On Sat, Dec 07, 2002 at 10:23:40AM +0530, S Mohan wrote: > I've been using weblet now for a week on Bering v1.0 stable. I've enabled it > only for internal LAN access. I want to be able to access weblet from the > Internet. However, to do this, I want to implement Username/PWD > authentication thro' the SSL. > > How do I do this with weblet? Can I execute my own scripts thro' weblet to > configure the system? I plan to use it for Bandwidth Management and want to > use a web page to configure qdiscs, classes and filters - maybe edit the > htb.init pages using a web page and then restart htb.init service. Any > pointers please.
There's been some talk about using the weblet 'actively' in this fashion, some time ago. On this list, as well as on leaf-devel. There should besome food for thought in the archives. A couple of things to consider; Yes you can have weblet execute scripts. But for what you want, you are going to run into (at least) one fundamental 'problem'; When sh-httpd runs a script, that script will run with sh-httpd's privs, and so it will likely not have permissions to change the things you want it to. And since scripts can not be made to run suid root, you basically have three options: Run sh-httpd as root. This is a *very* bad idea. Write a "wrapper" in C, which calls your script, and which can be set to run with the privs you need. This is *not* recommended, and actually a bad idea, because scripts are too easy to manipulate. Instead, do the functions you need entirely in C, and give the binary enough privs that it will do what you want... I'm sorry I can't help with the SSL bit, but there's a piece on outside access to the weblet at: http://sourceforge.net/docman/display_doc.php?docid=9160&group_id=13751 it's based on Dachstein, so the part on opening ports differs from Bering/Shorewall, but it should be a place to begin. HTH Jon Clausen ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
