I think I am going to go with Bills suggestion, create
a new user, have extremely restricted access for this
user and run the Apache service under the context of
this user...
Thanks guys.
Neelay
--- William A. Rowe, Jr. [EMAIL PROTECTED]
wrote:
Neelay Shah wrote:
Well, there are some
Neelay Shah wrote:
Hi guys,
I have two questions:
1. Is there any way I can specify in the config. file
for Apache that do not allow access to any directory
called 'foo' in my complete root...i.e. for e.g. if I
say
Directory c:\MyRoot\*\foo
Whoops;
that's DirectoryMatch .*/foo
Bill
Neelay Shah wrote:
2. Is there a way for me to configure apache so as to
disable showing/following hard links...
Look at your operating system and prevent them from existing.
A hard link is exactly what it says it is; once one is created between
the directory /foo and the directory /bar,
Got it!
Thanks,
Neelay
--- William A. Rowe, Jr. [EMAIL PROTECTED]
wrote:
Neelay Shah wrote:
Hi guys,
I have two questions:
1. Is there any way I can specify in the config.
file
for Apache that do not allow access to any
directory
called 'foo' in my complete root...i.e. for
So, if one of the users in his home directory creates
a hard link to C:/ there is no way I could configure
the web server to avoid following that hard
link..following the link would display the contents of
the C:/
Neelay
--- William A. Rowe, Jr. [EMAIL PROTECTED]
wrote:
Neelay Shah wrote:
Neelay Shah wrote:
So, if one of the users in his home directory creates
a hard link to C:/ there is no way I could configure
the web server to avoid following that hard
link..following the link would display the contents of
the C:/
Hard links don't exist in Windows, do they?
And on
Well, there are some programs like junction
available on sysinternals that supposedly make hard
link equivalent on windows...and the point is the user
can create a hard link to c:\ in his user dir. and it
will expose the whole hard drive and that is why I am
concerned about it...how to stop the
It was thus said that the Great Neelay Shah once stated:
--- Roger B.A. Klorese [EMAIL PROTECTED] wrote:
Hard links don't exist in Windows, do they?
And on Linux and other Unixen they require suitable
permissions on the
object.
Well, there are some programs like junction
Neelay Shah wrote:
Well, there are some programs like junction
available on sysinternals that supposedly make hard
link equivalent on windows...and the point is the user
can create a hard link to c:\ in his user dir.
No that's a junction, and Apache2 should treat it as a softlink.
and it