Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: setting up ACL in Apache
Top Forums UNIX for Dummies Questions & Answers setting up ACL in Apache Post 302140085 by moe2266 on Wednesday 10th of October 2007 04:24:13 PM
Old 10-10-2007
i don't have a logon. but here's more details (Sorry the old one wasn't clear):

- I have a directory on Solaris 8 called "/opt/user/ABC owned by a user who keeps adding some applications like html, etc.. under this directory
- I added Listen port 8082 in Apache httpd.conf
- Now this user can see his web pages under http://myhost:8082/ABC

- I have some other users i need to give them access to this webpage above using Apache access control. These users are defined by their e-mails like every one under (*@red.com)

I hope this is clear enough
 

10 More Discussions You Might Find Interesting

1. Cybersecurity

setting ACL's

Hi all, How can I set default owning user and default owning group with setfacl on Solaris 2.6 and up ? My idea is, that when a file is created by user x, and the default owning user is y, the ownership is set to y. This option is visible in the filemanager, though not editable. I can't find... (5 Replies)
Discussion started by: andy_kann
5 Replies

2. UNIX for Dummies Questions & Answers

Setting Last-Modified Bit in Apache

Hi, I have a co-worker that uses javascript code to generate the last-modified date on a file. The problem is our server does not properly send this date so javascript can display it. I know that it is better to use server-side scripting to generate this but she has already put it on multiple... (1 Reply)
Discussion started by: robbieg
1 Replies

3. Linux

setting acl on linux

Hi, while setting access control list I am getting error "Operation NOt Supported" Example :user A wants full access on test directory /home/user B/test, I dont want to add in secondary group bcz group has read permission, (1 Reply)
Discussion started by: manoj.solaris
1 Replies

4. AIX

setting acl

Hi, I want to know how to set acl in aix via smitty and shell prompt, wheather we needs to install additional packages. (0 Replies)
Discussion started by: manoj.solaris
0 Replies

5. Web Development

Problem setting up apache

Hello there, I installed Ajaxterm on my Ubuntu 9.04 machine, and it's running ok if I use : http://localhost:8022/ in my browser. The problem is that I wanted to be able to acces it from somewere else through the internet. I read some instruction and help sites related to this problem, like :... (2 Replies)
Discussion started by: spiriad
2 Replies

6. Web Development

First time setting up site on Apache

Hello All, I am relatively new to using Apache, I have recently set it up on Ubuntu. What I'm trying to do is make "/home/yves/MyFirstPHP/MyFirstPHP/HelloWorld.php" accessible through my browser using the URL: The UNIX and Linux Forums - Learn UNIX and Linux from Experts. The tutorials I have... (1 Reply)
Discussion started by: DarkMatter2009
1 Replies

7. BSD

Setting up Apache/mySQL/PHP in Jail

Server: FreeBSD 7.2-Release Previously I admin a website that uses IP.Board as a forum. It was on a FreeBSD server but there were some issues with some other people on the server so the whole server has been resetup. It is has been set up as a Unix Jail and I was given root access. Apache has... (3 Replies)
Discussion started by: Dark Severance
3 Replies

8. UNIX for Dummies Questions & Answers

Setting up HTTPS in Apache with Linux

I have recently setup a HTTP server using Apache. This was my first install of Apache, so I am very new to it. What I would now like to do is setup HTTPS for my server. Unfortunately, the official Apache 2.2 manual doesn't cover setting up HTTPS, and using Google search engine I have found... (2 Replies)
Discussion started by: SSL
2 Replies

9. Solaris

Is there a difference between setting a user as nologin and setting it as a role?

Trying to figure out the best method of security for oracle user accounts. In Solaris 10 they are set as regular users but have nologin set forcing the dev's to login as themselves and then su to the oracle users. In Solaris11 we have the option of making it a role because RBAC is enabled but... (1 Reply)
Discussion started by: os2mac
1 Replies

10. UNIX for Beginners Questions & Answers

Help setting ACL's

Folks, Solaris 10 issue When I add a new directory to a path, I only get the "group@" line in the ACL The parent directory ACL is drwxrws---+ 12 root teama 12 Jul 18 10:31 . owner@:rwxp-DaARWc---:------:allow group@:rwxp-DaARWc--s:fd----:allow ... (0 Replies)
Discussion started by: wilberforce
0 Replies

LEARN ABOUT REDHAT

upsset.conf

UPSSET.CONF(5)						      Network UPS Tools (NUT)						    UPSSET.CONF(5)

NAME

       upsset.conf - Configuration for Network UPS Tools upsset.cgi

DESCRIPTION

       This  file  only  does  one  job - it lets you convince upsset.cgi(8) that your system's CGI directory is secure.  The program will not run
       until this file has been properly defined.

SECURITY REQUIREMENTS

       upsset.cgi(8) allows you to try login name and password combinations.  There is no rate limiting, as the program shuts down  between  every
       request.  Such is the nature of CGI programs.

       Normally,  attackers would not be able to access your upsd(8) server directly as it would be protected by the ACCESS/ACL directives in your
       upsd.conf(5) file and hopefully local firewall settings in your OS.

       Since upsset runs on your web server, it could provide a passage from the outside to the inside,  bypassing  any  firewall  rules  or  upsd
       access control limitations, since it appears to be coming from the web server.  This is why you must secure it first.

       On  Apache,  you can use the .htaccess file or put the directives in your httpd.conf.  It looks something like this, assuming the .htaccess
       method:

		   <Files upsset.cgi>
		   deny from all
		   allow from your.network.addresses
		   </Files>

       You will probably have to set "AllowOverride Limit" for this directory in your server-level configuration file as well.

       If this doesn't make sense, then stop reading and leave this program alone.  It's not something you absolutely need to have anyway.

       Assuming you have all this done, and it actually works (test it!), then you may add the following directive to this file:

	    I_HAVE_SECURED_MY_CGI_DIRECTORY

       If you lie to the program and someone beats on your upsd through your web server, don't blame me.

SEE ALSO

       upsset.cgi(8)

   Internet resources:
       The NUT (Network UPS Tools) home page: http://www.exploits.org/nut/

       NUT mailing list archives and information: http://lists.exploits.org/

								  Tue Jul 30 2002						    UPSSET.CONF(5)
All times are GMT -4. The time now is 09:35 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy