General :: Apache Ip Access Restriction
Nov 9, 2010
I have a Name-based virtualhost website in Apache, what i want to do is to disable direct ip access to the site and allow only through web address (www.mysite.com, and not through xxx.xxx.xxx.xxx). Or at least show a default page / not found page
I presume this can be acomplished with Mod_Rewrite and .htaccess but i just wanted to know if there is a more global option for this
I have googled this a lot but i can only find posts related to ip host restriction rules, which is not what i want
View 3 Replies
ADVERTISEMENT
Jan 22, 2010
I've got this in my Apache2 config (on a Ubuntu 9.10 server):
Code:
<VirtualHost _default_:443>
DocumentRoot /srv/svn
<Location /repos>
DAV svn
[Code]....
When I comment out the "allow from" line, I have no access to this server at all, but when "Allow from 127.0.0.1 172.23.120" is activated, I can also access that location from other IP's (I can even access it from the internet).
What I really want is access limited to the IP's in "Allow from" because I don't want anyone accessing our subversion repo's from anywhere else.
View 5 Replies
View Related
Apr 29, 2010
cannot restrict share access to a single user. I've played with the security and valid users options in the smb.conf and I can get it to mount if I remove the valid users option, but this does not provide the access restriction I need. I also left it open and tried making the folder permissions rwx for backupadmin only and that didn't work. I'm using a credentials file which I include below, but I've tried manually entering them in the command too.
[root@aaphst02 /]# mount -t cifs //aapsan01/aapxen01 /mnt/aapxen01 --verbose -o credentials=/root/smbcreds
mount.cifs kernel mount options: unc=//aapsan01aapxen01,ip=10.0.1.34,user=backupadmin,ver=1,rw,credentials=/root/smbcreds,pass=********
[Code].....
View 3 Replies
View Related
Sep 23, 2010
This is my problem,i need to give some user from other machine to my machine where they can get my data,but i want to give them only one dir where they can download file and i'm trying to use scp to this solution
Code:
[root@malick ~]# ssh -V
OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
View 9 Replies
View Related
Jun 1, 2011
recently i was raised my question about external and internal emailing using one domain name.Now i have another question about restriction.I can able to set email account and permit only local and external
now my question this kind of setup external and internal one thing i've noticed is that using prinzz1@domain.com(local only) was able to receive email from outside.is it possible to block all outside email if the prinzz1@domain.com is local only?
View 11 Replies
View Related
Jun 22, 2011
i m using centos 5.6 x86 give us guideline if possible, we have squid transparent proxy, the ip is set 10.0.1.85, this is as gateway we enter in window client pc to browse. now we want to block some website so we try below two method does not work, can you check if anything wrong in this, we enter this all starting of file squid.conf.
View 3 Replies
View Related
Dec 26, 2010
I have web server apache on linux Centos. I can access it successfully by typing on the address bar http://localhost, 127.0.0.1 or 192.168.0.150 from the local computer server and the site loads normally with graphic. When I access the site from another computer in the same local network, I don't get the correct website. I see the site like html as text not graphic. Please see below text file output from the browser: Also I can only access the site by typing 192.168.0.150 IP address in the address bar. When I type http://localhost or 127.0.0.1, the site does not come up. Do you see what I did wrong? How can I fix this problem.
View 7 Replies
View Related
Nov 20, 2009
I am getting this error whenever I access the page:
Code:
PHP Warning: fgets(): supplied argument is not a valid stream resource
Any idea whats all about?
I explored and found it permission issue.
I want to put a user call paul in apache group.Any idea how can I do that?
View 6 Replies
View Related
Oct 18, 2009
I have been following the steps mentioned at [URL] Now I want to add authentication through .htaccess.
View 1 Replies
View Related
Aug 11, 2011
I am running a syslogd on my ubuntu 10.10 system. I have a apache2 server on the same machine. I have configured my apache2.conf file to send the error logs to the local syslog server.
The config is as under :-
LogLevel notice
ErrorLog syslog:local1
I have also configured the /etc/syslog.conf as under :-
local1.info /var/log/apache2/error_logs
I have created a file in the /var/log/apache2 dir with the ownerships and permissions as under:-
-rwxrwxrwx 1 syslog adm 77 2011-08-11 18:14 /var/log/apache2/error_logs
Next I restarted the sysklogd and apache2 servers with a service command as under:-
sudo service sysklogd restart
sudo service apache2 restart
I thereafter observed the /var/log/apache2/error_logs file and found the entries for apache2 closing down and coming up as under:-
Aug 11 18:14:14 cc apache2[4940]: [notice] caught SIGTERM, shutting down
Aug 11 18:14:19 cc apache2[5282]: [notice] ModSecurity for Apache/2.5.12 [URL] configured.
