Apache2Triad Help, Support and Development Forum Index Search Profile Log in to check your private messages Log in Register Memberlist Attachments Statistics Crew/Ranks Archive
 Further Limiting Access
Google
Post new topic Reply to topic
Author Message
door33
tester
tester


Joined: 28 May 2004
Posts: 67
Location: US

PostPosted: Tue Jul 27, 2004 6:29 am Reply with quoteBack to top

Heres a quck guid i made if you dont understand it reply and ill try to help you and if you log in to apache2cp from other places from home i wouldnt suggest this guide for you.

Guide
------------------------------------------------
Are you a security Freak? Do you wanna keep people out from logging in to your apache2cp?
Heres a quck tutorial that shows you how to limit access to apache2cp from your localhost

First of all you want to open up the .htaccess file in apache2cp dir it should look something like this

Code:
Require user root
AuthType Basic
AuthName "Server"
AuthUserFile F:\apache2triad\htdocs\.htpasswd


Now what you want to do is add some extra lines to that heres what you want to add
order deny,allow
deny from all
allow from 127.0.0.1

add that code to after AuthUserFile C:\apache2triad\htdocs\.htpasswd

your final code should look like this
Code:
Require user root
AuthType Basic
AuthName "Server"
AuthUserFile F:\apache2triad\htdocs\.htpasswd
order deny,allow
deny from all
allow from 127.0.0.1


explination what do those extra lines do?

the deny from all says that no one using your ip adress (ie http://66.xx.xxx.22/apache2cp) cannot log in
to your apache2cp control panel.

the allow only code makes it so that you can only access your machine from logging in from http://localhost or http://127.0.0.1

thus your apache2cp is now safer and you dont have to worry about people breaking in and messing with your settings
View user's profileSend private messageAIM AddressMSN Messenger
Vlad Alexa Mancini
lead developer
lead developer


Joined: 07 Jul 2003
Posts: 1539

PostPosted: Sun Aug 01, 2004 12:29 pm Reply with quoteBack to top

yes , host based access is a way thowards tight security

and you can do the same thing in xmail by having this

Quote:
"0.0.0.0" "0.0.0.0" "DENY" "1"
"127.0.0.1" "255.255.255.0" "ALLOW" "2"


into *.ipmap.tab files

one thing to be aware tho is that you need to understand what this changes cause , in this case denied access from anywhere but the computer on wich the server is running , so you wont be able to administrate it from phpxmail on another host for example , if you change ctrl.ipmap.tab , or not be able to send mail from scripts using localhost , if you change smtp.ipmap.tab
View user's profileSend private message
Display posts from previous:      
Post new topic Reply to topic


 Jump to:   



View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum
Powered by phpBB © 2001, 2002 phpBB Group :: FI Theme
All times are GMT