sunadmn has asked for the wisdom of the Perl Monks concerning the following question:
Good day fellow Monks I have a task that has been placed on my shoulders and have some concerns as to how to handle the task.
I have been asked by my company to build a DNS webpage for management of all our RFC1918 space. I have the basic idea of what to do but am looking for some advise on security and overhead. What I have in place now is a pretty simple MySQL DB housing all my DNS data, thanks to the help of Limbic~Region and many other monks. Now the general idea is to have a secure site where given users log into the site and can mangae certain things, I would love to handle privliges on a user level here but that can come later. I have set out searching CPAN for mods that might be able to help me out and it is obvious I will have to use DBI to manipulate the DB, but here is where I come into a security question and have not found the answer in the O'Reily DBI book yet. Security question is can I do some sort of include to include the auth info for the DB server so I do not have that in my main CGI? I know this may sound trivial to some, but I have not been able to find a good answer and am still a newbie to perl.
Secondly my main concern is overhead since this will run on a small Sun Netra T1 and will have many users loggin in at the same time. My idea for sanity checking is to load the PTR and A record tables into an array for given domain name and then use Array::Compare to test for the data set in both, but was concerned about hoggin down the server if multiple users run a query at the same time. I am really just trying to get some pointers as to how to build a more efficent server/app any pointers you may offer would be great.
I have been asked by my company to build a DNS webpage for management of all our RFC1918 space. I have the basic idea of what to do but am looking for some advise on security and overhead. What I have in place now is a pretty simple MySQL DB housing all my DNS data, thanks to the help of Limbic~Region and many other monks. Now the general idea is to have a secure site where given users log into the site and can mangae certain things, I would love to handle privliges on a user level here but that can come later. I have set out searching CPAN for mods that might be able to help me out and it is obvious I will have to use DBI to manipulate the DB, but here is where I come into a security question and have not found the answer in the O'Reily DBI book yet. Security question is can I do some sort of include to include the auth info for the DB server so I do not have that in my main CGI? I know this may sound trivial to some, but I have not been able to find a good answer and am still a newbie to perl.
Secondly my main concern is overhead since this will run on a small Sun Netra T1 and will have many users loggin in at the same time. My idea for sanity checking is to load the PTR and A record tables into an array for given domain name and then use Array::Compare to test for the data set in both, but was concerned about hoggin down the server if multiple users run a query at the same time. I am really just trying to get some pointers as to how to build a more efficent server/app any pointers you may offer would be great.
SUNADMN
USE PERL
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: DBI & CGI Security
by samtregar (Abbot) on Jun 03, 2004 at 16:19 UTC | |
by sunadmn (Curate) on Jun 03, 2004 at 16:24 UTC | |
by samtregar (Abbot) on Jun 03, 2004 at 16:54 UTC | |
by Plankton (Vicar) on Jun 03, 2004 at 16:47 UTC | |
by Berik (Sexton) on Jun 03, 2004 at 23:11 UTC | |
by CountZero (Bishop) on Jun 03, 2004 at 22:20 UTC | |
Re: DBI & CGI Security
by jZed (Prior) on Jun 03, 2004 at 16:11 UTC | |
Re: DBI & CGI Security
by jayrom (Pilgrim) on Jun 03, 2004 at 16:47 UTC | |
by bradcathey (Prior) on Jun 03, 2004 at 17:30 UTC | |
by jayrom (Pilgrim) on Jun 03, 2004 at 17:49 UTC | |
by bradcathey (Prior) on Jun 03, 2004 at 18:42 UTC | |
by jayrom (Pilgrim) on Jun 03, 2004 at 19:14 UTC | |
by fizbin (Chaplain) on Jun 04, 2004 at 15:45 UTC |
Back to
Seekers of Perl Wisdom