Re: [Nolug] PHP help

From: Christopher M. Jones <cjones_at_partialflow.com>
Date: Fri, 18 Apr 2008 09:12:56 -0400
Message-id: <1208524376.8380.63.camel@copernicus>

Why don't you have a look at one of the frameworks out there? I've been
looking at Zend, lately. Seems to have some nice features. Also, for
something more fully featured and packaged, you could look at Prado.

Zend, for example, has a set of classes to handle ACLs. I'm pretty sure
that Prado supports LDAP authentication (I know Horde does).

As for a template engine, why not just use php? That's what php was
designed for, after all. I mean, respectfully, why bother to learn the
arcanities of a templating language like smarty, when you already are
using one with php?

On Thu, 2008-04-17 at 19:24 -0500, Dustin Puryear wrote:
> Sguil is cool, but it's not really.. audit logging for an application.
> My thoughts at this point are to just keep with log4php and setup an
> audit definition. You can then point log4php at a file, syslog, RDBMS,
> whatever. THEN you can use Sguil if it catches you fancy. :)
>
> Yes, as mentioned before we know and use php-ldap. I was just hoping
> someone had already built an authn/authz framework that used LDAP and
> possibly other configuration types. Something similar to the way you
> build access control around enterprise apps using a generic framework. I
> have yet to find anything in PHP for that. Oh well.
>
> --
> Dustin Puryear
> President and Sr. Consultant
> Puryear Information Technology, LLC
> 225-706-8414 x112
> http://www.puryear-it.com
>
> Author, "Best Practices for Managing Linux and UNIX Servers"
> http://www.puryear-it.com/pubs/linux-unix-best-practices/
>
>
> Charles Paul wrote:
> >> > Audit Logging. We COULD use log4php I suppose. Other ideas?
> >
> > Have you seen Sguil yet? http://sguil.sourceforge.net/
> >
> > The cleartext of your audit logs should be stored offsite, regardless
> > of your log viewer.
> >
> >
> >> Access Rights. We need to manage access to a given page and elements within
> >> that page. We'll be doing this using LDAP groups. Best method?
> >
> > The ldap functions, and maybe the PAM package (depending on where you
> > want the auth done).
> > ___________________
> > Nolug mailing list
> > nolug@nolug.org
> ___________________
> Nolug mailing list
> nolug@nolug.org

___________________
Nolug mailing list
nolug@nolug.org
Received on 04/18/08

This archive was generated by hypermail 2.2.0 : 12/19/08 EST