subject:"\[users@httpd\] Quick 2.4 Require question"

Re: [users@httpd] Quick 2.4 Require question

2016-04-01 Thread Michael A. Peters




On 04/01/2016 02:43 AM, Daniel wrote:

I'd rather not use names, use a specific ip for localhost or a network,
You will save yourself from issues in the long run.

El vie., 1 abr. 2016 a las 11:27, Marat Khalili (mailto:m...@rqc.ru>>) escribió:

Yes. According to documentation at
https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html#require :

When multiple |Require| directives are used in a single
configuration section
 and are
not contained in another authorization directive like
|
|,
they are implicitly contained within a |
|
directive. Thus the first one to authorize a user authorizes the
entire request, and subsequent |Require| directives are ignored.


You can make your intent more clear with:


  AllowOverride None
  php_value include_path "/srv/cdn/phpinclude"
  

Require local
Require ip 2001:db8::a00:20ff:fea7:ccea
Require ip 10.1.2.3
  



Also, "Require local" seem to have only appeared in documentation to
version 2.5. Are you using 2.5 already?


It's in the 2.4 documentation here:

https://httpd.apache.org/docs/2.4/mod/mod_authz_host.html

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

Re: [users@httpd] Quick 2.4 Require question

2016-04-01 Thread Daniel

I'd rather not use names, use a specific ip for localhost or a network, You
will save yourself from issues in the long run.

El vie., 1 abr. 2016 a las 11:27, Marat Khalili () escribió:

> Yes. According to documentation at
> https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html#require :
>
> When multiple Require directives are used in a single configuration
> section  and are
> not contained in another authorization directive like 
> ,
> they are implicitly contained within a 
> 
> directive. Thus the first one to authorize a user authorizes the entire
> request, and subsequent Require directives are ignored.
>
>
> You can make your intent more clear with:
>
> 
>   AllowOverride None
>   php_value include_path "/srv/cdn/phpinclude"
>
>   
>
>
> Require local
> Require ip 2001:db8::a00:20ff:fea7:ccea
> Require ip 10.1.2.3
>
>   
> 
>
>
> Also, "Require local" seem to have only appeared in documentation to
> version 2.5. Are you using 2.5 already?
>
> --
>
> With Best Regards,
> Marat Khalili
>
> On 01/04/16 12:15, Michael A. Peters wrote:
>
> Take the following :
>
> 
>   AllowOverride None
>   php_value include_path "/srv/cdn/phpinclude"
>   Require local
>   Require ip 2001:db8::a00:20ff:fea7:ccea
>   Require ip 10.1.2.3
> 
>
> I assume that would allow connections from the local host, from the IPv6
> specified, and from the IPv4 specified - but would refuse connections from
> anywhere else?
>
> Out of town and can't really test to see.
>
> -
> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
> For additional commands, e-mail: users-h...@httpd.apache.org
>
>
>

Re: [users@httpd] Quick 2.4 Require question

2016-04-01 Thread Marat Khalili

Yes. According to documentation at 
https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html#require :
When multiple |Require| directives are used in a single configuration 
section  and 
are not contained in another authorization directive like 
| 
|, 
they are implicitly contained within a | 
| directive. 
Thus the first one to authorize a user authorizes the entire request, 
and subsequent |Require| directives are ignored.


You can make your intent more clear with:


  AllowOverride None
  php_value include_path "/srv/cdn/phpinclude"
  
Require local
Require ip 2001:db8::a00:20ff:fea7:ccea
Require ip 10.1.2.3
  



Also, "Require local" seem to have only appeared in documentation to 
version 2.5. Are you using 2.5 already?


--

With Best Regards,
Marat Khalili

On 01/04/16 12:15, Michael A. Peters wrote:

Take the following :


  AllowOverride None
  php_value include_path "/srv/cdn/phpinclude"
  Require local
  Require ip 2001:db8::a00:20ff:fea7:ccea
  Require ip 10.1.2.3


I assume that would allow connections from the local host, from the 
IPv6 specified, and from the IPv4 specified - but would refuse 
connections from anywhere else?


Out of town and can't really test to see.

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] Quick 2.4 Require question

2016-04-01 Thread Michael A. Peters


Take the following :


  AllowOverride None
  php_value include_path "/srv/cdn/phpinclude"
  Require local
  Require ip 2001:db8::a00:20ff:fea7:ccea
  Require ip 10.1.2.3


I assume that would allow connections from the local host, from the IPv6 
specified, and from the IPv4 specified - but would refuse connections 
from anywhere else?


Out of town and can't really test to see.

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

Re: [users@httpd] Quick 2.4 Require question

Re: [users@httpd] Quick 2.4 Require question

Re: [users@httpd] Quick 2.4 Require question

[users@httpd] Quick 2.4 Require question

4 matches

Site Navigation

Mail list logo

Footer information