt3/bin/webmux.pl
>
> I believe you need to make sure the second perl interpreter runs the
> same startup scripts as the first since it is completely new.
Yes, that's
On Nov 13, 2007 4:02 PM, Laurent MARTIN <[EMAIL PROTECTED]> wrote:
> When I run it through mod_perl, I get the following error message:
> [Tue Nov 13 21:58:00 2007] [error] is only avaliable with the XS version
That sounds like the perl you compiled this module with (and that you
use when you run
On Nov 13, 2007, at 3:04 PM, Dodger wrote:
Something doesn't sound right with this assessment. Stealing the
digest(password) wouldn't let you in on a different connection because
you'd be using a different seed on a different connection...
Yes, you're right , as is your example.
However, the
Hi!
Following my tests of Apache 2.2.6 & mod_perl 2.0.3 under Mac OS X
(aka Leopard), I've noticed something wrong with Archive::ZIP. See the
simple "p3.pl" script below:
use strict;
use warnings;
use Archive::Zip;
print <[Tue Nov 13 21:58:00 2007] [error] is only avaliable with the XS
Jonathan Vanasco wrote:
>> But there is a big security whole there if you skip the trip to the
>> server
>> (whether or not you use mod_auth_tkt). In order for the Flash code
>> or JS code to
>> create a ticket using a shared secret that secret needs to be
>> downloaded to the
>> client. No
On Nov 13, 2007 1:57 PM, Jonathan Vanasco <[EMAIL PROTECTED]> wrote:
> client: Hey I want to log in!
> server: Here's a Challenge: $time. $seed . digest ($time . $seed .
> $site_secret )
> client: Here is my username and a hash that is Digest( password ,
> server_challenge )
> server: I looked up y
But there is a big security whole there if you skip the trip to the
server
(whether or not you use mod_auth_tkt). In order for the Flash code
or JS code to
create a ticket using a shared secret that secret needs to be
downloaded to the
client. Now you might be relying on Flash's binary format
On Nov 12, 2007 9:38 PM, Mag Gam <[EMAIL PROTECTED]> wrote:
> I am new to mod_perl, and I am trying to pass data thru a HTML form. I am
> able to get all data with the exception of "SELECT MULTIPLE"
>
> Can someone please provide a good example with this?
use CGI;
my $q = CGI->new;
my @values = $q
Both should return OK under normal circumstances - unless you want to short
circuit another_test, in which case, 'a_test' should return DONE.
http://perl.apache.org/docs/2.0/user/handlers/intro.html#Handler_Return_Values
- Praveen
- Original Message
From: Martijn <[EMAIL PROTECTED
Jonathan Vanasco wrote:
>> Sounds an awful lot like mod_auth_tkt to me, or am I missing something?
>
> Its like mod_auth_tkt in design , but not in function
>
> mod_auth_tkt does apache auth via cookies and apache - i need to support
> a non-cookie and non-apache environment
>
> this is meant t
On Nov 13, 2007, at 11:48 AM, Michael Peters wrote:
Why is this considered "ticketless"? Isn't the challenge that you
mention below
really a ticket? And does the client need to present this ticket on
every request?
Yes, you're right - the challenge is a ticket -- and must be
presented on
Jonathan Vanasco wrote:
> I needed to create an authentication system to handle logins to my
> mod_perl app via Flash and JS
>
> My first thought was to use CRAM-MD5 , but there wasn't a way to do that
> without relying on cookies or a db to handle the challenge
>
> What I came up with was a Tick
Hello.
A simple question, of which I can't find the answer fast enough.
I have the following block inside httpd.conf:
require a_test
require another_test
where a_test and another_test are two mod_perl handlers that either
return OK or FORBIDDEN.
For a user to get access to the /archive-l
Ah, I thought it might be something like that, so anything other than
0 or OK, got it, thanks...
-bop
On Nov 12, 2007, at 11:33 PM, Philippe M. Chiasson wrote:
Boysenberry Payne wrote:
Interesting, I tried just returning and several other non-OK returns
and got no error.
Interesting, I su
I needed to create an authentication system to handle logins to my
mod_perl app via Flash and JS
My first thought was to use CRAM-MD5 , but there wasn't a way to do
that without relying on cookies or a db to handle the challenge
What I came up with was a Ticketless CRAM system (that uses md
Where are those ENV variables being set? Is it in:
PerlRequire /opt/rt3/bin/webmux.pl
I believe you need to make sure the second perl interpreter runs the
same startup scripts as the first since it is completely new.
Jim
George L. Roman wrote:
I'm having trouble running RT using the
16 matches
Mail list logo
