SUMMARY secure webserver

From: Li (lxs@pcog8.pmmp.uic.edu)
Date: Thu Sep 12 1996 - 12:14:30 CDT


Thanks to all who replied. There were many replies to the following question.
Tony Lawson's answer solved my problem.

QUESTION:
How can I set a secure web server? We want our homepage to be accessed
from outside only by some specified persons. Is there a way to set these
persons' IP addresses into some config file so that only these persons can
access our homepage? We are running SUN OS 4.1.4 and CERN httpd daemon.

ANSWER:
I use these statements in the config file to protect a web
directory from users outside of my department - the IP range in the
GetMask has been assigned to systems in my department. You could
protect the whole directory tree in this way - IP numbers or DNS
naming is ok.

No doubt there are several other ways...

Protection INTERNAL-ONLY {
ServerId cswww
GetMask @(155.245.157.*),@(155.245.156.*)
}

Protect /noticeBoard/* INTERNAL-ONLY

NB:
1.The above method is suitable if you are running CERN httpd.If you are
running other httpd,such as NCSA, Apache or whatever, you should check
their website to find the right ways.

2.The following are websites for different servers:

CERN: http://www.w3.org/pub/WWW/Daemon/User/Config
Apache: http://www.smartsoft.com/Products.htmld/ApacheSSL.htmld/
NCSA : http://hoohoo.ncsa.uiuc.edu/docs/setup/access/Overview.html

==================================================
li,xuesong lxs@pcog8.pmmp.uic.edu

University of Illinois at Chicago
==================================================



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:11:10 CDT