Server :: Authenticate Users To Apache By Host/ISP And Password?
Aug 13, 2010
I am wondering how websites like banks are able to determine if you have previously used a certain computer to access the website, even if your router's IP address may have changed and your system's cookies have been cleared. I have users that need to access our HTTP intranet from outside locations. Those locations will have dynamic IP addresses most of the time, so I can't just "allow from [ip]" in my Apache proxy configuration. Originally we considered a VPN, but determined that a VPN will be overkill to access just an internal website, since we do not want external users to have permission to the rest of the network, only the website.I currently have it working over HTTPS with basic authentication against an internal LDAP server, but I want a little more security for such an important website.
crappy diagram:
[user]-->(internet via https)-->[apache gateway]-->(intranet)-->[http server]
View 3 Replies
ADVERTISEMENT
Jun 26, 2009
Im trying to config my intranet to be accessible from inside the network (lan) without need of password and ask for a passwd for those who are viewing from Wan ....
Today my intranet can only be accessed from Lan, external access give me an Unauthorized message, I took look around, try #irc and still can get the appropriated help, I hope that someone here could help me on that...
A piece of my config:
Code:
View 4 Replies
View Related
Mar 16, 2010
Im using linux (Suse 11.1) on my laptop in my new job, however I need to set up my accounts and any account to authenticate using the existing windows ADC server.
What do i need to do precisely. I have kerberos & Samba installed. Do i need both of them or can I just go ahead and set up one.
View 1 Replies
View Related
Jul 7, 2010
I don't know what happened but sendmail suddenly stopped authenticate my users who tries to send mail.
I use slackware 13.0 and sendmail for SMTP with ssl and plain authentication. Imapd works fine.
There is nothing in logs just that the client did not issue MAIL/EXPN/VRFY/ETRN during connection.
View 9 Replies
View Related
Apr 30, 2011
Friends is there some way to authenticate Microsoft windows users from openldap running on CentOS. I will be very thankful if you provide me step by step procedure.
View 1 Replies
View Related
Jan 24, 2010
I am upgrading my server and I have a lot of sites. Since I cannot take my server down for a few days, maybe a week until I manage to migrate all the sites to the new machine, I figured I could migrate them one by one. After migrating one, I would somehow tunnel the requests of that name virtual host to my internal machine. When everything is migrated, I would then switch the machines, update ip's and stuff and everything will work just fine.
However I cannot seem to find a way to do this tunneling. is this at all possible? If not, what alternatives do I have?
View 5 Replies
View Related
May 13, 2010
The company I work for, as usual, is Microsoft-centric. I'm attempting to integrate my Ubuntu server into the domain to allow domain users to authenticate to the server and access file shares using Samba. Here's my current configuration:
[Code].....
View 9 Replies
View Related
Apr 17, 2010
I installed apache server on my Fedora 12. Its showing the test page 127.0.0.1, but when I give the address 97.168.234.76 (0r www.chaalu-kam.com), it tells that the requested url could not be retrieved.
I have made the following additions to the /etc/httpd/conf/httpd.conf file
Code:
In addition to this, I have added this to my /etc/hosts file
Code:
I wanted to test the Apache server on my laptop only by putting an html file in /var/www/html and naming it as index.html. I want this index.html page to be displayed when I put www.chaalu-kam.com in my browser. What should I do? My firewall is off too
View 10 Replies
View Related
Oct 5, 2009
On my server I have connected domain: www.my-first-domain.com which is installed in /var/www/first
For that domain I have installed virtual host.
Quote:
I dont know why, when I will put address my-first-domain.com instead of www.my-first-domain.com server redirect that domain to folder /var/www/.
View 8 Replies
View Related
Jan 22, 2010
I'm running Apache with mod ssl, with a php app using ssl. https://www.example1.com
I've made a virtual host to host a simple static site which I dont want SSL for.
When I try and get to the site it redirects me to [url] which gives a certifcate error and shows the site from example 1.
Config below:
View 2 Replies
View Related
Oct 29, 2009
I have 4 domains registered through godaddy. I have a dell poweredge box with one static IP hosted somewhere. I want the 4 domain to resolve to four different sites. I have already created 4 different sites in apache with four different aliases and has enabled it.
eg
alias /a /var/www/a
alias /b /var/www/b
alias /c /var/www/c
I want to acomplish.
www.a.com ==> xx.xx.xx.xx/a
www.b.com ==> xx.xx.xx.xx/b
www.c.com ==> xx.xx.xx.xx/c
I tried with godaddys forward with masking option. It works but I can't hide xx.xx.xx.xx/a in the links. Whats the best approach? One limitation is I cannot use the webhosts name servers. How do I set this up with name based virtual hosting? Do I setup a DNS server in the box?
