Ubuntu Servers :: Ton Set "access Control" For Server?
Jan 28, 2010
I have ubuntu based web server running in home which I use for varying purposes. Now I have ran to situation that I would like ton set "access control" for my server so that on main page user can login and then he/she sees that what sites on server he can access.
Basically this would be simple to do with .htaccess protection, but it would be per directory solution and this is not so easy to manage. However what I wish to get done here is that there would be access control check and an login prompt on webserver document root which would require to authenticate if heading to non public section of webserver.
currently I got my server root like this
/var/www (server root, no website and here would come access control point)
/var/www/site1 (primary website on my server to where most of visitors are going to)
/var/www/site2 (secondary site for specific things on my server)
/var/www/directory1/site3 (site which I do wish to have for closed group only)
/var/www/directory2/site4 (my online education and studying portal which I wish to control)
And I would want to allow everyone to access site1 and site2 without any restriction
Now what kind of solution would work here ? I am not sure and I don't have full techical knowledge of making this reality, There probably is multiple ways to do this and one could be .htaccess control, however what I wish to have is an easy to manage system which is also expandable.
View 2 Replies
ADVERTISEMENT
Apr 11, 2010
I've managed to setup Ubuntu Server 9.10, and created folders/files toview/edit/execute with Windows and Mac.
Now here is my dilemma, this is for a home server, and I will have 4 users(1 for myself, one with "admin" rights, my fiance(mac user), media pc, and a "guest" account for the computer or 2 that are out in the public(they don't need access to my taxes ).
I'd like to have it so that on my laptop, I can access the whole server, but some files/folders would even need me to put in a password. I want to do this because my fiance gets delete happy and deletes things, so if she goes on my computer she won't delete important info. I'd like her to have access to music, photos, and videos, as well as her having her own folder that she can treat as her hard drive.
The question is, do I need to setup a domain for this, or can I get away with a workgroup?
View 2 Replies
View Related
Sep 29, 2010
Am using Suse 10.2 for internet and e-mail server. currently all my users have access to the internet if they know how to setup their web browsers. how do i deny some users internet access so that a user can only access his/her e-mail but not internet.
View 1 Replies
View Related
Dec 8, 2010
I'm using squid for proxy server in FC6. I'm also using squidGuard for web-site access restriction. I want to do some exception now for website access. My network ip block is 192.168.7.0/24 and facebook.com is restricted for all with squidGuard, but i want to allow facebook.com only in 192.168.7.51/32.
my squidGuard.conf file looks like below:
View 2 Replies
View Related
Aug 20, 2010
I have configured squid proxy on centos 5.5 and some of my squid.conf file has following lines
Code:
http_access allow ncsa_users office
There are 3 users called "user034, user035 and user050" in the /etc/squid/squid_passwd file need to restricted access to internet except sites www.abc.com form anywhere in the lan. Once they logged in any ip, rule should apply.(that means no ip related acl, only user name related) How can I configure this in squid.
View 3 Replies
View Related
Sep 4, 2010
I run a dedicated specialty Quake 3 Arena Server.It currently runs a stock Debian 5.05. These are the hardware specifications.
256mb SD Ram
10gb Hard Drive
Intel Celeron
I think I should be getting more speed then I am.I would like to install Ubuntu Server.What version is the most stable, and will provide the best speed?I have to download my server files from the internet. Is this possible without the GUI?Is there anyway to control my server remotely, without any impact on performance, VNC is a huge impact.I want to run a mail server as well, is this possible with out a performance hit?
View 9 Replies
View Related
Aug 1, 2010
If this gets moved I apologize for putting it in the wrong place...Purpose of server: RED GREEN ROUTER for SOHO or PARENTAL CONTROL Block known bad URL,IP... ie porn, malware, ads, others Block Good URL,IP if Desired by OWNER Scan mail protocols for viruses out and in if out is found log and mail MASTEROSSIBILTY??? scan all protocols in and out for viruses n block log out block log and mail MASTER a server build log and possibly a step by step assist for new users.Version of ubuntu server 10.04Hardware Gateway Pentium 4 2 network cardsUse of server RED GREEN ROUTER FIREWALL that blocks site list from shalla and my own list. general use would be for SOHO or Parental controlpick language...pick it again???...country...no...country for kb...kb layout...eth0(as RED)me it...timezone...HDD choice(i used guided-use entire disk)...user...proxy if needed(not for RED GREEN ROUTER!!!)...updates(i picked auto)...LAMP,openssh, mail server ...sqlpassword...grub...done
then
login as user/pass created in install
run following
[code]...
