I've the following situation:
I need to block the access on a particular location,as the example:
...
Location /manager
Order Deny,Allow
Deny from all
Allow from localhost safenet1 safenet2 ...
/Location
...
I need to do the same for all the virtualhosts, more than 1K...
Solution1:
using
Hi list,
I'm setting up an Apache server with many path-based authorisations. The
goal is to create a file server over HTTP(S). Using an FTP server is not
an option.
As far as I know, There's only two options available on Apache to set up
these kind of authorisations :
.htaccess files : can
Here is a small problem one of my server was shutdown for 2 months due to a
migration activity.
After 2 months when one of our vendors finally has migrated it when I boot the
machine
then I do not see any response in Apache logs.More over when I start or stop or
restart Apache2
On 30 Mar 2011, at 10:21, Admin Cyanide wrote:
another way to do this ?
I'm searching for something with a database authentication backend, so I can
change autorisations through a service and doesn't need to restart the server.
How much flexibility do you need? If you use a backend such
Ok after some time of digging I found
I found in /etc/init.d/ directory there are following files apache apache2.1
and apache2.2 I remember long time back when I had installed it was only apache
but surprisingly I find these two files apache2.1 and apache2.2 also. Now when
I did
On March 29, 2011 22:01 , Liu JinGang li...@cn.fujitsu.com wrote:
As Eric and Mark said, do you have the document or web-link file
explain this viewpoint?( Apache doesn't discriminate the http methods
to access CGI.)
I do not know of any document that explains the viewpoint. However,
Ok after some time of digging I found
I found in /etc/init.d/ directory there are following files apache apache2.1
and apache2.2 I remember long time back when I had installed it was only apache
but surprisingly I find these two files apache2.1 and apache2.2 also. Now when
I did
As subject specifies, I have problem with running Apache on SSL only.
I tried to use 'ab' and tested port 80 443 both. port 80 is too fast
than running the server with port 443.
SSL needs a source of random data. What source have you told Apache to
use? Note that it is possilble that
You miss understand. A user with ftp access only to a single virtual
host can upload a PHP shell to there web space. The PHP shell allows
them to login with a made up password they make. Once logged in to the
PHP shell they are no longer restricted by there FTP login permissions
due to the
Le 30/03/2011 12:30, Nick Kew a écrit :
On 30 Mar 2011, at 10:21, Admin Cyanide wrote:
another way to do this ?
I'm searching for something with a database authentication backend, so I can
change autorisations through a service and doesn't need to restart the server.
How much flexibility
On 30 Mar 2011, at 14:32, Admin Cyanide wrote:
I just want to be sure we're talking about authorisations and not
authentication. I know how to use SQL, LDAP or whatever to create
authentications mechanisms.
What I'm searching is path based authorisations to allow acces to xxx/yyy
folder
Le 30/03/2011 15:40, Nick Kew a écrit :
On 30 Mar 2011, at 14:32, Admin Cyanide wrote:
I just want to be sure we're talking about authorisations and not
authentication. I know how to use SQL, LDAP or whatever to create
authentications mechanisms.
What I'm searching is path based
On Wed, Mar 30, 2011 at 7:35 AM, Mark Montague m...@catseye.org wrote:
Next, configure Apache to execute the PHP for each virtual host as user
unique to that virtual host (and different from the user who owns the files
for that virtual host). There are several ways to do this, including
This may be a stupid idea, but has anyone had any experience load-balancing two
Apache (2.2 in our case) servers that are running mod_dav? We've searched and
searched and it looks like it's just something that no one at all talks about.
We've got a setup in production where we've got Apache
On Wed, Mar 30, 2011 at 12:12 AM, Mohit Anchlia mohitanch...@gmail.com wrote:
thanks! F5 supports the cookies and is recommended way but the problem
is server A is not managed by us and may be very difficult to
convience them to enter cookie (changing code). Is it possible to
embed cookies for
Appreciate all the input! Those things were already part of my list
that are mentioned in this email.
What I was trying to point was that we are really in restrictive env
where server A can't be changed and 3rd party may not agree to change.
So I was wondering if there is something like caching
On Wed, Mar 30, 2011 at 10:17 AM, Mohit Anchlia mohitanch...@gmail.com wrote:
Appreciate all the input! Those things were already part of my list
that are mentioned in this email.
What I was trying to point was that we are really in restrictive env
where server A can't be changed and 3rd
- Original Message -
This may be a stupid idea, but has anyone had any experience
load-balancing two Apache (2.2 in our case) servers that are running
mod_dav? We've searched and searched and it looks like it's just
something that no one at all talks about.
I've been thinking about
Thanks! I will get more info and post what I find or route I go.
On Wed, Mar 30, 2011 at 7:22 AM, Ben Timby bti...@gmail.com wrote:
On Wed, Mar 30, 2011 at 10:17 AM, Mohit Anchlia mohitanch...@gmail.com
wrote:
Appreciate all the input! Those things were already part of my list
that are
Hi,
As we can pay attention .htaccess must be only redacted in ANSI.
This rule is not absolute :
* The Windows version supports the 3 chars which marks the encoding
of the file.
If on Linux a file coming from windows env with is the 3 format coding
identification is submitted we get
- Original Message -
- Original Message -
This may be a stupid idea, but has anyone had any experience
load-balancing two Apache (2.2 in our case) servers that are running
mod_dav? We've searched and searched and it looks like it's just
something that no one at all talks
Hello Users,
We have complicated issue here. let me explain in a bit. We have production
machine running on apache-1.3.19 / mod_ssl-2.8.1 / OpenSSL 0.9.5a. Now issue
in security scanner we found some issue in openssl 0.9.5a version and
mod_ssl-2.8.1 is statically compiled with openssl so we
Hello Users,
We have complicated issue here. let me explain in a bit. We have production
machine running on apache-1.3.19 / mod_ssl-2.8.1 / OpenSSL 0.9.5a. Now issue
in security scanner we found some issue in openssl 0.9.5a version and
mod_ssl-2.8.1 is statically compiled with openssl so we
I knew this is old but we can't stop production right a way! need some time to
upgrade.. I am looking for small hack...
After couple of changes in Makefile of mod_ssl i build libssl.so module with
the help of apxs. But what if i want name like mod_ssl.so what should i do ? or
just rename
On 3/30/2011 4:39 PM, Ahab Abouzour wrote:
Starting with Apache 2.2.x, things seem to have changed, up until 2.2.9 (I
think), the 'include' directory is deployed by the installer but not the
'lib' directory. I just installed Apache 2.2.15 using
Hi all,
We find it quite handy to use SetEnv to store configuration variables
for our PHP / Python Web apps.
Helps us keep configuration separate to the application, hence moving
code from development to production environments becomes quite simple.
Our SetEnvs are generally defined in our
On 30 Mar 2011, at 18:21, Bernard TREMBLAY wrote:
Hi,
As we can pay attention .htaccess must be only redacted in ANSI.
ANSI isn't an encoding. Unless perhaps you're back in the 1980s
when the notion of an encoding was undefined.
This rule is not absolute :
• The Windows version
Mark Montague:
Thank you very much !
* I do not know of any document that explains the viewpoint. However,
you can observe and test that Apache does not discriminate.
I have test that Apache does not discriminate.
I also did not find the document that explains the viewpoint,so I want
28 matches
Mail list logo