| View previous topic :: View next topic |
| Author |
Message |
AllenJB
Veteran
Joined: 02 Sep 2005
Posts: 1285
|
 Posted: Sun Sep 12, 2010 7:08 am Post subject: |
 |
|
| dE_logics wrote: | So what is this suppose to do?
A few guesses. Apart from the abvious things that make sense -
AllowOverride None -- I have no idea what's this.
Order deny,allow -- Had to do with hosts.allow/deny?
Allow from all -- I can use 192.168.1.* etc... |
AllowOverride relates to what configuration settings any .htaccess files under that directory tree can affect. See the Apache documentation for full details.
Order / Allow / Deny allow control over who can see the contents of the directory tree. Again, see the documentation for full details. By default, Apache is basically set up so that it will not serve files from anywhere on the filesystem excet for the default VirtualHost location. You then have to allow the directory trees you want. This default setup is a security measure so that, for example, someone can't use a trick or two and get apache to serve up the /etc/shadow and /etc/passwd files (which would then allow them to johntheripper all your users passwords, including root and the users who are allowed to login via ssh).
As an aside, the Order / Allow / Deny settings are also why web applications should ideally keep their configuration files outside the DocumentRoot - it prevents people from using similar tricks to serve up the configuration file, giving away the database access details or default passwords (which in most cases will probably just result in your website being defaced or filled with spam, but in the case of an online shop could result in the compromise of private details, even credit cards if those are being stored) |
|
| Back to top |
|
 |
Anon-E-moose
Watchman
Joined: 23 May 2008
Posts: 6222
Location: Dallas area
|
| Posted: Sun Sep 12, 2010 11:11 am Post subject: |
|
|
| dE_logics wrote: | | So what is this suppose to do? |
http://httpd.apache.org/docs/2.0/[/url]
In the middle of the page is a users guide
within that section is a configuration sections
where the different options are explained.
_________________
UM780, 6.12 zen kernel, gcc 13, openrc, wayland |
|
| Back to top |
|
|
dE_logics
Advocate
Joined: 02 Jan 2009
Posts: 2290
Location: $TERM
|
| Posted: Mon Sep 13, 2010 5:47 am Post subject: |
|
|
Thanks. Apart from the official docs, I got a few books too.
_________________
My blog |
|
| Back to top |
|
|
chris.c.hogan
Apprentice
Joined: 02 Oct 2005
Posts: 189
|
| Posted: Mon Nov 15, 2010 7:16 am Post subject: |
|
|
With vhosts disabled (as talked about in this thread), how do you get webapp-config to work?
I have my document root set to "/srv/www/htdocs". Apache is happy serving stuff from here. This box is my Mythtv backend. I wanted to install mythweb. I edited "/etc/vhosts/webapp-config" so that 'vhost_root="/srv/www/"'. However, all "webapp-config -I -u root -d /mythweb mythweb 0.23.1_p25396" does is create an empty folder call "error" in "/srv/www". If I reconfigure everything to use "/var/www/localhost" then mythweb correctly installs in "/var/www/localhost/htdocs/mythweb".
The server is only available to my internal network. I'd like the same pages/applications available regardless of where the connection is coming from.
Thanks for any pointers!
Chris |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
