headers
Rodolfo Pilas | 1 Jun 2006 06:43

[Fwd: Rawrite for Wordpress]

I have several wordpress served by cherokee
http://www.codigolibre.net

A couple of users ask me how to use permalinks
http://codex.wordpress.org/Using_Permalinks

I have just test at my own wordpress permalinks and wordpress created a
.htaccess to apache as follows:

RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]

How I can creare equivalent rules to cherokee?

It is possible to convert .htaccess rewrite rules to cherokee sintax?
Are these sintax equivalent?

Rodolfo
Permalink | Reply | 1 comment |
headers
Alvaro Lopez Ortega | 4 Jun 2006 13:32
Picon
Gravatar

Re: [Fwd: Rawrite for Wordpress]

Rodolfo Pilas wrote:

> I have several wordpress served by cherokee
> http://www.codigolibre.net
>
> A couple of users ask me how to use permalinks
> http://codex.wordpress.org/Using_Permalinks
>
> I have just test at my own wordpress permalinks and wordpress
> created a .htaccess to apache as follows:
>
> RewriteEngine On
> RewriteBase /
> RewriteCond %{REQUEST_FILENAME} !-f
> RewriteCond %{REQUEST_FILENAME} !-d
> RewriteRule . /index.php [L]
>
> How I can creare equivalent rules to cherokee?

  Many people have asked this question so far. Currently, Cherokee
  doesn't support that sort of rewriting rules on purpose. Let me
  explain the reason why we made that decision..

  With the current scheme, Cherokee bases its decisions in the
  information provided by:

    - The request
    - The configuration file

  which means that, in the 90% of the cases, it doesn't need to look
(Continue reading)

Permalink | Reply | 0 comments |
headers
Stelianos G. Sfakianakis | 6 Jun 2006 23:45
Picon
Gravatar

cherokee on windows

Hello everyone,

I would like to ask about the status of the cherokee ws on windows. Is
it stable enough to be used in production? I am also interested in its
scalability. I downloaded version 0.5 for win32 and when it starts it
says:

Cherokee Web Server 0.5.0: Listening on port 80, TLS disabled, IPv6
disable using win32, 64 fds limit, 5 threads, 12 fds in each

Is the 64 fds a hard limit? What if someone wants to be able to
sustain more load?

Thank you for your work!

Stelios
Permalink | Reply | 4 comments |
headers
Pablo Fischer | 8 Jun 2006 18:36
Picon

Security (antispam) modules

Hi,

This mail is more focused to be a requirement of a new feature than a
bug ;-)

As many of you know, today there are tons of spam robots written for
many different (web)applications and sadly, many of these applications
have a very poor spam filtering system or sometimes this support is only
supported in development versions (which you can't install on a
production system).

So, how to block these spam robots? Well, one week ago I decided to stop
the spam I was receiving in Jaws Trac (dev.jaws-project.com). For all
the solutions that exists out there I found that the best one was to
install mod_security[1] in Apache and eureka! no more spam!

One of the nice features of mod_security is that it lets you
log/deny/allow/redirect/otherstuff any attempt of attack to your web
server, web application or virtual host, it scans the POST and GET
requests thing that the rewrite stuff can't do (it only scans GET iirc).

Of course mod_security lets you do more than blocking spammers but I
decided to use it (Apache, sadly) to battle the spam I was receiving via
Trac. Why I'm writing this to the list? Cause it would be nice to have a
feature like this on Cherokee cause sometimes you are running weak
webapplications[2] and you are out of weapons to win the
spammers/attackers and the only weapon you have is your webserver.

For example, to block spam on Trac I did this (Apache):
(Continue reading)

Permalink | Reply | 7 comments |
headers
Alvaro Lopez Ortega | 9 Jun 2006 17:27
Picon

Re: cherokee on windows

Hi Stelianos,

> I would like to ask about the status of the cherokee ws on
> windows. Is it stable enough to be used in production?

  The plain and simple truth is that, I don't know. We did the port a
  few months ago now, but we haven't had much feedback about it.

> I am also interested in its scalability. I downloaded version 0.5
> for win32 and when it starts it says:
>
> Cherokee Web Server 0.5.0: Listening on port 80, TLS disabled, IPv6
> disable using win32, 64 fds limit, 5 threads, 12 fds in each
>
> Is the 64 fds a hard limit? What if someone wants to be able to
> sustain more load?

  I guess we ought to improve the Win32 version of the functions:

    cherokee_sys_fdlimit_get()
    cherokee_sys_fdlimit_set()

  Those are the ones which read and set the file descriptor number
  limit.

  Definitely, it'd be really nice to have a Windows hacker on the
  team. Most of the people here are kind of Linux guys, so some times
  it is tough to work on this sort of little fixes.

> Thank you for your work!
(Continue reading)

Permalink | Reply | 3 comments |
headers
Alvaro Lopez Ortega | 9 Jun 2006 19:50
Picon

Re: Security (antispam) modules

Pablo Fischer wrote:

> As many of you know, today there are tons of spam robots written for
> many different (web)applications and sadly, many of these
> applications have a very poor spam filtering system or sometimes
> this support is only supported in development versions (which you
> can't install on a production system).

