MESSAGE
| DATE | 2014-09-15 |
| FROM | From: "Paul Robert Marino"
|
| SUBJECT | Re: [NYLXS - HANGOUT] Apache Security tips
|
From owner-hangout-outgoing-at-mrbrklyn.com Mon Sep 15 17:37:08 2014
Return-Path:
X-Original-To: archive-at-mrbrklyn.com
Delivered-To: archive-at-mrbrklyn.com
Received: by mrbrklyn.com (Postfix)
id AB413161155; Mon, 15 Sep 2014 17:37:07 -0400 (EDT)
Delivered-To: hangout-outgoing-at-mrbrklyn.com
Received: by mrbrklyn.com (Postfix, from userid 28)
id 9BBAF161157; Mon, 15 Sep 2014 17:37:07 -0400 (EDT)
Delivered-To: hangout-at-mrbrklyn.com
Received: from mail-pd0-f174.google.com (mail-pd0-f174.google.com [209.85.192.174])
by mrbrklyn.com (Postfix) with ESMTP id E9305161155
for ; Mon, 15 Sep 2014 17:37:06 -0400 (EDT)
Received: by mail-pd0-f174.google.com with SMTP id v10so7117705pde.5
for ; Mon, 15 Sep 2014 14:37:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20120113;
h=message-id:date:from:to:subject:in-reply-to:mime-version
:content-type;
bh=RdlkNdrHCDt3IpwfD/5gdtO1FXtjXTnLFj9W+vCq69o=;
b=Ctp+wVNWhn/Lr6dR9oNpRr1zJMzj9wN+C+zDTGiuqigqoi3GxFazWK5RR2ik4otxPS
t31OehPsbGPju1l1T9rShaNOJr3z1gm5YthK8O0cHyjRTYonwYMcgoaap3EDSH/8MQES
cHccjL4tBNFAU1aD5zIxJeoy/ohNMrxq63gJQ+DV2sumgcPwlis9tlxiWJWcjZOR8vyn
zNtcDlpg8jyPsnuzOZHrViw+5iNWsyUOWuaaGs9rxzxlTUieKEKXe98Gmxt3i55OVEHI
13Q+MFr7GCCQ7AZn6kcNUaEJK98jAJjA3R2gMfE7aMq6yjiPJOQgkHBskk2tdX82Ma0c
xiZQ==
X-Received: by 10.68.241.138 with SMTP id wi10mr16946435pbc.126.1410817021184;
Mon, 15 Sep 2014 14:37:01 -0700 (PDT)
Received: from www.palm.com ([172.56.33.112])
by mx.google.com with ESMTPSA id mi4sm12217598pdb.80.2014.09.15.14.36.57
for
(version=TLSv1 cipher=RC4-SHA bits=128/128);
Mon, 15 Sep 2014 14:37:00 -0700 (PDT)
Message-ID: <54175bfc.847c460a.20f5.1f3f-at-mx.google.com>
Date: Mon, 15 Sep 2014 17:36:58 -0400
From: "Paul Robert Marino"
To:
Subject: Re: [NYLXS - HANGOUT] Apache Security tips
In-Reply-To: <541741CA.1060806-at-panix.com>
X-Mailer: Palm webOS
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="Alternative_=_Boundary_=_1410817016"
Sender: owner-hangout-at-mrbrklyn.com
Precedence: bulk
Reply-To: hangout-at-mrbrklyn.com
--Alternative_=_Boundary_=_1410817016
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Wow did I start a flame war lol
Here is some clarification
1)=
the standard Red Hat packages do include mod_rewrite and so do SuSE's. Thi=
s is a Rubin over tweaking problem much like the fact that his copy mutt do=
esn't support HTML emails because he purposely broke it support for them :-=
). Love you Rubin lol.
2) you can independently compile apache modul=
es without recompiling all of Apache since the release of Apache 2.0 all yo=
u need is the development libraries installed and the source code of the mo=
dule. That was one of the key cool new features in Apache 2.
On =
a side note mod_rewrite always makes me nostalgic because its one of the fe=
w modules in Apache 2 that still uses the Apache 1.x syntax. The Apache 1 s=
yntax reminds me of the 90's when I was foolish greenhorn junior SA because=
I made the foolish mistake of memorizing the syntax thinking it would neve=
r change LOL. When Apache 2 came out I vowed to never make that mistake aga=
in.