View 9 Replies
View Related
May 10, 2010
i found this video, and i really want to do the same. *newbie needs to learn [URL]...my question is, what need to be installed and how?
is there any specific configuration to make it works?
and will it work if i want to connect from Ubuntu to Fedora ?
View 1 Replies
View Related
Feb 14, 2011
i have a xeon machine with ubuntu os machine specification is 3gb RAM 3 scsi hard drives each 73gb it have two ethernet cards one ethernet card is connected with adsl modem and the second is connected with LAN. now what is mikrotik doing for me is control access to bind mac adress with ip adress and control the band width for induvisual conection.
View 2 Replies
View Related
Jul 15, 2010
When you access mysql within the same Apache server (same ip address) via php, do you need to GRANT user ip in order to login to mysql?
Where are the log files for php, mysql etc?
View 4 Replies
View Related
Jul 24, 2011
I'm new to Linux and have taken over at a company where the linux admin walked out. he has several older linux based servers running version 8.1 i tried running the command sudo apt-get install swat xinetd to setup swat but i get an error that it can't find the package. in addition, this directory xinetd is no where to be found under the etc directory. i've verified that samba is in fact installed on these servers but for some reason the xinetd and inetd directories are not on these servers.
Could it be possible that this older version of linux does not support Swat? i'm considering upgrading very soon to the latest but my main problem right now is i need to copy all web server html files that he had on the web Server i know there are different ways to copy files from linux systems but need the best way to copy all the files so none of the website links get broke off this linux server over to my windows server.
Since i don't have access to anything of the directories nor files on the web server, what is the best way to copy these files and folders off this server?
View 7 Replies
View Related
Apr 28, 2010
Ubuntu lts server distro using on remote machine. i have remote site where internet access given via squid proxy. so when we enter in browser it start working internet fine. but on command line(bash shell prompt terminal) like wget,ping,nslookup,traceroute etc these commands does not work.
View 3 Replies
View Related
Jun 2, 2010
i have setup Open VPN on Ubuntu 9.04, generated the key and have it running successfully on the server end. I download the open vpn client for windows, copied over the key ca and cert file and connected to the erver. All went well and the open vpn gui said its connected to the server (green comp icon in taskbar) and it said in a ballon it assigned me an ip of 10.8.0.6 it all looks good... BUT i have no vpn access... The virtual adapted in windows is not able to pull an actual IP/gateway and such...
[Code]...
View 7 Replies
View Related
Feb 24, 2011
I have a few issues after setting up Openvpn. At work i just setup a new Ubuntu Server 10.4. The server itself is working Great. I ended up getting Openvpn installed and working to a point. I have searched online and done as much reading as i could find but i keep running into the problem of not understanding. So here is the problem.
The server is set on a static IP address. At first i tried to have the config file listen on a virtual ip address i setup up in /etc/network/interface but that ended up not working so i set it to its specific ip address. I kept running into the error about script security while trying to start Openvpn. I tried to add into the config file "script-security 2" that way the up.sh and down.sh scripts were allowed to be run. That didn't help and then i kept trying to run Openvpn manually running the command
Quote:
And i kept getting a message
Quote:
So what i did was just comment out the "up" and "down" scripts in the config file. This allowed me to actually get Openvpn started on the server. So once this was done i connected form a client machine and was given an ip address like i should. The only issue is that i was not able to actually comunicate with the server. I have a samba share on there to allow me to copy files back and forth but an not able to actually communicate with the server at all. I should note that this is a web server that i can view from the outside. (actually get to the webpage) but i tried to access the website and share via the Openvpn gateway. I also tried to access the website portion using the hostname with no luck.
By the way, prior to putting the server on its separate network i was able to access the webpage and the samba share using both the ip address and the hostname.