Aug 11 18:14:19 cc apache2[5282]: [notice] Original server signature: Apache/2.2.16 (Ubuntu) mod_ssl/2.2.16 OpenSSL/0.9.8o
Aug 11 18:14:20 cc apache2[5285]: [notice] Apache/2.2.16 (Ubuntu) mod_ssl/2.2.16 OpenSSL/0.9.8o Microsoft-IIS/5.0 configured -- resuming normal operations
Now the problem is I donot get any other messages thereafter. So it is hardly useful. How can I increase the logged messages from apache. I tried the facility:
local1.*
Then restarted the sysklogd and apache2, but the contents of the /var/log/error_logs file remained similar. Next, I followed the link. I created the perl script for recording access logs of apache2. I then restarted the apache2 and sysklogd. when I opened my website from a browser, the access log did not work. I think I am getting something wrong with the facility value , in apache2.conf it is ErrorLog syslog:local1 ! but the script is suggesting that it should be local2 in the line 4
openlog('apache','cons','pid','local2');
I therefore changed the script to local1 in above line. But still no access log?
View 2 Replies
View Related
Jan 12, 2010
is it possible to limit the size of a specific folder independent of user or group? I want to restrict /var/log to a total size of 1GB. I don't think that the common approach to create a 1GB partition is the right way since it is possible that I want increase or decrease the limit in the near future.
View 3 Replies
View Related
May 19, 2010
I am having trouble accessing social networking sites like orkut due to govt restriction.
View 1 Replies
View Related
Jan 20, 2011
I want to implement squid with quota restriction based on username.
View 4 Replies
View Related
Jul 21, 2009
I was unable to access my dedicated server for few minutes. I have checked the apache error logs and found below notice:
[notice] caught SIGTERM, shutting down
I have tried to search from Google but could not find much information about this error.
View 2 Replies
View Related
Apr 23, 2011
There are some log files that I wish to get some information from (Apache Access Log) but it is huge! All I need as of right now is any information from date and time A to date and time B. What commands can I use to extract this information from the access_log and put it into another file with just that information? I created a file called "access_info" by doing
Code:
touch access_info
but I was not sure where to go from there.
View 13 Replies
View Related
Mar 6, 2011
I currently have an Apache Web Server running on Ubuntu 10.4 and I use a DynDNS service to make them accessible to the outside world via a domain and/or subdomain.
My configs currently look like this:
<VirtualHost *:80>
ServerAdmin <obscured>@<obscured>.com
ServerName <subdomain>.<obscured>.com
ServerAlias <subdomain>
[Code].....
This works fine from access outside of the network and all subdomains resolve to the correct directory.
The problem I am having is with accessing a subdomain over my internal network.
I can access the Web Server using the server's IP address: http://192.168.1.123/ but this always takes me to the same virtual host and I don't know how to distinguish between different virtual hosts (different subdomains).
Ideally I would like to access the same subdomains using http://<subdomain>/ where <subdomain> is the same as the subdomain attached to the external domain name.
View 2 Replies
View Related
Jan 17, 2011
Based on some web reference, apache access log file size increased more than 2Gb. It will effect apache performances. Is this correct?
View 4 Replies
View Related
Jun 30, 2011
I have a requirement related to the apache access log file format: When a user access my local site, http authentication will be displayed:
Code: username: saagar password: 123 I wish to have the LogFormat in the configuration file in such a way that the username and password (saagar/123 in this case) will be logged in the /var/log/apache2/mysite_access_log file. I used the %u parameter as follows: Code: LogFormat "%h %u "%r" %>s %b" common CustomLog /var/log/apache2/mydreamhome_access.log common and it works, similarly I wish the password too to be displayed in the access_log file.
View 10 Replies
View Related
Aug 10, 2010
i want to access to my samba shares index (or contents) trough http. something like this: [URL] i read something about aliases...i wrote this in the httpd.conf:
[Code]...
View 6 Replies
View Related
Jan 20, 2011
I am installing Big Brother on a CentOS 5.2 running the default Apache 2.2.3. When I try to access any web page I get the following error: Forbidden You don't have permission to access /bb/ on this server. Apache/2.2.3 (CentOS) Server at fmsubbnix Port 80 So far I have:
1) Set the Directory options to FollowSymLinks
2) Verified all directory and file permissions are at 755
3) Set permissions temporarily to 777 and received same error so I am assuming the issue is in a config file somewhere
4) in hhtpd.conf verified <Files ~ "^.ht"> is correct
5) verified the "default" directory is correct (/var/www/html)
I have read and tried several ideas in posts listed on the web but to no avail and am at a loss as to what to look for next..
View 3 Replies
View Related
Jun 26, 2009
Im trying to config my intranet to be accessible from inside the network (lan) without need of password and ask for a passwd for those who are viewing from Wan ....
Today my intranet can only be accessed from Lan, external access give me an Unauthorized message, I took look around, try #irc and still can get the appropriated help, I hope that someone here could help me on that...
A piece of my config:
Code:
View 4 Replies
View Related
May 16, 2009
I ma porting an application from SUSE 10 Professional 64-bit to CentOS 5.3 x64 version. We have set the /etc/php.ini as in old server and set the maximum memory limit to 5GB (yes! We have ample of memory) for the process.It was working fine in old server but in new server, the Apache log always showed that it failed to allocate more memory for the application.We noticed that the error coming out while the application uses up to 1GB memory.Just wish to ask if the PHP in CentOS 5.3 has any restriction on memory usage?
