aserve
aserve | quicklisp-https | |
---|---|---|
3 | 3 | |
190 | 1 | |
- | - | |
4.7 | 0.0 | |
about 2 months ago | almost 7 years ago | |
Common Lisp | Common Lisp | |
GNU General Public License v3.0 or later | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
aserve
- AllegroServe, a web server written in Common Lisp
-
Why do people use Quicklisp although it is known to be vulnerable to man-in-the-middle attacks?
i believe Allegroserve on ACL also natively supports TLS v1.0.
quicklisp-https
-
Ocicl – An ASDF system distribution and management tool for Common Lisp
Other options are:
- Quicklisp -really slick, libraries in there are curated. (with https support here: https://github.com/rudolfochrist/ql-https and here: https://github.com/snmsts/quicklisp-https.git)
- for project-local dependencies like virtualenv: https://github.com/fukamachi/qlot
- a new, more traditional one: https://www.clpm.dev (CLPM comes as a pre-built binary, supports HTTPS by default, supports installing multiple package versions, supports versioned systems, and more)
For recent Quicklisp upgrades: http://ultralisp.org/
Ocicl is very new (5 days) and tries a new approach, building "on tools from the world of containers".
-
quicklisp security (or total lack of it)
I use this on a system that has curl to safely bootstrap https://github.com/snmsts/quicklisp-https.git which then uses openssl via dexador so that I can drop the curl dependency. A bit of a dance to get everything up and running, but once it is done for a given system you are good to go.
-
Why do people use Quicklisp although it is known to be vulnerable to man-in-the-middle attacks?
https://github.com/snmsts/quicklisp-https/blob/master/quicklisp-https.asd#L7 ?
What are some alternatives?
swish - Swish Concurrency Engine
quicklisp-client - Quicklisp client.
quicklisp-projects - Metadata for projects tracked by Quicklisp.
BDFProxy - Patch Binaries via MITM: BackdoorFactory + mitmProxy.
ql-https - HTTPS support for Quicklisp via curl
oras - OCI registry client - managing content like artifacts, images, packages
qlot - A project-local library installer for Common Lisp
ocicl - An OCI-based ASDF system distribution and management tool for Common Lisp
ultralisp - The software behind a Ultralisp.org Common Lisp repository
mitm6 - pwning IPv4 via IPv6