Tomasz Chmielewski schrieb: > Paul Weaver schrieb: > >>> 2. All nagios users can see the whole network structure for all hosts. >>> >>> Even if a given web user is not authorised to view certain >>> hosts, he/she will see them anyway on the status map (without >>> icons/descriptions). >>> It can be even viewed as a security flaw. >> Personally I'm not a fan of maps, very few cases I think they're useful,
(...) > So, maybe the simplest solution would be to entirely disable status map > for these users? > > Any obvious way to do it (other then removing statusmap.cgi file?) I made it unavalable for remote users with the following redirect placed in nagios' cgi-dir directory (.htaccess file): RewriteEngine On RewriteCond %{REMOTE_ADDR} !^10\.1\.2\. RewriteRule ^statusmap.cgi$ /cgi-bin/nagios3/tac.cgi [R=permanent,L] -- Tomasz Chmielewski http://wpkg.org ------------------------------------------------------------------------------ Apps built with the Adobe(R) Flex(R) framework and Flex Builder(TM) are powering Web 2.0 with engaging, cross-platform capabilities. Quickly and easily build your RIAs with Flex Builder, the Eclipse(TM)based development software that enables intelligent coding and step-through debugging. Download the free 60 day trial. http://p.sf.net/sfu/www-adobe-com _______________________________________________ Nagios-users mailing list Nagios-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nagios-users ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. ::: Messages without supporting info will risk being sent to /dev/null