Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]


Groups > comp.lang.python.announce > #533

sec-wall 1.1 / A feature packed security proxy

Path csiph.com!aioe.org!news.stack.nl!newsfeed.xs4all.nl!newsfeed6.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail
Return-Path <dsuch@gefira.pl>
X-Original-To python-announce-list@python.org
Delivered-To python-announce-list@mail.python.org
X-Spam-Status OK 0.004
X-Spam-Evidence '*H*': 0.99; '*S*': 0.00; 'python,': 0.01; 'tests,': 0.07; 'python': 0.08; 'freenode': 0.09; 'homepage:': 0.09; 'subject:security': 0.09; 'to:addr:soap': 0.09; 'utf-8': 0.09; 'def': 0.13; "'host':": 0.16; '-*-': 0.16; 'coding:': 0.16; 'expressions,': 0.16; 'extensible': 0.16; 'received:74.55.86': 0.16; 'received:74.55.86.74': 0.16; 'received:smtp.webfaction.com': 0.16; 'received:webfaction.com': 0.16; 'released.': 0.16; 'simplified': 0.16; 'subject:proxy': 0.16; 'url:documentation': 0.16; 'meant': 0.17; 'url:blog': 0.17; 'cheers,': 0.20; 'blog:': 0.21; 'optional': 0.23; 'code': 0.26; 'import': 0.27; '-----': 0.28; 'channel': 0.28; "skip:' 30": 0.29; 'example': 0.29; "skip:' 10": 0.29; 'server': 0.30; 'imported': 0.30; 'changes': 0.30; 'shared': 0.31; 'version': 0.32; 'source': 0.32; 'headers': 0.32; 'urls': 0.32; 'header:User-Agent:1': 0.33; 'showing': 0.34; 'backend': 0.34; 'ssl': 0.34; 'community': 0.35; 'awesome': 0.37; 'http': 0.37; 'to:addr:python-announce-list': 0.37; 'hello,': 0.37; 'uses': 0.38; 'received:192': 0.38; 'several': 0.38; 'getting': 0.38; 'open': 0.38; 'received:192.168.1': 0.39; 'option': 0.39; 'to:addr:python.org': 0.40; 'easy': 0.60; 'custom': 0.61; 'subject: / ': 0.63; 'world.': 0.64; 'share': 0.66; 'secure': 0.67; 'url:pl': 0.67; 'to:no real name:2**2': 0.68; 'heart': 0.68; 'anyone.': 0.70; 'fantastic': 0.77; 'packed': 0.84; 'skip:# 50': 0.84; 'url:example': 0.84; 'notable': 0.91
Date Wed, 29 Feb 2012 20:34:13 +0100
From Dariusz Suchojad <dsuch@gefira.pl>
User-Agent Mozilla/5.0 (X11; Linux i686 on x86_64; rv:10.0.2) Gecko/20120216 Firefox/10.0.2 SeaMonkey/2.7.2
MIME-Version 1.0
To python-announce-list@python.org, soap@python.org, sec-wall-dev@lists.launchpad.net, sec-wall-users@lists.launchpad.net
Subject sec-wall 1.1 / A feature packed security proxy
Content-Type text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding 7bit
X-Mailman-Approved-At Thu, 01 Mar 2012 17:27:36 +0100
X-BeenThere python-announce-list@python.org
X-Mailman-Version 2.1.12
Precedence list
Reply-To python-list@python.org
List-Id Announcement-only list for the Python programming language <python-announce-list.python.org>
List-Unsubscribe <http://mail.python.org/mailman/options/python-announce-list>, <mailto:python-announce-list-request@python.org?subject=unsubscribe>
List-Archive <http://mail.python.org/pipermail/python-announce-list>
List-Post <mailto:python-announce-list@python.org>
List-Help <mailto:python-announce-list-request@python.org?subject=help>
List-Subscribe <http://mail.python.org/mailman/listinfo/python-announce-list>, <mailto:python-announce-list-request@python.org?subject=subscribe>
Approved python-announce-list@python.org
Newsgroups comp.lang.python.announce
Message-ID <mailman.324.1330619256.3037.python-announce-list@python.org> (permalink)
Lines 77
NNTP-Posting-Host 2001:888:2000:d::a6
X-Trace 1330619256 news.xs4all.nl 6879 [2001:888:2000:d::a6]:55010
X-Complaints-To abuse@xs4all.nl
Xref csiph.com comp.lang.python.announce:533

Show key headers only | View raw


Hello,

the version 1.1 of sec-wall has just been released.

Notable changes
---------------

- Added an 'ssl-wrap-only' option for terminating SSL without requiring 
clients to provide any authentication information

- Simplified access to sec-wall's internals from other Python packages 
so various authentication methods can be directly imported from Python code


What is sec-wall?
-----------------
sec-wall is a feature packed security proxy.

sec-wall has many interesting features, including support for SSL/TLS, 
WS-Security, HTTP Auth Basic/Digest, extensible authentication schemes 
based on custom HTTP headers and XPath expressions, powerful URL 
matching/rewriting and an optional headers enrichment.

sec-wall uses and is built on top of several fantastic Python open 
source technologies, such as gevent, Spring Python, pesto, lxml, zdaemon 
or PyYAML and is meant to be highly customizable and easy to use. Good 
performance, tests, documentation and building an awesome community are 
at the very heart of the project.

Here's an example showing how little is needed to secure a backend 
server with HTTP Basic Auth.

# ######################################################

# -*- coding: utf-8 -*-

# stdlib
import uuid

# Don't share it with anyone.
INSTANCE_SECRET = '5bf4e78c256746eda2ce3e0e73f256d0'

# May be shared with the outside world.
INSTANCE_UNIQUE = uuid.uuid4().hex

def default():
     return {
         'basic-auth':True,
         'basic-auth-username':'MyUser',
         'basic-auth-password':'MySecret',
         'basic-auth-realm':'Secure area',
         'host': 'http://example.com'
     }

urls = [
     ('/*', default()),
]

# ######################################################

Links
-----

Project's homepage: http://sec-wall.gefira.pl/
Getting started: 
http://sec-wall.gefira.pl/documentation/getting-started/index.html
Usage examples: 
http://sec-wall.gefira.pl/documentation/usage-examples/index.html
Twitter: https://twitter.com/fourthrealm
Blog: http://www.gefira.pl/blog
IRC: #sec-wall channel on Freenode network

cheers,

-- 
Dariusz Suchojad

Back to comp.lang.python.announce | Previous | Next | Find similar | Unroll thread


Thread

sec-wall 1.1 / A feature packed security proxy Dariusz Suchojad <dsuch@gefira.pl> - 2012-02-29 20:34 +0100

csiph-web