From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 7E84F1381F3 for ; Tue, 28 May 2013 19:22:23 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id CC1F7E0AB7; Tue, 28 May 2013 19:22:13 +0000 (UTC) Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183]) (using TLSv1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id D1FFFE0AA9 for ; Tue, 28 May 2013 19:21:57 +0000 (UTC) Received: from [192.168.3.7] (cpe-69-207-16-110.buffalo.res.rr.com [69.207.16.110]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: blueness) by smtp.gentoo.org (Postfix) with ESMTPSA id CBFB433E0F9 for ; Tue, 28 May 2013 19:21:56 +0000 (UTC) Message-ID: <51A503DC.4080200@gentoo.org> Date: Tue, 28 May 2013 15:22:04 -0400 From: "Anthony G. Basile" User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130518 Thunderbird/17.0.6 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 To: gentoo-dev@lists.gentoo.org Subject: Re: [gentoo-dev] New USE_EXPAND flag for www-servers/monkeyd References: <51A3C431.7010900@gentoo.org> <20130528173513.50742051@gentoo.org> <51A4FDFF.3020103@gentoo.org> <20130528210737.42695fc9@gentoo.org> In-Reply-To: <20130528210737.42695fc9@gentoo.org> Content-Type: text/plain; charset=ISO-8859-2; format=flowed Content-Transfer-Encoding: 8bit X-Archives-Salt: 2347ef9e-a9ea-40f0-9d83-84a54ca9802b X-Archives-Hash: e7f90bb6697a16b8223b40f3a04571aa On 05/28/2013 03:07 PM, Michał Górny wrote: > On Tue, 28 May 2013 14:57:03 -0400 > "Anthony G. Basile" wrote: > >> On 05/28/2013 11:35 AM, Michał Górny wrote: >>> On Mon, 27 May 2013 16:38:09 -0400 >>> "Anthony G. Basile" wrote: >>> >>>> I was about to add a use expand flag for monkeyd (a tiny web server) and >>>> there is a notice in base/make.default to discuss use expand flags on >>>> the list first. There are about 9 plugins for monkeyd similar to apache >>>> which can be turned on/off by a configure switch. It makes sense to >>>> follow the same logic as apache here. There are no dependencies on >>>> monkeyd and so no use-deps. Seems very safe. Any objections? >>> Could you elaborate a bit more on the flags? Please list them, shortly >>> explain and tell us whether you expect the number of plugins to expand >>> and how fast. >>> >> Sorry I already committed this with Chainsaw's ack. Anyhow, they are: >> >> auth - Provide HTTP Basic Authentication >> cheetah - Provide a shell-like command line interface >> #cgi - Provide the traditional CGI interface >> dirlisting - Show an HTML listing of the content of a directory >> #fastcgi - Provide FastCGI proxy support >> liana - Build your own network layer through monkeyd >> logger - Log requests and common errors >> mandril - Restrict incoming connections based on the IP address or URI >> request >> polarssl - Provide HTTPS using PolarSSL v1.*. > Shouldn't this one be tied to USE=ssl? > > For the others, how large is the benefit of having them switchable? > At least some of them look like something that wouldn't hurt people if > it was always-built. > I thought about ssl but I'm still not sure if USE=ssl means just openssl or any ssl. Eg, with curl, which has a choice of one of six backend ssl providers, I changed USE=ssl to mean that one and only one of the six must be on. Previously though, USE=ssl in curl meant only openssl which was confusing because you could also have USE=nss or gnutls etc provide your ssl. monkey also bounced around its ssl backend from liana_ssl to polarssl which is what made me think of curl. What if in the future there's yet another ssl backend? Although use.desc does say ... "ssl - Adds support for Secure Socket Layer connections". Any advice here? monkeyd is intended for embedded systems which is why it has switchable plugins. You can even choose whether or not to install the shared lib and include files to really slim it down. -- Anthony G. Basile, Ph.D. Gentoo Linux Developer [Hardened] E-Mail : blueness@gentoo.org GnuPG FP : 1FED FAD9 D82C 52A5 3BAB DC79 9384 FA6E F52D 4BBA GnuPG ID : F52D4BBA