I do have a dns host name for my box which is publicy accessible. Some my.ca.examplehost.net
View 3 Replies
View Related
Apr 28, 2009
I'm using Apache 2.2 to host multiple subdomains using a single SSL certificate (a wildcard certificate e.g. *.mydomain.com) and, yes, it works! Everything seems to be served correctly and the browsers are pretty happy.
And you can also have the non-SSL sites (virtual hosts on port 80) on the same IP. (That's covered elsewhere)
For those that want similar functionality here's my discovery...
My configuration is like this:
ssl.conf:
Code:
I would have to say that I don't believe that this will work if you are not using a wildcard SSL certificate and having anything other than subdomains under that wildcard.
It is somewhat limited in scenario where this is useful, but for a set of company websites that should be under SSL, this can be tremedously useful when you have a single IP.
View 2 Replies
View Related
Sep 10, 2009
I'm running XAMPP 1.7.2 on Ubuntu 8.10 (Linux dt19.im.local 2.6.27-14-generic #1 SMP Tue Aug 18 16:25:45 UTC 2009 i686 GNU/Linux) and am using the PHP 5.3.0 Apache module as standard. For one virtual host I'd like to use PHP 5.2.X as it is part of a project which has a lot of legacy code which is not compatible with PHP 5.3.0. The virtual host configuration block and the applicable directory directive are as follows -
Code:
Checking phpinfo() output on the above virtual host (or using the default virtual host directive and accessing it via http://localhost/[SNIP]/[SNIP]/phpinfo.php rather than [url] shows PHP 5.3.0 is running. After applying minor tweaks such as adding ScriptAlias or SetEnv options the problem persists. I've Googled for a good while and have checked the permissions and the like and tried the advice of other users (XAMPP or otherwise) either resulting in PHP 5.3.0 being used or a HTTP 400 bad request/invalid URI error. I've stuck with the configuration above as this is correct according to the PHP manual.
FYI cgi-bin/php-5.2.6 is a soft symbolic link to /opt/lampp/bin/php-5.2.6 (I've added the FollowSymLinks option to the cgi-bin directory directive in httpd.conf). I've tried installing php5-cgi from the Ubuntu repos and setting it up in a similar way, to no avail. I've also tried copying the executables into the cgi-bin directory, pointing the Action line directly to bin/php-5.2.6 and dropping the -c /opt/lampp/etc/php.ini-pre1.7.2 option in the Action line. I've even tried commenting out the LoadModule lines for PHP which results in a HTTP 400 bad request/invalid URI error. This demonstrates the fact that the PHP CGI use is being ignored.
I've checked httpd.conf and the extra/httpd-*.conf files and ensured all required includes are being loaded. I know that it's probably something stupid on my part which is causing this! Given that I've tried PHP CGI builds in the Ubuntu repos I don't think this is an XAMPP-specific issue.
View 1 Replies
View Related
Jan 19, 2010
One of our Apache servers, version 2.2.3, is running three virtual hosts on it. However, while two are accessible, gray.mgh.harvard.edu, www.plastimatch.org, the third, cmrol.mgh.harvard.edu cannot be reached by any remote host.
I am at a loss as to why this is occurring. To that end, I am including the httpd.conf file as an attachment in the hopes someone can see what I missed, and help correct this issue.
View 4 Replies
View Related
Feb 23, 2010
I'm trying to figure out why Apache is ignoring SSL Cipher statements when placed inside a Virtual Host. Specifically I'm trying to disable SSLv2 and only allow SSLv3 or TLSv1
In httpd-ssl.conf I have the following
Code:
And when I try and connect, I get the expected results.
Quote:
In my virtual host statement I have
Code:
The only difference between the two is the httpd-ssl.conf has -ALL in the CIPHER, and the virtual host entry has ALL. However if I try and change the ALL statement in the virtual host entry to -ALL I get the following error in my logs & get no content.
Quote:
Why it's not working in the virtual host statement? Unfortunately as many of you are probably aware it's impossible to gain PCI certification with SSLv2 enabled.
View 5 Replies
View Related
Jul 22, 2010
I am having two domains. for ex: www.example1.com and www.example2.com. These two domains need to be hosted under one ip. Yes by configuring name based virtual host we can do that. But, my question is my first domain(www.example1.com) need to be hosted by Apache web server, and my second domain(www.example2.com) need to be hosted by Tomact. Is it possible to configure name based virtual host for a scenario like this.
View 6 Replies
View Related
Sep 3, 2010
i am using apache 2.2.16 version.. i want to improve my concurrent users..
View 5 Replies
View Related
Jan 11, 2011
I am trying to host a local website(an wiki application) within a network. Is it necessary that all the files I need to upload should be in the var/www?
