On May 13, 2009, at 4:40 PM, Andre LaBranche wrote:
Hello list,
I'm trying to implement a simple solution for blocking hosts by IP
address or range.
I have the following configuration:
In /etc/apache2/sites/blocking.conf
<Directory "/Library/WebServer">
AllowOverride Limit
</Directory>
/Library/WebServer/.htaccess contains:
Order Allow,Deny
Allow from All
Deny from 1.2.3.4
In this configuration, 1.2.3.4 is blocked from any static file
access at or below /Library/WebServer, but the WO interactions are
completely unfettered. I'm sure I'm doing it wrong, so perhaps
someone can enlighten me? :)
If at all possible, I'd like to find a solution that can apply to
both WO and Apache. It would be preferred to implement this at the
application layer instead of the network layer (e.g. using firewall
rules).
I'm not an Apache guru and barely even play one on the Internet...
Should the "Deny from" clause not go in this stanza:
<Directory "/Library/WebServer/CGI-Executables">
AllowOverride None
Options None
Order allow,deny
Allow from all
</Directory>
Or this?
<Directory />
Options FollowSymLinks
AllowOverride None
# Order deny,allow
# Deny from all
</Directory>
Chuck
--
Chuck Hill Senior Consultant / VP Development
Come to WOWODC'09 in San Fran this June!
http://www.wocommunity.org/wowodc09/
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-deploy mailing list (Webobjects-deploy@lists.apple.com)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/webobjects-deploy/archive%40mail-archive.com
This email sent to arch...@mail-archive.com
