On 23.Oct.2004 01:52PM -0400, Simon Giles wrote:
> First off, the www.kwiki.org was very helpful for basic
> installation information but when I wanted to find details
> about specific functionality I found myself constantly
> wondering whether the information was obsolete or not. It
> would be very helpful if someone could go through the entire
> site and where applicable add comments like "obolete, replaced
> by x in version 0.33"
I agree. On the handful of pages that I've touched, I have
indeed tried to separate the 0.18 Kwiki material from the
latest. Sometimes, I simply threw in a divider with a "Below this
line is old"-type message. Others have been casually doing this
as well.
> My other questions relate around permissions. I would like to
> be able to lock down my site so that it's read only to the
> general public, with only a group of editorshaving permission
> to make changes. Any idea how I would go about doing this?
This is probably the most requested feature of Kwiki and I can
assure you that Brian is hacking away at it. In the meantime,
you might want to try limiting POST methods to Kwiki in a
.htaccess file:
<Limit POST>
AuthType Basic
AuthName 'Kwiki editors'
...
</Limit>
While this wouldn't stop a determined hacker -- e.g., one that
was determined enough to push a page change through a really
long URL request -- this might provide a temporary deterrant.
(This is in theory, as I actually haven't tried it yet. If you
need further assistance, please ask.)
Thanks for the input. It is indeed appreciated. :)
--
Ian Langworth
Project Guerrilla
Northeastern University
College of Computer and Information Science
