View previous topic :: View next topic |
Author |
Message |
stingray72 n00b
Joined: 08 May 2002 Posts: 40 Location: Atlanta, GA
|
Posted: Wed Oct 23, 2002 6:50 pm Post subject: IRC over Web Server (security) |
|
|
Hey guys, I found a program on sourceforge (CGI:IRC) and am thinking about using it so i can access IRC from work (we're slow right now ). My concern is the fact that anyone who could point there browser to the .cgi file could surf IRC through my web server (not that that's a huge deal). Is there anyway that I could password protect that one script? Has anyone used it and can reassure me that's it's not too dangerous
Thanks
~stingray72 |
|
Back to top |
|
|
klieber Bodhisattva
Joined: 17 Apr 2002 Posts: 3657 Location: San Francisco, CA
|
Posted: Wed Oct 23, 2002 7:44 pm Post subject: |
|
|
Just slap an .htaccess file in the directory and be done with it. There's about a billion tutorials on creating .htaccess files, so give google a try and you should be good to go.
--kurt _________________ The problem with political jokes is that they get elected |
|
Back to top |
|
|
scheuri n00b
Joined: 21 Aug 2002 Posts: 22 Location: region basel, switzerland
|
Posted: Thu Oct 24, 2002 6:58 am Post subject: |
|
|
aye....htaccess and you will be fine...you can even make the whole thing more interesting/complicated by adding a database instead of a plaintext-file (htpasswd)....makes it maybe easier to administrate.
and you may even make the connection to your server over SSL......
oh my...there is a lot you can do to increase security...
my 2 rappen
scheuri |
|
Back to top |
|
|
stingray72 n00b
Joined: 08 May 2002 Posts: 40 Location: Atlanta, GA
|
Posted: Thu Oct 24, 2002 12:38 pm Post subject: |
|
|
I've used htaccess before but I thought it protected a directory?? Am I wrong? This is just one file in the cgi-bin that I want to limit access too
I'll be reading more docs on .htaccess in the mean while
Thanks guys |
|
Back to top |
|
|
klieber Bodhisattva
Joined: 17 Apr 2002 Posts: 3657 Location: San Francisco, CA
|
Posted: Thu Oct 24, 2002 12:49 pm Post subject: |
|
|
stingray72 wrote: | I've used htaccess before but I thought it protected a directory?? Am I wrong? This is just one file in the cgi-bin that I want to limit access too |
Then set up a separate cgi-bin directory for that specific script and place an .htaccess file in that dir. (Or look at AddHandler, which will let you define how .cgi files should be executed outside of the cgi-bin directory)
--kurt _________________ The problem with political jokes is that they get elected |
|
Back to top |
|
|
Messiah Tux's lil' helper
Joined: 30 Apr 2002 Posts: 139
|
Posted: Thu Oct 24, 2002 7:01 pm Post subject: |
|
|
You are wrong. You can say in your .htaccess:
Code: |
<Files your.cgi>
AuthUserFile /your/.htaccess/file
AuthName Protected
AuthType Basic
require valid-user
</Files>
|
And you will be fine.
Or:
Code: |
<Files your.cgi>
order deny,allow
deny from all
allow 127.0.0.1
</Files>
|
|
|
Back to top |
|
|
|