Hi David,
many thanks for your work. I believe that what you have done is fine as
it restores the initial behaviour that for some reasons went lost.
I've integrated your patch in the ntop source tree. For future patches
please feel free to send them either directly to me or to the mailing
list.
Thanks again.
Cheers, Luca
David Brown wrote:
>
> The access control that ntop currently has looks good. I can specify a
> wildcarded piece of an URL that ntop automatically tacks the
> "http://hostname:port/" to the beginning and the "*" to the end.
>
> However, what if I want to restrict access to anything within ntop? It
> seems to me that it may be a bit of a security risk letting anyone and
> everyone access my ntop data. It won't let me leave the URL empty...
>
> Is there anyway that the URL checking can be moved to start with the
> trailing '/' in "http://hostname:port/"? For instance, instead of checking
> for "showU*" it checks for "/showU*" and I have to type in the leading "/"
> when I enter a new URL. This way I can specify a URL of just "/".
>
> I took a quick look at the code for this, but at first glance I didn't see
> a quick fix. So I thought I'd ask on the list before I decide to really
> look into it.
>
> Thanks,
> David
> --
> David M. Brown = = = = = = =
> Caldera Systems, Inc. = = = =
> http://www.calderasystems.com
--
Luca Deri Telecom Italia IT
Via Matteucci 34/B 56124 Pisa, Italy.
Ph. +39/050/968.639 Fax. +39/050/968.626
Email: [EMAIL PROTECTED] WWW: http://luca.ntop.org/
ICQ: 68183632
Software is about stuff, about getting hands dirty - Jim Coplien
