Re: New XAMPP security concept
Today, I installed XAMPP in Lubuntu Linux 13.10 http://downloads.sourceforge.net/project/xampp/XAMPP%20Linux/1.8.2/xampp-linux-1.8.2-6-installer.run and following exactly the same steps as in Windows now I have Livecode Server working in Lubuntu Linux! :D Of course, file locations are different and it's necessary to set manually all permissions for copied files, but apart from this everything worked exactly like in Windows. Al -- View this message in context: http://runtime-revolution.278305.n4.nabble.com/New-XAMPP-security-concept-tp4683248p4683355.html Sent from the Revolution - User mailing list archive at Nabble.com. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
Re: New XAMPP security concept
I have only done a Windows install in IIS, not Apache. I am assuming you also used Apache in Windows. Correct? ~Roger On Wed, Sep 17, 2014 at 4:17 PM, Alejandro Tejada capellan2...@gmail.com wrote: Today, I installed XAMPP in Lubuntu Linux 13.10 http://downloads.sourceforge.net/project/xampp/XAMPP%20Linux/1.8.2/xampp-linux-1.8.2-6-installer.run and following exactly the same steps as in Windows now I have Livecode Server working in Lubuntu Linux! :D Of course, file locations are different and it's necessary to set manually all permissions for copied files, but apart from this everything worked exactly like in Windows. Al -- View this message in context: http://runtime-revolution.278305.n4.nabble.com/New-XAMPP-security-concept-tp4683248p4683355.html Sent from the Revolution - User mailing list archive at Nabble.com. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
Re: New XAMPP security concept
Yes, I installed XAMPP in Windows and Lubuntu Linux. Following the same steps in both platforms (with the differences of file locations and setting permissions) I could install Livecode Server in both platforms. :) Al -- View this message in context: http://runtime-revolution.278305.n4.nabble.com/New-XAMPP-security-concept-tp4683248p4683357.html Sent from the Revolution - User mailing list archive at Nabble.com. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
Re: New XAMPP security concept
Alejandro- Sunday, September 14, 2014, 8:38:13 PM, you wrote: Now, all my livecode files execute correctly in the web browser, but I want to know if this modification opens a security risk in a Livecode server. Thanks in advance! That looks pretty safe - the domain list is still all local. Of course, it probably depends on what you put into the livecode folder. -- -Mark Wieder ahsoftw...@gmail.com This communication may be unlawfully collected and stored by the National Security Agency (NSA) in secret. The parties to this email do not consent to the retrieving or storing of this communication and any related metadata, as well as printing, copying, re-transmitting, disseminating, or otherwise using it. If you believe you have received this communication in error, please delete it immediately. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
Re: New XAMPP security concept
Hi Alejandro You server will be fine, only your localhost will have access to the specified files paths, everything else is blocked. Simon On Mon, Sep 15, 2014 at 8:03 AM, Mark Wieder mwie...@ahsoftware.net wrote: Alejandro- Sunday, September 14, 2014, 8:38:13 PM, you wrote: Now, all my livecode files execute correctly in the web browser, but I want to know if this modification opens a security risk in a Livecode server. Thanks in advance! That looks pretty safe - the domain list is still all local. Of course, it probably depends on what you put into the livecode folder. -- -Mark Wieder ahsoftw...@gmail.com This communication may be unlawfully collected and stored by the National Security Agency (NSA) in secret. The parties to this email do not consent to the retrieving or storing of this communication and any related metadata, as well as printing, copying, re-transmitting, disseminating, or otherwise using it. If you believe you have received this communication in error, please delete it immediately. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode -- *Simon Smith* *seo, online marketing, web development* w. http://www.simonsmith.co m. +27 83 306 7862 ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
Re: New XAMPP security concept
Simon Smith-2 wrote You server will be fine, only your localhost will have access to the specified files paths, everything else is blocked. This is real good news! :D Mark Wieder wrote That looks pretty safe - the domain list is still all local. Of course, it probably depends on what you put into the livecode folder. Inside the livecode folder there is only the file (livecode engine) and the two folders from the Livecode community server ZIP file downloaded from RunRev website. Al -- View this message in context: http://runtime-revolution.278305.n4.nabble.com/New-XAMPP-security-concept-tp4683248p4683275.html Sent from the Revolution - User mailing list archive at Nabble.com. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
New XAMPP security concept
Hi All, Today, I installed LiveCode server in a XAMPP directory in Windows, following the clear instructions provided by Simon in this webpage: http://activethought.net/setting-liveco ... ver-xampp/ and the helpful reference of this LiveCode Guide: http://livecode.com/developers/guides/server/ After undoing many of my own mistakes, like: 1- Forgetting to make a backup of a configuration file before editing... :roll: 2- Avoiding copy and paste from a webpage into a configuration file, because html format does not preserve exactly the code... :oops: 3- Check many times all provided instructions to make sure that Directory modified is the correct one... :? After fixing all my mistakes, still I found an error 403 when I tried to run my first hello.lc code from the browser. Checking Apache Error log, I found this: AH01797: client denied by server configuration According to Apache documentation, my LiveCode folder inside xampp was denied permission to execute... :( After checking all configuration files used by Apache, I found this inside the file httpd-xampp.conf: LocationMatch ^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|server-status|server-info)) Order deny,allow Deny from all Allow from ::1 127.0.0.0/8 \ fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 \ fe80::/10 169.254.0.0/16 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var /LocationMatch and just decided to add the livecode folder to the list: LocationMatch ^/(?i:(?:xampp|security|licenses|phpmyadmin|webalizer|livecode|server-status|server-info)) Order deny,allow Deny from all Allow from ::1 127.0.0.0/8 \ fc00::/7 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 \ fe80::/10 169.254.0.0/16 ErrorDocument 403 /error/XAMPP_FORBIDDEN.html.var /LocationMatch Now, all my livecode files execute correctly in the web browser, but I want to know if this modification opens a security risk in a Livecode server. Thanks in advance! Al -- View this message in context: http://runtime-revolution.278305.n4.nabble.com/New-XAMPP-security-concept-tp4683248.html Sent from the Revolution - User mailing list archive at Nabble.com. ___ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode
