I think I am going to go with Bills suggestion, create
a new user, have extremely restricted access for this
user and run the Apache service under the context of
this user...
Thanks guys.
Neelay
--- "William A. Rowe, Jr." <[EMAIL PROTECTED]>
wrote:
> Neelay Shah wrote:
> > Well, there are som
Neelay Shah wrote:
Well, there are some programs like "junction"
available on sysinternals that supposedly make hard
link equivalent on windows...and the point is the user
can create a hard link to c:\ in his user dir.
No that's a junction, and Apache2 should treat it as a softlink.
and it w
It was thus said that the Great Neelay Shah once stated:
>
> --- "Roger B.A. Klorese " <[EMAIL PROTECTED]> wrote:
>
> > Hard links don't exist in Windows, do they?
> >
> > And on Linux and other Unixen they require suitable
> > permissions on the
> > object.
>
> Well, there are some programs li
Well, there are some programs like "junction"
available on sysinternals that supposedly make hard
link equivalent on windows...and the point is the user
can create a hard link to c:\ in his user dir. and it
will expose the whole hard drive and that is why I am
concerned about it...how to stop the
Neelay Shah wrote:
So, if one of the users in his home directory creates
a hard link to C:/ there is no way I could configure
the web server to avoid following that hard
link..following the link would display the contents of
the "C:/"
Hard links don't exist in Windows, do they?
And on Lin
So, if one of the users in his home directory creates
a hard link to C:/ there is no way I could configure
the web server to avoid following that hard
link..following the link would display the contents of
the "C:/"
Neelay
--- "William A. Rowe, Jr." <[EMAIL PROTECTED]>
wrote:
> Neelay Shah wrot
Got it!
Thanks,
Neelay
--- "William A. Rowe, Jr." <[EMAIL PROTECTED]>
wrote:
> Neelay Shah wrote:
> > Hi guys,
> >
> > I have two questions:
> >
> > 1. Is there any way I can specify in the config.
> file
> > for Apache that do not allow access to any
> directory
> > called 'foo' in my compl
Neelay Shah wrote:
2. Is there a way for me to configure apache so as to
disable showing/following hard links...
Look at your operating system and prevent them from existing.
A hard link is exactly what it says it is; once one is created between
the directory /foo and the directory /bar, there
Neelay Shah wrote:
Hi guys,
I have two questions:
1. Is there any way I can specify in the config. file
for Apache that do not allow access to any directory
called 'foo' in my complete root...i.e. for e.g. if I
say
Whoops;
that's
Bill
-
Hi guys,
I have two questions:
1. Is there any way I can specify in the config. file
for Apache that do not allow access to any directory
called 'foo' in my complete root...i.e. for e.g. if I
say
Order Deny,Allow
Deny from All
This will disable access to 'c:\MyRoot\Dir1\foo' but
if I h
10 matches
Mail list logo
