mod_dosevasive is an evasive maneuvers module for Apache to provide evasive
action in the event of an HTTP DoS or DDoS attack or brute force attack.
It is also designed to be a detection and network management tool, and can be
easily configured to talk to ipchains, firewalls, routers, and etcetera.
mod_dosevasive presently reports abuses via email and syslog facilities.
Detection is performed by creating an internal dynamic hash table of IP
Addresses and URIs, and denying any single IP address from any of the
following:
* Requesting the same page more than a few times per second
* Making more than 50 concurrent requests on the same child per second
* Making any requests while temporarily blacklisted (on a blocking list)
This method has worked well in both single-server script attacks as well as
distributed attacks, but just like other evasive tools, is only as useful to
the point of bandwidth and processor consumption (e.g. the amount of bandwidth
and processor required to receive/process/respond to invalid requests), which
is why it's a good idea to integrate this with your firewalls and routers for
maximum protection.
This module instantiates for each listener individually, and therefore has a
built-in cleanup mechanism and scaling capabilities. Because of this per-child
design, legitimate requests are never compromised (even from proxies and NAT
addresses) but only scripted attacks. Even a user repeatedly clicking on
'reload' should not be affected unless they do it maliciously. mod_dosevasive
is fully tweakable through the Apache configuration file, easy to incorporate
into your web server, and easy to use.
mod_vhs is an Apache Web Server module allowing mass virtual hosting without
the need for file based configuration. The virtual host paths are translated
using mod_ldap or mod_dbd to get the corrects path at request time.
Wt (pronounced as witty) is a C++ library for developing web applications.
The API is widget-centric and uses well-tested patterns of desktop GUI
development tailored to the web. To the developer, it offers abstraction of
many web-specific implementation details, including client-server protocols
(HTTP, Ajax, WebSockets), and frees the developer from tedious JavaScript
manipulations of HTML and dealing with cross-browser issues. Instead, with Wt,
you can focus on actual functionality with a rich set of feature-complete
widgets. Unlike old-school page-based frameworks or current-day single-page
JavaScript "frameworks", Wt allows you to create stateful applications that are
at the same time highly interactive (using WebSockets and Ajax for everything)
but still support plain HTML browsers or web crawlers using automatic graceful
degradation or progressive enhancement. Things that are natural and simple
with Wt would require an impractical amount of development effort otherwise:
switching widgets using animations, while retaining clean URLs and browser
navigation functions, or having a persistent chat widget open throughout the
entire application, that even works in legacy browsers like Microsoft Internet
Explorer 6.
The library comes with an application server that acts as a stand-alone
Http(s)/WebSocket server or integrates through FastCGI with other web servers.
Piwigo is a photo gallery software for the web that comes with powerful features
to publish and manage your collection of pictures.
Started in 2002, the project is now supported by an active community of users
and developers. It supports numerous galleries of all sizes all over the world,
from an individual ten-photos party to the images stock of an agency. This
scalability is supported by smart browsing capabilities based on categories,
tags and chronological search. Various extensions make Piwigo even more
scalable and customizable to suit your own needs and desires.
Piwigo is both web and photo standard compliant. And, icing on the cake, it is
free and opensource.
PhpWebGallery became Piwigo on February 15th, 2009.
This is the FreeBSD port of the OpenBSD http server.
mod_macro is a third-party module to the Apache Http Server, distributed with
a BSD-style license like Apache. It allows the definition and use of macros
within apache runtime configuration files. The syntax is a natural extension
to apache html-like configuration style.
CGI::Session::ExpireSessions is a pure Perl module.
It deletes CGI::Session-type sessions which have passed their use-by date.
It works with CGI::Session-type sessions in a database or in disk files,
but does not appear to work with CGI::Session::PureSQL-type sessions.
The recommended way to use this module is via method expire_sessions(),
which requires CGI::Session V 4 or later.
CGI::Struct lets you transform CGI data keys that look like perl data
structures into actual perl data structures.
A storage class for Catalyst Authentication using DBIx::Class
Return a new instance a component on each request