View 1 Replies
View Related
Jun 15, 2011
I'm using vsftpd to setup an ftp server, but whenever i attempt to connect, it asks me for a user name ( which i enter and it accepts) but it then asks for a password, which i am clueless as to what it is. I'm certain that i havent specified a password in any config file. Is there a default password i should know about?
View 1 Replies
View Related
Apr 12, 2010
I'm thinking about some ways to limit access to my web-server. It runs Nginx and php in FCGI. The server contains a large amount of information. The data is freely available and no authentication is required but other companies might like to mirror it and use on their own servers.
The requests could be limited on different levels: IP, TCP, HTTP (by nginx) or by the php application. I found some solutions (like Nginx's limit_req_zone directive), but they do not solve the second part of the problem: there's no way to define a whitelist of clients who are allowed to use the data.
I thought about an intellectual firewall that would limit the requests on IP basis, but I'm yet to find such device. Another way was to hack some scripts that would parse the log file every minute and modify the iptables to ban suspicious IPs. It would take days and I doubt this system will survive, say, 1000 requests per second.
Perhaps, some HTTP proxy, like Squid, could do this?
View 2 Replies
View Related
May 17, 2010
I have no idea what is going on here and this is the second time it has done this but. I just installed Lucid Lynx Desktop Edition for my Server. I have installed apache php5 mysql binarys. I have 3 ips on the machine 10.0.1.30, 10.0.1.37, 10.0.1.38. .30 is the main ip 10/100 the rest are 10,100,1000 ports. I can only access Apache 2.2 over .37 or .38 but not .30
I have not used Ubuntu alot but I am starting to and this really pisses me off since all my computer have aliases to the machine through .30
View 5 Replies
View Related
Oct 21, 2010
I need to run a GUI on my server (To be able to run an Code::Blocks or Lazarus) and then access the server GUI via a terminal window on Windoze XP. I have SSH running on the server and PuTTY on windoze, which is fine for a shell but I need the GUI.So... which is the best GUI for the server and which terminal software on XP?
View 9 Replies
View Related
Mar 14, 2010
I just finished setting up my small server, however I realized that no one can connect to it from the outside. The reason being is that my router is assigning internal ip's and dyndns is linked to that. I need port 80 for the Apache server, but if I have the router forward that port to my particular ip, won't it screw with everyone else's internet too?
View 5 Replies
View Related
Apr 20, 2010
I'm not sure is this is possible or not, but what I would like to do is take my public address mydomain.com and configure a virtual host something.mydomain.com only instead of having the content on the same server I would like it to point to the IP of my virtual machine that is in my private network and display that page publicly. Does anyone know if this is possible, or how to do it? I have done this with port forwards, but would like them both to be on the same port.
View 3 Replies
View Related
May 31, 2010
Im having trouble setting my SAMBA server correctly. I have two Win machines, one with WIN7 and one with XP. I have one Ubuntu machine and Ubuntu Server 10.04. My problem is that I can only acess files from the Win 7 Machine. When I try to map out the shared dirs on my serverI get asked for user and password, when I enter my creditensials it dosent help.. What to do? I used the sample smb.conf file and open for no restrictions..
[Code]....
View 9 Replies
View Related
Dec 3, 2009
I have samba server(Fedora 11) here,but when I want to access to it from WindowXP ,the first time you need to tap in user name and password.But the next time ,you automatically log in Samba server with the user name as the first time you used. But I have not clicked the "Remeber me " option when I logged in.I want to switch user when I want to log in samba,does anybody know what is wrong ?
View 4 Replies
View Related
Nov 28, 2010
How do I set up a server to where it does not give a password prompt to access a shared folder?
View 1 Replies
View Related
May 27, 2009
We have a sipmle office network set up that we also use use to connect to the internet, however of late the number of users has increased thus slowing internet access. Bandwidth upgrade is not an option thus i have to do bandwidth shaping on our linux router. The question is how do set the squid configs to allow certain IP's range a certain percentage bandwidtheg 60% and furthe divide the rest. Alternatively how can allow certain IPs to have higher bandwidth access.