View 8 Replies
View Related
Aug 18, 2010
I was trying to setup SSL Client authentication on only one virtual host. Here is a brief excerpt sample of my conf file for the virtual host:
<VirtualHost xx.xx.xx.xx:443>
SSLRequire %{SSL_CLIENT_S_DN_O} eq "something"
SSLVerifyClient require
SSLVerifyDepth 2
</VirtualHost>
But when I try to check for syntax errors tells me SSLRequire not allowed here I do not want to add SSLRequire on the main httpd.conf because I only want it for one virtual host. The rest of the virtual hosts do not need it.
View 2 Replies
View Related
Nov 12, 2009
I'm trying to install two instances of OCS Inventory on the same machine using virtual hosts in apache. The apache configuration for it is in it's own file and it works fine without any virtual host. If I add it apache refuses to start without giving any error message. I narrowed it down to some lines loading perl modules, and if I comment them away apache will start again. Some of the modules work, but some of the ones specific to OCS Inventory will not work. I can't understand what the difference is between loading it in a virtual host or not, it doesn't make any sense to me!
View 2 Replies
View Related
Jun 2, 2011
I've been for a while trying to configure my apache to host 5 domains as virtualhosts in the same IP address, but seems that neither one makes it through... it always takes first one, because it is the default:
NameVirtualHost *:80
<VirtualHost *:80>
ServerAdmin xxxxxxx@xxxx.net
[code]....
As you can see I tried the ServerName with the http://, in quotes, without it...
View 11 Replies
View Related
Apr 20, 2010
I'm not sure is this is possible or not, but what I would like to do is take my public address mydomain.com and configure a virtual host something.mydomain.com only instead of having the content on the same server I would like it to point to the IP of my virtual machine that is in my private network and display that page publicly. Does anyone know if this is possible, or how to do it? I have done this with port forwards, but would like them both to be on the same port.
View 3 Replies
View Related
Apr 6, 2010
I installed a few media servers to stream something to my PS3 over the weekend, but now when trying to shutdown the computer, I'm asked to authenticate with a password since other users are still logged in. I installed quite a few programs over the weekend trying to get it to work, so I can't remove a specific one. Is there a way to see which daemons are logged in under a different session? Found it. It turned out to be mythtv.
View 3 Replies
View Related
Oct 26, 2010
I use Ubuntu in my office NIS environment and I can't upgrade the whole network to LDAP right. I upgraded to 10.04 recently and reinstalled the NIS client and associated packages, among other things.
I have set up my /etc/nsswitch.conf file so that passwd, group and shadow all have "files nis", I'm bound to the correct NIS domain and I can do "ypcat -k passwd" or "ypcat -k hosts" just fine.
Problem is that I can't log on or su to any NIS user, I just get "authentication failure". I've tried the same usernames and passwords on Red Hat NIS clients on the same domain and they work fine.
View 2 Replies
View Related
Apr 8, 2010
is it possible to authenticate users logins by a database (postgres, mysql)?for instance: -user types username, pasword, at login screen -OS then connects to server with database and checks if the user is valid. if so, is it feasible to add a time lock function for each user? in the sql, postgres table ? for instance user sandra can only log onto the computer for 1hr at 5pm
View 7 Replies
View Related
Nov 22, 2010
is there any solution for authentication of ethernet users.something similar to daloradius for wifi.I dont want to use pppoe. is there any way to connect daloradius with dhcp server, so when certain mac address asks for IP first daloradius will look if it is allowed.
View 11 Replies
View Related
Aug 9, 2010
We are testing the possibility to migrate from winXP to SLED 11 SP1. We have solved integration login and single sign on. But now we have the problem that we are not able to authenticate users against eDirectory. The test enviroment is SLED 11 SP1 workstation with authentication method eDirectory LDAP, default software + Novell client from installation disk + yast2-lum + yast2-linux-user-management
[Code]...
View 4 Replies
View Related
Oct 23, 2010
When trying to connect to another Ubuntu machine running remote desktop using vinagre, I get a black screen on the client machine. Annoyed, I went upstairs to check the host machine, and it is waiting for me to authenticate my keyring. Why would the host need to authenticate for me to access it remotely?
View 1 Replies
View Related
Sep 22, 2010
I've got a Samba server (CentOS)(I swear all my non-work boxes are Ubuntu) that has been working fine in our Active Directory environment for a long time, now that Windows 7 has been forced upon us, we've noticed that Win 7 users aren't able to authenticate to this server unless they access it using the IP address, e.g. \192.168.1.22. We've tried the different Windows 7 registry hacks and nothing makes a difference. We were advised to update Samba and we did to 3.3.8. However, this being a virtual machine, upgrading a clone of this machine did work, the configuration was identical, except the hostname
View 9 Replies
View Related
Feb 20, 2010
Is it possible to configure Apache with password security (AuthConfig), yet allow certain IP addresses access without being prompted for a password?
View 3 Replies
View Related
