A little off topic, but not too bad. If people are looking for a file sharing utility you might want to have look at SDMS (Simple Document Management System) http://sdms.cafuego.net/ It isn't really a "file sharing" utility, but it can be used that way. It's lean and works really well on a mitel/e-smith box (php and mysql). I won't vouch for its security, but it is a handy little utility and I've used it quite a bit myself.
Happy to provide any other info. Noah Genner 2by2 Consulting [EMAIL PROTECTED] -----Original Message----- From: Darrell May [mailto:[EMAIL PROTECTED]] Sent: April Monday, 2002 12:59 PM To: e-smith-devinfo Subject: [e-smith-devinfo] Groupware and file sharing security I wonder if everyone is aware of the security risk inherent in any groupware app that shares files. I have not found any app that does this in a secure fashion becuase they do not and can not implement Apache security via the SME templates. And I do not mean the security that every app attempts to implement. I mean _true_ security. What I do myself to share files is very simple. It may meet your needs (or not). I've put up a demo site here: https://myezserver.com/FileShare1 login = [EMAIL PROTECTED] password = 12345 This use SSL, httpd.conf aliases and htpasswd files to restrict access. The script I use could be refined to include date/time stamp and 'hide' index.php. You could change it to permit upload/download only etcetera. There are lot's of different scripts out there. If you have one you like, please share. This is simply to give you an idea of what is possible. Take a look and respect this is for everyone to see so don't delete index.php or upload maxive files. If this site is abused I'll simply remove it immediately. Thanks, -- Darrell May DMC Netsourced.com http://netsourced.com http://myEZserver.com -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