View 1 Replies
View Related
Jul 22, 2010
I am getting the following error after booting my Ubuntu machine. Worked fine recently and after I upgraded some stuff when I rebooted the machine I got a green screen then hit an arrow key and got the following error message:Gave up waiting for root device. Common problems:
- Boot args (cat /proc/cmdline)
- Check rootdelay= (did the system wait long enough?)
- Check root= (did the system wait for the right device?)
[code]....
View 1 Replies
View Related
Mar 26, 2010
I set up a servber on my local machine, & also PHp - Both working fine.I'm trying to load up MYSQL i have installed it, & *can* start/stop the server. however if I do anything else with it, I get this error :-
Quote:
root@gordon-desktop:~# sudo mysqladmin -u root -h localhost password MYPASSWORD
mysqladmin: connect to server at 'localhost' failed
error: 'Access denied for user 'root'@'localhost' (using password: NO)'
Query :-
1) How do I know MYSQL is actually active ? (apart from the message it says that its statrted (or stopped).
2) Is there a way to
a) Find out the usernames that are recorded on the MYSQL server ?
b) set / RESET the 'root' username (I know MYSQL root user is different to PC root user)
c) anything else I can do on the PHP / website code to see if MYSQL is working
(as yet, no tables / databases etc have been set up - as I can't get past this error message - I get the same error when setting up a database.)
Ps I did allow my usermname (when logged in to ubuntu) to edit / create files in the /usr/www/ directory (but it is still OWNED by 'root' - that directory)
View 4 Replies
View Related
Apr 19, 2011
I've spent days trying to setup access properly from a public address to a monitoring server that works fine locally. Everything works from public access until I try to link to a CVS repository. The rancid CVS repository is set up as a separate server (virtualhost). It appears the referring link causes a DNS error (105: Server Not Found) when the CVS repository server is accessed from the public address. Things work fine when accessing via localhost.
Localhost link:
[URL]
Public link: (this results in 105 error caused by redirection (bold portion of link))
[URL]
Code:
Virtualhost config:
LoadModule jk_module /usr/lib/apache2/modules/mod_jk.so
JkWorkersFile /etc/apache2/workers.properties
JkLogFile /var/log/apache2/mod_jk.log
[code]....
View 2 Replies
View Related
Aug 14, 2010
i have been using windows xp and ubuntu simultaneously for more than one year and everything was working fine.Recently, i have just installed windows 7 and this has wipe out the ubuntu os selection screen (GRUB) and windows 7 boots in automatically.Moreover, while trying to install ubuntu again, i get the following error while booting the ubuntu cd:/bin/sh: can't access tty: job control turned off
View 1 Replies
View Related
Aug 16, 2010
I recently bought the book Hacking: The Art of Exploitation, and it came with a live cd of Ubuntu. I run it on my Mac, but I get this in the console screen whenever I try to load it:
Code:
Loading, please wait�
[2.424000] usb 1-1: can't set config #1, error -71
[4.644000] ieee1394: Error parsing configrom for node 0-00:1023
[6.236000] drivers/usb/input/hid-core.c: couldn't find an input interrupt endpoint
[10.768000] sdb: assuming drive cache: write through
[10.768000] sdb: assuming drive cache: write through
BusyBox v1.1.3 (Debian 1:1.1.1-3ubuntu3) Built-in shell (ash) Enter 'help' for a list of built-in commands /bin/sh: can't access tty; job control turned off I'm not sure what this means. I'm completely new to Linux, so I don't know whether the CD is corrupted, or I don't have some sort of BIOS or something.
View 3 Replies
View Related
Nov 12, 2010
I have a personal laptop and a work laptop. personal is running ubuntu 10.4(which im planning upgrade to 10.10 soon) and Win-Xp on work laptop. I would like to run ubuntu on work machine, but i need to use vmware vsphere client regularly as half my work is related to it.
Is there an alternative available for vmware vsphere client? How can i have ubuntu on work laptop and have access to VMs via the control center? Is running Windows-XP on ubuntu via vitual box a resolution? If yes, I have 3GB of RAM on my work laptop, is that enough?
View 2 Replies
View Related