View 1 Replies
View Related
May 6, 2010
Is it possible to prevent the panel from expanding to where the -ox buttons appear on a full sized window. I use the panel hide pref with the panel not fully extended to the width of the scree. If the panel gets too big then it drops down each time I click to close the window. I would like to limit the overall length of a panel. Is it possible?
View 3 Replies
View Related
Jul 7, 2011
I just launched an instance on EC2, and everything seems work except the IP restriction by .htaccess. My .htaccess is only:
Order deny,allow
Deny from all
Allow from 88.246.163.6
And it doesn't restrict access.. What am i missing?
View 3 Replies
View Related
May 21, 2010
I am using sendmail. I want to apply sendmail restriction so that nobody cannot send any mail to other domain.my domain name is msp.net
E.g. 1. rahul.com 2.kumar.com
I want to send mails only above two domain only.if any user want to send mail to other domain. It should be not reach. What should I change in sendmail.mc or in my firewall?
View 2 Replies
View Related
Jan 29, 2016
I have a host system which is running Ubuntu and a guest system which is running Debian_squeeze on qemu VM. I need to send created traffic from Ubunto to Apache2 web server which is running on Debian. I made a bridge, and I can access internet from Debian, but this access is limited! I can just open some URLs not all of them! My question is how I can access the webserver from ubuntu?
View 1 Replies
View Related
Mar 6, 2010
I happened to be looking at my Apache-2.2.8 log on an Ubuntu LTS 8.04.4 system, and noticed a few lines like this:
Code:
61.160.212.242 - - [06/Mar/2010:07:04:41 -0800] "GET http://218.30.115.246/ HTTP/1.1" 200 295 "-" "-"
61.160.212.242 - - [06/Mar/2010:07:05:29 -0800] "GET http://218.30.115.246/ HTTP/1.1" 200 295 "-" "-"
xxx.xxx.xxx.xxx - - [06/Mar/2010:07:56:15 -0800] "GET http://218.30.115.246/ HTTP/1.1" 400 290 "-" "-"
(The third line is me telnetting to the server and trying to issue the same request. Note that I got a 400 error response, while the guy coming from 61.160.212.242 got 200s. Also, if you just open the http://218.30.114.246/ URL, you get back "hello" (nothing else, just 5 characters). I'm presently putting together a bootable CD with chkrootkit to run on the machine. (I found a thread that mentioned in passing that this was related to PHP, which I have running on that Apache server, but my Google-fu isn't strong enough to track down the original thread.) (After checking with chkrootkit: nothing unusual found.)
View 10 Replies
View Related
Mar 18, 2010
I have set up a hostname on dyndns.com and configured my router to forward port 8181, but I cannot view it from the internet (FF says "can't establish a connection to the server"). The DNS is ok, is just the apache webserver that doesn't work.
I can acces my webserver from
http://localhost:8181 (loopback)
http://192.168.1.1:8181 (in the LAN)
BUT NOT <hostname>.dyndns.com
Here is my site configuration
[Code]...
So, what's the matter? How can I reach my apache from the internet? Also, I read about routers loopback errors, but this seems not related to it, since I tried to get it through a proxy server, and it failed
View 1 Replies
View Related
Sep 1, 2010
just switched our company from windows server to linux and everything is going good except we have 4 vpn connections though out the country coming to our server. All giving the client machines ip addresses of 192.168.x.x based on where they are located 192.168.1.x for the main location 192.168.2.x for a second location etc, and IIS could see the clients ip instead of the wan ip and was setup to block all ips except 192.168.x.x ip's and this worked great.
So i set up apache the same way, to allow only 192.168 ip's but i guess it doesn't work that way in apache for connections coming though vpn? 2 out of our 4 VPN connections are not static IP's, so the 2 that are I just add that ip to the allow list and that worked.But i don't think we should HAVE to get static ips for the other 2, that's one of the benefits of using VPN, especially if our old windows server didnt need it.Is there any way for apache to see the clients ip address for access or is there something somewhere else that needs changed for this?
View 8 Replies
View Related
Feb 15, 2011
I can access dirac.org from inside my network; I can't access it from outside my home network. Apache is running on a Ubuntu box named "satan": 192.168.0.2 and I'm testing it from a MS Windows machine named "lucifer": 192.168.0.3. My ISP is optimum online, which does not filter port 80.
0. router
The router is a Netgear WNDR3700. All computers on my LAN receive their IP addresses via DHCP, but I've reserved all the IP addresses, so they are essentially static (satan is always 192.168.0.2, lucifer is always 192.168.0.3, etc). The router is set up to pass packets destined for port 80 to satan (192.168.0.2), which is where Apache runs.
1. tcpdump
Using tcpdump when accessing dirac.org from within the LAN (this is what works):
# tcpdump -i eth0 host ool-18bda2d2.dyn.optonline.net and tcp port 80
ool-18bda2d2.dyn.optonline.net.2826 > satan.www: Flags [S], seq 3934453911, win 65535, options [mss 1460,nop,nop,sackOK], length 0
[Code].....
View 2 Replies
View Related
