Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Deny some users User Directorys

Status
Not open for further replies.
axman505

axman505

Technical User
Jun 20, 2001
489
US
Hello,

Is there any easy way to deny some users a user html directory?

I was thinking, that the httpd.conf file could call to include a file when it is loading and setting up the userdirectorys options. If the file contained a list of users to deny, i.e.:

Disabled root jim john

this would do the trick, right? Does anyone know of an easier way to configure this?

We might be better of with a list of users to allow, rather than a list to deny. We will be using either LDAP authentication or will be configuring accounts via scripts.

Your input is appreciated. Thanks.
 
Sort by date Sort by votes
Your best bet using ldap is :


mod_auth_ldap

This should give you some control over access.

Other then that you can use your scripts to write a big deny file but that would require an apache HUP since only .htaccess is per transaction and if you put a .htaccess in a dir the user can delete it, removing your restrictions.
 
Upvote 0 Downvote
Will this work with groups as well?

i.e

disable no_html_group

Thanks
 
Upvote 0 Downvote
I have never seen this 'disabled' command and do not see it in the 2.0 Apache docs.

What you could do is :

Require group group-name [group-name] ...
Only users in the named groups can access the resource.

Where group is the name of the group that has access. Add valid users to that group and you'll be set.
 
Upvote 0 Downvote
I doubt that will work with groups, try it though and let us know.

I'd go with a require / group rule in this case and then write my setup software to update the group file as required.

 
Upvote 0 Downvote
I have a new delima. We have an AliasMatch setup as follows for user website:

AliasMatch ^/users/([a-zA-Z0-9]+)/?(.*) /home/$1/html/$2

When i tried to disable a test user with the following configuration file entry:

Disabled root test

It only disables access to the test account via:

I can still access the test account via:

Is there any way to solve this problem?

Thanks.
 
Upvote 0 Downvote
SirCharles, what were you thinking could be done in the .htaccess file?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

SamBones
  • Locked
  • Question
How Do I Start/Stop Systemd Services as a non-root User?
Replies
2
Views
878
gbaughma
gbaughma
jimktrains
  • Locked
  • Question
RHEL 7 limit user logins
Replies
0
Views
176
jimktrains
jimktrains
w5000
  • Locked
  • Question
openssh - user config
Replies
3
Views
198
w5000
w5000
Olaf Doschke
  • Locked
  • Question
some URL rewrites get visible
Replies
1
Views
137
Olaf Doschke
Olaf Doschke
bazil2
  • Locked
  • Question
Help in jailing SSH users 1
Replies
2
Views
151
ChrisHirst
ChrisHirst

Part and Inventory Search

Sponsor

Back
Top