This section describes how you can easily restrict access to any file or
directory in your web site. To continue with the example above, you might
want to restrict access to specialinfo.html to a group of friends.
In the following, the protected file is the file or directory to which
you want to restrict access (in the example above, the protected file
is specialinfo.html).
-
Read the introduction to the security page
of this documentation.
-
Use your web browser to start the
vqServer control centre.
-
Create an access control list:
-
Click on Access control lists in the menu on the right-hand side of
the control centre welcome page. The access control lists page will be displayed.
-
Click on New ACL in the menu on the right-hand side of the page. The
settings page for a new access control list will be displayed.
-
Enter a suitable name in the Name box. In the example above, you might
call the new access control list Friends.
-
Click on the Ok button.
-
Add the protected file to vqServer's list of aliases if necessary.
Instructions for doing this are given above.
-
Make sure that:
-
the alias associated with the protected file is listed above any similar
but less specific aliases in the aliases page. In the example above, the
alias specialinfo should precede the alias special. If necessary,
use the arrows in the list of aliases to reorder them.
-
there are no other aliases by which the protected file can be accessed. In
the example above, an alias backdoor associated with the path
specialinfo/specialinfo.html could be used to circumvent the security
you are trying to implement.
-
Associate the alias corresponding to the protected file with the new access
control list. To do this:
-
Click on Aliases under Main web server in the control centre
menu. The aliases page will be displayed.
-
Find the alias associated with the protected file (in the example above the
alias is specialinfo). Click on the icon in the Settings column
adjacent to the alias. The settings page for the alias will be displayed.
-
Select the new access control list from the Access control list pull-down
menu.
-
Click on the Ok button.
-
Add users to the vqServer user database and to the new access control
list.
-
Click on Users in the control centre menu. The users page will be
displayed.
-
Click on New user in the menu on the right-hand side of the page.
The settings form for a new user will be displayed.
-
Enter a suitable user ID in the ID box. This is the name by which
the user will identify himself/herself to vqServer.
-
Enter a password in the Password box.
-
Make sure the Show ACLs box at the bottom of the form is checked.
-
Click on the Ok button. A list of access control lists and check boxes
is displayed.
-
Check the boxes corresponding to the access control lists you want to add
the new user to. In the example above, click on the check box next to
Friends.
-
Click the Ok button. The amended users page will be displayed.
-
Inform the person you have just added to the vqServer user database
of their user ID and password.
-
Repeat steps 2-9 for each person you want to be able to access the protected
file or directory.
vqServer version 1.03. Copyright © 1997-98
vqSoft and
Steve Shering. Last updated 27
May 1998. |
|
vqServer
Contents
Management
Startup
Shutdown
|