Pages

[perindu]

Hi guys

Been a while since im login

i wonder is there any module for httpbl?

http://sourceforge.net/projects/httpbl/

http://httpbl.cvs.sourceforge.net/viewvc/httpbl/mod_httpbl_for_apache_2.0/

[Gregg]

Hi Perindu,

I had looked into this module before and decided againt it for a few reasons.

Problems with this module;

• Is an Alpha quality module and probably buggy (was dropped by at least one Linux distro)
• Looks to have been abandoned over 6 years ago
• Very complex to configure and documentation in xml not html and not easily readable.
• Requires hard-coded path to server at compile time. Why the authors couldn't use ServerRoot from httpd.conf is beyond me.
• Requires other decisions being made at compile time that will effect the configuration of the module, these things are not for me to decide and would be burnt into the module.
• If not configured properly, every request to the server would make a request to the RBL slowing down page loads considerably.

I did not look too deep into the Unixisms of the module, quickly looking at the #include files needed most if not all of that can be worked around but may have things that cannot. I however refuse to hard-code in a path to the server nor add the code needed to grab this from from ServerRoot as should have been done from the start. I refuse as well to make the other decisions required at compile time since I am unfamiliar with the module.

I can understand your want for the module but it just wasn't taken far enough and has obviously been abandoned (there's usually a good reason for this). I believe there are alternative solutions to this at the php level that can be targeted directly at the comment systems of blogs, forums & CMSs, or even mod_security might have some of these features.

https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#wiki-SecHttpBlKey

[perindu]

thanks didn't realized that mod_security already included http:bl