Re: Multi-User Security on *nix using mod_rewrite

This WebDNA talk-list message is from

2002


It keeps the original formatting.
numero = 41718
interpreted = N
texte = That's a good idea performance wise but it does not add much security. Any site that has the WebCat handler can still play with files of other virtual hosts.Clem.Alain Russell wrote:> Why not just remove the webcatalog handler from the main httpd,conf file and > add to each virtual host as needed .. > > We do this .. Mean sone site can map- .html to webcatalog and the next can > be standard static Apache files .. > > As follows: > > > ServerName www.blackpepper.co.nz > > Options -Indexes FollowSymLinks IncludesNoExec > > DocumentRoot /Library/WebServer/WebSites/www.blackpepper.co.nz > TransferLog /var/log/httpd/www.blackpepper.co.nz_access-log > ErrorLog /var/log/httpd/www.blackpepper.co.nz_error-log > ServerAlias www 210.55.24.6 localhost 127.0.0.1 blackpepper.co.nz > AddHandler webcatalog2-handler .html > NameVirtualHost 210.55.24.6 > > > Alain > > > After reading through the docs on mod_rewrite I believe that it > > could be used to secure, on a directory or host basis, the usage of > > the WebDNA Engine based on file extension. This could be a great > > way to provide standard hosting on the same machine as WebDNA if it > > really could be made to work. I haven't yet started in on it > > because I wanted to know if anyone has already tried it. If so, > > does it work. If not, why not. It seems, as it runs off of > > regular expression, that explicit denial of any registered > > extension processed by WebDNA could be rewritten to an error page > > or the like and that this denial could be either file path based or > > host header based or both. > > > > Any mod_rewrite gurus out there that want to comment? > > > > Mike ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Multi-User Security on *nix using mod_rewrite (Alain Russell 2002)
  2. Re: Multi-User Security on *nix using mod_rewrite (Aaron Lynch 2002)
  3. Re: Multi-User Security on *nix using mod_rewrite (Aaron Lynch 2002)
  4. Re: Multi-User Security on *nix using mod_rewrite (Clement Ross 2002)
  5. Re: Multi-User Security on *nix using mod_rewrite (Alain Russell 2002)
  6. Multi-User Security on *nix using mod_rewrite (Michael Davis 2002)
That's a good idea performance wise but it does not add much security. Any site that has the WebCat handler can still play with files of other virtual hosts.Clem.Alain Russell wrote:> Why not just remove the webcatalog handler from the main httpd,conf file and > add to each virtual host as needed .. > > We do this .. Mean sone site can map- .html to webcatalog and the next can > be standard static Apache files .. > > As follows: > > > ServerName www.blackpepper.co.nz > > Options -Indexes FollowSymLinks IncludesNoExec > > DocumentRoot /Library/WebServer/WebSites/www.blackpepper.co.nz > TransferLog /var/log/httpd/www.blackpepper.co.nz_access-log > ErrorLog /var/log/httpd/www.blackpepper.co.nz_error-log > ServerAlias www 210.55.24.6 localhost 127.0.0.1 blackpepper.co.nz > AddHandler webcatalog2-handler .html > NameVirtualHost 210.55.24.6 > > > Alain > > > After reading through the docs on mod_rewrite I believe that it > > could be used to secure, on a directory or host basis, the usage of > > the WebDNA Engine based on file extension. This could be a great > > way to provide standard hosting on the same machine as WebDNA if it > > really could be made to work. I haven't yet started in on it > > because I wanted to know if anyone has already tried it. If so, > > does it work. If not, why not. It seems, as it runs off of > > regular expression, that explicit denial of any registered > > extension processed by WebDNA could be rewritten to an error page > > or the like and that this denial could be either file path based or > > host header based or both. > > > > Any mod_rewrite gurus out there that want to comment? > > > > Mike ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Clement Ross

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Intranet Tempaltes? (2004) WebMerchant 1.6 and https (1997) ConverChars (1999) Possible Macv2.1b2 Merge Bug (1997) [sendmail] (2004) Stumped by [thisUrl] (2006) Possible Bug in 2.0b15.acgi (1997) WebDNA Solutions ... sorry! (1997) [WebDNA] RSS Feed help (2009) Problem with summ=T & [sum fieldname=] (2001) A little syntax help (1997) Stopping bad HTML propagation ? (1997) (2000) How to include weather (2000) Ship via options price (2000) Sending E-mail (1997) [WebDNA] Displaying age (2010) TRAINING videos - Prove IT. (1998) WebDNA v6 & MySQL (2008) [WebDNA] Ubuntu 16.04.4 LTS (2018)