I'm not a programmer but mess about to get things done. I was trying to set up a low usage php page to show some owfs data and was trying to suss out the OWNet php stuff. I believe I've come to realize that the Arch Linux ARM (ALARM) owfs package does not include OWNet php support, and I likely would need help to figure it out if it did. So I tried to simply display some file content from the owfs directory and ran into PHP not being able to read the files (presumably because they were outside the web root). I had a brainstorm as a result: instead of using /tmp/1wire as the owfs directory, why not create a directory within the web root, e.g.: /srv/http/1wire?
So now I use an owfs invocation of:
owfs -F -s 4304 --allow_other --readonly /srv/http/1wire
And I have a php page which uses lines like:
$hum = file_get_contents('./1wire/26.0CB401000000/humidity');
echo "<p>Humidity: ", $hum, "%</p>";
This is all being done on a dedicated ARM machine (Seagate DockStar) with no other critical or sensitive data on it. My router is set to port forward to this machine from obscure ports for ssh/22 (using key auth.), web server/80, and owhttp/3001 (--readonly).
Am I opening myself for disaster having this owfs mount directory in the web root or should this be secure? I'd hate to be opening up my network to hacking.
Maybe you are prone to some DOS attack if the 1wire directory structure is available through web server(since it's in htttp root)? However it's unlikely that anyone would do that.
You could disable access to the directory ./1wire in your web server.
--
patryk
------------------------------------------------------------------------------ Minimize network downtime and maximize team effectiveness. Reduce network management and security costs.Learn how to hire the most talented Cisco Certified professionals. Visit the Employer Resources Portal http://www.cisco.com/web/learning/employer_resources/index.html
_______________________________________________ Owfs-developers mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/owfs-developers
