I have uploaded a new version of the #Perl #Plack greylist middleware to #CPAN https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.5.0

This allows you to throttle requests with different rates based on net blocks or groups of netblocks.

This version adds a "norobots" rate that blocks all requests except for "robots.txt".

It also adds "allowed" and "rejected" rates as synonyms for "whitelist" and "blacklist".

I have uploaded a new version of Plack::Middleware::Greylist to #CPAN https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.4.4

This is #Perl #Plack middleware for rate-limiting web requests based on netblock.

You can specify different rates for different netblocks or groups of netblocks.

This version adds some minor updates to the documentation.

I have uploaded a new version of Catalyst::Plugin::Static::File to #CPAN https://metacpan.org/release/RRWO/Catalyst-Plugin-Static-File-v0.2.1

This is a lightweight #Perl #Catalyst plugin for serving a static file that plays nicely with #Plack #PSGI X-Sendfile, ETag and ConditionalGET middleware.

This version re-adds a redundant file existence check, due to the behaviour of some testing systems.

I have uploaded a new version of Plack::Middleware::Statsd to #CPAN https://metacpan.org/release/RRWO/Plack-Middleware-Statsd-v0.6.3

This is a #Perl #Plack plugin for #statsd monitoring.

The new version improves some of the documentation and reverts back to using Try::Tiny for error trapping.

I have uploaded a new version of Catalyst::Plugin::Static::File to #CPAN https://metacpan.org/release/RRWO/Catalyst-Plugin-Static-File-v0.1.5

This is a lightweight alternative for serving a single file that plays nicely with #Plack Middleware.

Recent versions some documentation types, improve some code internals (thanks @barubary) and improve tests.

#Catalyst #Perl Perl@chirp.social

I've uploaded a new version of the #Perl module Catalyst::Plugin::Static::File to #CPAN https://metacpan.org/release/RRWO/Catalyst-Plugin-Static-File-v0.1.2

This is a lightweight #Catalyst plugin for serving a single static file. It also plays well with a lot of #Plack middleware.

This release fixes some potential bugs, and removes a non-core dependency.

I had started on #Perl #Plack middleware to block requests from AWS.

I might finish that.

Anyone interested in it?

@vandys @randomgeek @codinghorror As a #Perl hacker I will never besmirch #CGI as a standard or for light-use web scripts, but a lot of sins were committed with the two.

These days the done thing is to use #PSGI and a framework like #Mojolicious or #Dancer2 in a persistent app server. You don’t have to write nearly as much code, either. https://plackperl.org

The #Plack middleware can even run your code as a CGI or #FastCGI script if you reallly want.

A new version of the Plack::Middleware::Security::Simple has been uploaded to #CPAN

https://metacpan.org/release/RRWO/Plack-Middleware-Security-Simple-v0.10.1

This is a minor change that can block requests for .c and .cc files.

#Perl #Plack #security #infosec #filter

On this day in 2008, the #Apache Software Foundation released mod_perl 2.0.4, compatible with the December 2007 release of #Perl v5.10: https://lists.apache.org/thread/shyvjnl3dww17pdv24147vbnnwpcb64b

#ModPerl embeds a #Perl runtime in the Apache #httpd web server, hooking it into all stages of the request and response process as well as configuration file logic. Before the advent of #PSGI and #Plack in the 2010s it was the recommended platform for persistent Perl web applications without the overhead of legacy #CGI.

#WebDev #ASF

I have released a new version of the #Perl module to #CPAN Plack::Middleware::Security::Simple https://metacpan.org/release/RRWO/Plack-Middleware-Security-Simple-v0.10.0

This is #Plack #security middleware to block HTTP requests, and includes rules for common vulnerability scans.

The changes add a new rule and some extensions to existing rules.

There's no point in serving requests for Word Press, PHP script or ASP scripts on a Perl-based site. So you may as well block them immediately.

This also works well with fail2ban.

I've uploaded a new version of Plack::Middleware::Greylist to #CPAN #Perl

https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.4.1

This #Plack module allows you to rate limit requests based on IP, netblock or groups of netblocks.

I've found it useful to limit bad bots coming from different IPs in the same cloud services.

@js @berkes @simon #CGI for #Perl #WebDev hasn't been a best practice since the release of the #PSGI spec and #Plack middleware in 2009. There are several very good frameworks that build on PSGI, described here for folks coming from CGI: https://metacpan.org/pod/CGI::Alternatives

The CGI module itself was removed from the core Perl distribution with v5.20 in 2014 https://perldoc.perl.org/perl5200delta#CGI-and-its-associated-CGI::-packages

For anything but the simplest single-user apps, you are permitted to point and laugh at anyone that still uses CGI.

I've uploaded a new version of Plack::Middleware::Security::Simple to #CPAN https://metacpan.org/release/RRWO/Plack-Middleware-Security-Simple-v0.8.3

This is #Perl #Plack middleware for implementing #security filters. It also has common rules for filtering out common attacks.

I uploaded a new version of Plack::Middleware::greylist to #CPAN

https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.3.4

This is #Perl #Plack middleware for implementing request rate limiting for individual IPs, network blocks or groups of network blocks.

I've released a new version of Plack::Middleware::Security::Simple

https://metacpan.org/release/RRWO/Plack-Middleware-Security-Simple-v0.8.2

This is a #Perl #Plack middleware for implementing #security filters.

I have updated Plack::Middleware::Statsd https://metacpan.org/release/RRWO/Plack-Middleware-Statsd-v0.6.2

This is #Perl #Plack middleware for logging metrics to #statsd.

This change includes some minor code improvements, and updates to the documentation.

I've released a new version of Plack::Middleware::Greylist on #CPAN

https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.3.2

The release has a minor bugfix. (If you're already using it, you won't need to upgrade.)

This is #Perl #Plack middleware for rate limiting. It allows you to rate list groups of netblocks.

The main use case is collectively rate limiting requests from bots in AWS or Azure.

I've released a new version of Plack::Middleware::Greylist on #CPAN.

This allows you to add rate limiting based on ip, netblock or groups of netblocks to a #Perl #Plack application.

This version has a minor bug fix and documentation changes.

https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.3.1

New version of Plack::Middleware::Greylist released.

https://metacpan.org/release/RRWO/Plack-Middleware-Greylist-v0.3.0

#Plack #Perl

This allows you to throttle traffic. But you can apply rate limits per IP address, per netblock or even groups of netblocks.