[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
SF.net SVN: ledger-smb: [1696] trunk/ledgersmb-httpd.conf
- Subject: SF.net SVN: ledger-smb: [1696] trunk/ledgersmb-httpd.conf
- From: ..hidden..
- Date: Wed, 03 Oct 2007 18:50:46 -0700
Revision: 1696
http://ledger-smb.svn.sourceforge.net/ledger-smb/?rev=1696&view=rev
Author: einhverfr
Date: 2007-10-03 18:50:45 -0700 (Wed, 03 Oct 2007)
Log Message:
-----------
Tightening up security and adding comments
Modified Paths:
--------------
trunk/ledgersmb-httpd.conf
Modified: trunk/ledgersmb-httpd.conf
===================================================================
--- trunk/ledgersmb-httpd.conf 2007-10-03 18:46:18 UTC (rev 1695)
+++ trunk/ledgersmb-httpd.conf 2007-10-04 01:50:45 UTC (rev 1696)
@@ -1,13 +1,27 @@
+# This file must be edited to substitute the current path with WORKING_DIR
+
Alias /ledgersmb WORKING_DIR/
<Directory WORKING_DIR>
+
+ # Rewrite rule to allow HTTP Authorization information to the scripts only
+ # from this directory.
RewriteEngine On
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
+
AllowOverride All
AddHandler cgi-script .pl
Options ExecCGI Includes FollowSymlinks
+
+ # By default, only allow from localhost. If you change this, please be
+ # advised that you should use SSL protection on any and all network
+ # connections that access this application in order to protect usernames and
+ # passwords.
Order Allow,Deny
- Allow from All
+ Allow from 127.0.0.1
+ Deny from All
+
+ # The rest of this file just tightens up security.
<Files ~ "\.conf$">
Order Deny,Allow
Deny from All
This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.