httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Igor Galić <i.ga...@brainsware.org>
Subject Re: [users@httpd] Untainting module for Apache
Date Thu, 30 Sep 2010 17:23:36 GMT
----- Nick Kew <nick@webthing.com> wrote:
> mod_taint is a new module to apply Perl-style taint checking
> to untrusted data. It's a lot smaller and simpler than
> mod_security, but offers a useful tool to protect a range
> of applications.
> 
> It's now up-and-running and working well for me, and ready
> for wider testing and feedback.
> 
> I've put the module together with documentation on my
> apache.org space at:

Why not put it in svn in httpd's sandbox?

> http://people.apache.org/~niq/mod_taint.html
> http://people.apache.org/~niq/mod_taint.c

does it make more sense to use it on a reverse proxy or
on the backend in question?

> Feedback welcome.
> 
> -- 
> Nick Kew
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
-- 
Igor Galić
Tel: +43 (0) 664 886 22 883
Mail: i.galic@brainsware.org
URL: http://brainsware.org/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message