10-10-2007
i don't have a logon. but here's more details (Sorry the old one wasn't clear):
- I have a directory on Solaris 8 called "/opt/user/ABC owned by a user who keeps adding some applications like html, etc.. under this directory
- I added Listen port 8082 in Apache httpd.conf
- Now this user can see his web pages under
http://myhost:8082/ABC
- I have some other users i need to give them access to this webpage above using Apache access control. These users are defined by their e-mails like every one under (*@red.com)
I hope this is clear enough
10 More Discussions You Might Find Interesting
1. Cybersecurity
Hi all,
How can I set default owning user and default owning group with setfacl on Solaris 2.6 and up ?
My idea is, that when a file is created by user x, and the default owning user is y, the ownership is set to y.
This option is visible in the filemanager, though not editable. I can't find... (5 Replies)
Discussion started by: andy_kann
5 Replies
2. UNIX for Dummies Questions & Answers
Hi,
I have a co-worker that uses javascript code to generate the last-modified date on a file. The problem is our server does not properly send this date so javascript can display it. I know that it is better to use server-side scripting to generate this but she has already put it on multiple... (1 Reply)
Discussion started by: robbieg
1 Replies
3. Linux
Hi,
while setting access control list I am getting error "Operation NOt Supported"
Example :user A wants full access on test directory /home/user B/test, I dont want to add in secondary group bcz group has read permission, (1 Reply)
Discussion started by: manoj.solaris
1 Replies
4. AIX
Hi,
I want to know how to set acl in aix via smitty and shell prompt, wheather we needs to install additional packages. (0 Replies)
Discussion started by: manoj.solaris
0 Replies
5. Web Development
Hello there,
I installed Ajaxterm on my Ubuntu 9.04 machine, and it's running ok if I use : http://localhost:8022/ in my browser. The problem is that I wanted to be able to acces it from somewere else through the internet. I read some instruction and help sites related to this problem, like :... (2 Replies)
Discussion started by: spiriad
2 Replies
6. Web Development
Hello All,
I am relatively new to using Apache, I have recently set it up on Ubuntu. What I'm trying to do is make "/home/yves/MyFirstPHP/MyFirstPHP/HelloWorld.php" accessible through my browser using the URL: The UNIX and Linux Forums - Learn UNIX and Linux from Experts. The tutorials I have... (1 Reply)
Discussion started by: DarkMatter2009
1 Replies
7. BSD
Server: FreeBSD 7.2-Release
Previously I admin a website that uses IP.Board as a forum. It was on a FreeBSD server but there were some issues with some other people on the server so the whole server has been resetup. It is has been set up as a Unix Jail and I was given root access. Apache has... (3 Replies)
Discussion started by: Dark Severance
3 Replies
8. UNIX for Dummies Questions & Answers
I have recently setup a HTTP server using Apache.
This was my first install of Apache, so I am very new to it.
What I would now like to do is setup HTTPS for my server.
Unfortunately, the official Apache 2.2 manual doesn't cover setting up HTTPS, and using Google search engine I have found... (2 Replies)
Discussion started by: SSL
2 Replies
9. Solaris
Trying to figure out the best method of security for oracle user accounts. In Solaris 10 they are set as regular users but have nologin set forcing the dev's to login as themselves and then su to the oracle users.
In Solaris11 we have the option of making it a role because RBAC is enabled but... (1 Reply)
Discussion started by: os2mac
1 Replies
10. UNIX for Beginners Questions & Answers
Folks,
Solaris 10 issue
When I add a new directory to a path, I only get the "group@" line in the ACL
The parent directory ACL is
drwxrws---+ 12 root teama 12 Jul 18 10:31 .
owner@:rwxp-DaARWc---:------:allow
group@:rwxp-DaARWc--s:fd----:allow
... (0 Replies)
Discussion started by: wilberforce
0 Replies
LEARN ABOUT REDHAT
upsset.conf
UPSSET.CONF(5) Network UPS Tools (NUT) UPSSET.CONF(5)
NAME
upsset.conf - Configuration for Network UPS Tools upsset.cgi
DESCRIPTION
This file only does one job - it lets you convince upsset.cgi(8) that your system's CGI directory is secure. The program will not run
until this file has been properly defined.
SECURITY REQUIREMENTS
upsset.cgi(8) allows you to try login name and password combinations. There is no rate limiting, as the program shuts down between every
request. Such is the nature of CGI programs.
Normally, attackers would not be able to access your upsd(8) server directly as it would be protected by the ACCESS/ACL directives in your
upsd.conf(5) file and hopefully local firewall settings in your OS.
Since upsset runs on your web server, it could provide a passage from the outside to the inside, bypassing any firewall rules or upsd
access control limitations, since it appears to be coming from the web server. This is why you must secure it first.
On Apache, you can use the .htaccess file or put the directives in your httpd.conf. It looks something like this, assuming the .htaccess
method:
<Files upsset.cgi>
deny from all
allow from your.network.addresses
</Files>
You will probably have to set "AllowOverride Limit" for this directory in your server-level configuration file as well.
If this doesn't make sense, then stop reading and leave this program alone. It's not something you absolutely need to have anyway.
Assuming you have all this done, and it actually works (test it!), then you may add the following directive to this file:
I_HAVE_SECURED_MY_CGI_DIRECTORY
If you lie to the program and someone beats on your upsd through your web server, don't blame me.
SEE ALSO
upsset.cgi(8)
Internet resources:
The NUT (Network UPS Tools) home page: http://www.exploits.org/nut/
NUT mailing list archives and information: http://lists.exploits.org/
Tue Jul 30 2002 UPSSET.CONF(5)