pan>nt-size: 12px;color: #999999;">-- Sent from my HP Pre3
n style=3D"color:navy; font-family:Prelude, Verdana, san-serif; ">
=3D"left" style=3D"width:75%">On Sep 15, 2014 3:44 PM, Ruben Safir <mrbr=
klyn-at-panix.com> wrote:
On 09/15/2014 03:24 PM, Chris Knad=
le wrote:=0D
> Nobody is good enough to make their own package "cold"=
; there's work going on =0D
> within Debian to try to get to the poin=
t where this is possible for /simple/ =0D
> packages, but for non-tri=
vial packages I don't know anybody that could start =0D
> from scratc=
h and make a good package. =0D
=0D
=0D
I'm trying to fix something=
that I can GUARANTEE you that the debian=0D
package=0D
developers wo=
uldn't know their ass from their elbows deep into the code of=0D
modperl=
and your prostylizing me utter bullshit, Chris.=0D
=0D
I will never =
use a Mac because their shit is Broken=0D
I will never use Debian becaus=
e their shit is broken=0D
=0D
So now you can tell someone else how gr=
eat debian is.=0D
=0D
=0D
And yes Chris, if I wasn't lazy, I would=
set my apache configuration in=0D
my own package, like many other sysad=
mins so. But apache's core=0D
packaging is=0D
so good and so flexibl=
e, that I don't see the point.=0D
=0D
I need to know how to hand off =
a perlresponsehandler modperl module to=0D
the apache=0D
indexes modu=
le because a simple decline doesn't pick up the fancy indexing=0D
in the=
apache response cycle. Traditionally modperl guys get around this=0D
p=
roblem by attaching their scripts to <file *html></file> in htt=
pd.conf=0D
I need this to work on the entire directory tree without losi=
ng fancy=0D
indexing.=0D
=0D
That is what I need to KNOW. If you =
know that answer, fine. If you=0D
don't then=0D
don't blow smoke at =
me.=0D
=0D
=0D
Finally, I sent that article out because I thought =
it had some good and=0D
valid information=0D
in it on securing your w=
ebserver through apache rewrite.=0D
=0D
Ruben=0D
=0D
--Alternative_=_Boundary_=_1410817016--
--Alternative_=_Boundary_=_1410817016
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Wow did I start a flame war lol
Here is some clarification
1)=
the standard Red Hat packages do include mod_rewrite and so do SuSE's. Thi=
s is a Rubin over tweaking problem much like the fact that his copy mutt do=
esn't support HTML emails because he purposely broke it support for them :-=
). Love you Rubin lol.
2) you can independently compile apache modul=
es without recompiling all of Apache since the release of Apache 2.0 all yo=
u need is the development libraries installed and the source code of the mo=
dule. That was one of the key cool new features in Apache 2.
On =
a side note mod_rewrite always makes me nostalgic because its one of the fe=
w modules in Apache 2 that still uses the Apache 1.x syntax. The Apache 1 s=
yntax reminds me of the 90's when I was foolish greenhorn junior SA because=
I made the foolish mistake of memorizing the syntax thinking it would neve=
r change LOL. When Apache 2 came out I vowed to never make that mistake aga=
in.
pan>nt-size: 12px;color: #999999;">-- Sent from my HP Pre3
n style=3D"color:navy; font-family:Prelude, Verdana, san-serif; ">
=3D"left" style=3D"width:75%">On Sep 15, 2014 3:44 PM, Ruben Safir <mrbr=
klyn-at-panix.com> wrote:
On 09/15/2014 03:24 PM, Chris Knad=
le wrote:=0D
> Nobody is good enough to make their own package "cold"=
; there's work going on =0D
> within Debian to try to get to the poin=
t where this is possible for /simple/ =0D
> packages, but for non-tri=
vial packages I don't know anybody that could start =0D
> from scratc=
h and make a good package. =0D
=0D
=0D
I'm trying to fix something=
that I can GUARANTEE you that the debian=0D
package=0D
developers wo=
uldn't know their ass from their elbows deep into the code of=0D
modperl=
and your prostylizing me utter bullshit, Chris.=0D
=0D
I will never =
use a Mac because their shit is Broken=0D
I will never use Debian becaus=
e their shit is broken=0D
=0D
So now you can tell someone else how gr=
eat debian is.=0D
=0D
=0D
And yes Chris, if I wasn't lazy, I would=
set my apache configuration in=0D
my own package, like many other sysad=
mins so. But apache's core=0D
packaging is=0D
so good and so flexibl=
e, that I don't see the point.=0D
=0D
I need to know how to hand off =
a perlresponsehandler modperl module to=0D
the apache=0D
indexes modu=
le because a simple decline doesn't pick up the fancy indexing=0D
in the=
apache response cycle. Traditionally modperl guys get around this=0D
p=
roblem by attaching their scripts to <file *html></file> in htt=
pd.conf=0D
I need this to work on the entire directory tree without losi=
ng fancy=0D
indexing.=0D
=0D
That is what I need to KNOW. If you =
know that answer, fine. If you=0D
don't then=0D
don't blow smoke at =
me.=0D
=0D
=0D
Finally, I sent that article out because I thought =
it had some good and=0D
valid information=0D
in it on securing your w=
ebserver through apache rewrite.=0D
=0D
Ruben=0D
=0D
--Alternative_=_Boundary_=_1410817016--
|
|