  Believe me, I feel your pain.. I do. :-/

> One of the nice features of mod_security is that it lets you
> log/deny/allow/redirect/otherstuff any attempt of attack to your web
> server, web application or virtual host, it scans the POST and GET
> requests thing that the rewrite stuff can't do (it only scans GET iirc).
>
> Of course mod_security lets you do more than blocking spammers but I
> decided to use it (Apache, sadly) to battle the spam I was receiving via
> Trac. Why I'm writing this to the list? Cause it would be nice to have a
> feature like this on Cherokee cause sometimes you are running weak
> webapplications[2] and you are out of weapons to win the
> spammers/attackers and the only weapon you have is your webserver.

  I like the idea, it seems like a really interesting feature to have.
  So, let's think how do we want to get it implemented.

  My first idea is to create a new type of module. Until now, I have
  had handlers, validators, loggers and encoders.  The idea would be
  to implement a new type, filters, to do this sort of things.

  For example, we could have filters like: get_filter or post_filer.
(Continue reading)

Permalink | Reply | 6 comments |
headers
Pablo Fischer | 9 Jun 2006 20:38
Picon

Re: Security (antispam) modules

Hi!

>   My first idea is to create a new type of module. Until now, I have
>   had handlers, validators, loggers and encoders.  The idea would be
>   to implement a new type, filters, to do this sort of things.
> 
>   For example, we could have filters like: get_filter or post_filer.
>   Imagine something like this:

The filter idea sounds very good, however would be nice to have some
other kind of filters, and possibly, many of these filters would be
'extended' from others, like a sql_filter (for SQL Injection[1]), a php
filter[2] (attacks from outside) or why not, an output filter[3]
(attacks from inside, like XSS) ;-)

> 
> ==========
>   Filter post_filter {
>     RegEx "(viagra|casino)" {
>        Action Drop
>     }
>   }
> 
>   Filter get_filter {
>     RegEx "(cash|win)" {
>        Action Redirect http://example.com
>     }
>   }
> 
>   Filter get_filer, post_filter {
(Continue reading)

Permalink | Reply | 5 comments |
headers
Alvaro Lopez Ortega | 9 Jun 2006 21:01
Picon

Re: Security (antispam) modules

Pablo Fischer wrote:

>>   My first idea is to create a new type of module. Until now, I have
>>   had handlers, validators, loggers and encoders.  The idea would be
>>   to implement a new type, filters, to do this sort of things.
>>
>>   For example, we could have filters like: get_filter or post_filer.
>>   Imagine something like this:
>
> The filter idea sounds very good, however would be nice to have some
> other kind of filters, and possibly, many of these filters would be
> 'extended' from others, like a sql_filter (for SQL Injection[1]), a php
> filter[2] (attacks from outside) or why not, an output filter[3]
> (attacks from inside, like XSS) ;-)
>
>> ==========
>>   Filter post_filter {
>>     RegEx "(viagra|casino)" {
>>        Action Drop
>>     }
>>   }
>>
>>   Filter get_filter {
>>     RegEx "(cash|win)" {
>>        Action Redirect http://example.com
>>     }
>>   }
>>
>>   Filter get_filer, post_filter {
>>     RegEx "(lottery|prize)" {
(Continue reading)

Permalink | Reply | 2 comments |
headers
Pablo Fischer | 9 Jun 2006 21:38
Picon

Re: Security (antispam) modules

Hi,

> 
>   Filter <what you filter> {
>      <How you filter it> {
>          <Action(s)>
> 	}
>   }
> 
>   For example:
> 
> ==========
>   Filter POST {
>      RegEx "(porn|p0rn)" {
>        Action Exec "iptables %ip .."
>        Action Drop
> 	}
>   }
> 
>   Filter URL {
>      SQL_filter {
>        Action Redirect http://..
> 	}
>   }
> 
>   Filter POST, URL {
>      XSS_filter {
>        Action Log combined /var/log/cherokee/xss.log
> 	  Action Drop
> 	}
(Continue reading)

Permalink | Reply | 1 comment |
headers
matteo@progettomio.net | 9 Jun 2006 23:10

a quite fun experience

Hi all,
i'm a new user of cherokee, and i want to tell you my little story with 
this software. I believe it is funny, but someone could not agree with 
me... :-)
My english is quite poor, sorry for that. But i still try to explain all 
details...

I found cherokee some time ago, but i've never tried... Until yesterday. 
I think is perfect for my home-server (apache is too for my needed).
Ops... is  apache a forbidden word?! ;-)

Well. I understood immediately that the software is well designed and 
perfect for me... And i installed it on my gentoo box.
No problem, the server was up in about twenty minutes (it's an old 
PentiumII and compile time is loooong).
Perfect, but... I'm a php addicted, then... i want php support!

Urgh! I'm unlucky, my php installation was without cgi support! No 
panic, i could reinstall it!
But php is a huge program for my box, then i preferred to leave it in 
background with nohup.

(after some time)

I tried again my cherokee with php support, but... no luck, it didn't start!
Why?
I reinstall it without php support (like the first time)... But nothing!
Only this error:

Could not access 'gcov symbols... no'
(Continue reading)

Permalink | Reply | 0 comments |

Gmane