This section describes how you can easily restrict access to any file or
directory in your web site. To continue with the example above, you might
want to restrict access to specialinfo.html to a group of friends.
In the following, the protected file is the file or directory to which
you want to restrict access (in the example above, the protected file
is specialinfo.html).
-
Read the introduction to the security page
of this documentation.
-
Use your web browser to start the
vqServer control centre.
-
Create an access control list:
-
Click on Access control lists in the menu on the right-hand side of
the control centre welcome page. The access control lists page will be displayed.
-
Click on New ACL in the menu on the right-hand side of the page. The
settings page for a new access control list will be displayed.
-
Enter a suitable name in the Name box. In the example above, you might
call the new access control list Friends.
-
Click on the Ok button.
-
Add the protected file to vqServer's list of aliases if necessary.
Instructions for doing this are given above.
-
Make sure that there are no other aliases by which the protected file can
be accessed. In the example, an alias /backdoor/ associated with the
path specialinfo/specialinfo.html could be used to circumvent password
protection. You can check this very easily from the appropriate files page
of the control centre which lists all the aliases that can be used to refer
to a file.
-
Link the new access control list to the alias. To do this:
-
Click on Aliases under Main web server in the control centre
menu. The aliases page will be displayed.
-
Find the alias associated with the protected file (in the example the alias
is /specialinfo). Click on the icon in the Settings column
adjacent to the alias. The settings page for the alias will be displayed.
-
Select the new access control list (Friends in our example) from the
Access control list pull-down menu.
-
Click on the Ok button.
-
Add users to the vqServer user database and to the new access control
list.
-
Click on Users in the control centre menu. The users page will be
displayed.
-
Click on New user in the menu on the right-hand side of the page.
The settings form for a new user will be displayed.
-
Enter a suitable user ID in the ID box. This is the name by which
the user will identify himself/herself to vqServer.
-
Enter a password in the Password box.
-
Make sure the Show ACLs box at the bottom of the form is checked.
-
Click on the Ok button. A list of access control lists and check boxes
is displayed.
-
Check the boxes corresponding to the access control lists you want to add
the new user to. In the example, click on the check box next to
Friends.
-
Click the Ok button. The amended users page will be displayed.
-
Inform the person you have just added to the vqServer user database
of their user ID and password.
-
Repeat steps 2-9 for each person you want to be able to access the protected
file or directory.
vqServer version 1.9. Copyright © 1997-2000
Steve Shering and
vqSoft. Last updated 14 March
1999. |
|
vqServer
Contents
Management
Startup
Shutdown
|