You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Leon Sargent <le...@comcast.net> on 2006/09/06 20:22:59 UTC

[users@httpd] Next part of my HTPD.conf file.

Controls who can get stuff from this server.

Order allow,deny
     Allow from all
</Directory>

I have looked this up but still do not understand what it means.   
Does it mean anyone can access my webserver?

Does this line from my >htaccess file override that.  Documents is  
where my website is located.

<Directory   "lhsmarkets.com/Library/WebServer/Documents">
     Order allow,deny
     Deny from all
     Satisfy All
</Directory>


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Getting the configuration right no .htaccess files maybe all in httpd.conf file?

Posted by Joshua Slive <jo...@slive.ca>.

On 9/6/06, Leon Sargent <le...@comcast.net> wrote:

> Can I put all this in the http.conf file and remove the two .htaccess
> files?

Yes.  But as I've already pointed out, most of what you put under
"Apple required code" is complete garbage.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

[users@httpd] Getting the configuration right no .htaccess files maybe all in httpd.conf file?

Posted by Leon Sargent <le...@comcast.net>.

On Sep 6, 2006, at 2:57 PM, Joshua Slive wrote:

>> Security, my URL SEO to function and the Apple code from the htaccess
>> file all put where they belong so they function.
>
> This is too vague to answer.
>


This is the start of my .htaccess file in both Admin and Documents.

AllowOverride AuthConfig
AuthUserFile lhsmarkets.com/Library/WebServer/Documents/.htpasswd
AuthGroupFile /dev/null
AuthName "Password Protected Area"
AuthType Basic


This is the URL SEO code that needs to be in the .htaccess file  
unless you say to put it in the httpd.conf file.

Options +FollowSymLinks
RewriteEngine On
RewriteBase /Documents/
RewriteRule ^(.*)-p-(.*).html$ product_info.php?products_id=$2&% 
{QUERY_STRING}
RewriteRule ^(.*)-c-(.*).html$ index.php?cPath=$2&%{QUERY_STRING}
RewriteRule ^(.*)-m-(.*).html$ index.php?manufacturers_id=$2&% 
{QUERY_STRING}

This is the Apple required code for the .htaccess file.

<limit GET POST>
require valid-user
</limit>

<Files "rsrc">
     Order allow,deny
     Deny from all
     Satisfy All
</Files>

<Directory   "lhsmarkets.com/Library/WebServer/Documents">
     Order allow,deny
     Deny from all
     Satisfy All
</Directory>


Can I put all this in the http.conf file and remove the two .htaccess  
files?

What is your recommendation.

Leon



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Joshua Slive <jo...@slive.ca>.

On 9/6/06, Leon Sargent <le...@comcast.net> wrote:
>
> On Sep 6, 2006, at 2:57 PM, Joshua Slive wrote:
>
> >
> > This is simple.  Just look through httpd.conf and all your .htaccess
> > files for all the Options directives, and make sure that none of them
> > contain "Indexes" as one of the Options.
>
> The only one I found so far is here in httpd.conf
>
> <IfModule mod_alias.c>
>
>   <Directory "/usr/share/httpd/icons">
>          Options Indexes MultiViews
>          AllowOverride None
>          Order allow,deny
>          Allow from all
>      </Directory>
>
> Should I comment this out or just take out the options or options
> indexes MultiViews?

Just remove it.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Leon Sargent <le...@comcast.net>.

On Sep 6, 2006, at 2:57 PM, Joshua Slive wrote:

>
> This is simple.  Just look through httpd.conf and all your .htaccess
> files for all the Options directives, and make sure that none of them
> contain "Indexes" as one of the Options.

The only one I found so far is here in httpd.conf

<IfModule mod_alias.c>

  <Directory "/usr/share/httpd/icons">
         Options Indexes MultiViews
         AllowOverride None
         Order allow,deny
         Allow from all
     </Directory>

Should I comment this out or just take out the options or options  
indexes MultiViews?

Leon

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Joshua Slive <jo...@slive.ca>.

On 9/6/06, Leon Sargent <le...@comcast.net> wrote:
>
> On Sep 6, 2006, at 3:10 PM, Joshua Slive wrote:
>
> >  The mailing list works
> > better for people who know enough about apache to formulate
> > more-complete questions.]
>
> Never have I been spoken to on any email list in the manner you have
> just spoken to me.
>
> I will take my second grade english and go some where else.
>
> Thank you  for your fucking time..  next time impale your self on a
> dirty aids needle.
>
> And as always have a nice fucking day.
>
> I just said what you could not.
>
> Fuck you.

It seems like you read something completely different than what I wrote.

But in any case, given your response, you are quite welcome (and, in
fact, strongly encouraged) to go elsewhere.  Good luck finding
someplace with enough patience to deal with you.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Gregor Schneider <rc...@googlemail.com>.

and maybe another free-of-charge-tip for the future:

never ever post the name of your website AND your configs AND
demonstrate to the whole list that you got no idea of how to setup a
web-server: the result is most likely that your webserver won't be
running for too long since this is an invitation to hackers who are
reading this list, too.
besides, i believe after your last post nobody in this list really
regrets that your server obviously has been taken offline.

greg
-- 
what's puzzlin' you, is the nature of my game

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Saline Erik <es...@pen-tec.com>.

On Sep 6, 2006, at 12:19 PM, Leon Sargent wrote:

>
> On Sep 6, 2006, at 3:10 PM, Joshua Slive wrote:
>
>>  The mailing list works
>> better for people who know enough about apache to formulate
>> more-complete questions.]
>
> Never have I been spoken to on any email list in the manner you  
> have just spoken to me.
>
> I will take my second grade english and go some where else.
>
> Thank you  for your fucking time..  next time impale your self on a  
> dirty aids needle.
>
> And as always have a nice fucking day.
>
> I just said what you could not.
>
> Fuck you.
>
> Leon Sargent
> '
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server  
> Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>   "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>



You seem to be missing the point and way out of line.  In my opinion,  
nobody on this list wants to answer your step by step questions on  
setting up your web server.  He was the one nice enough on this list  
to tell you a better place to get help.  It is not your 2nd grade  
english, it is your 2nd grade problem solving skills.


Erik






---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Leon Sargent <le...@comcast.net>.

On Sep 6, 2006, at 3:10 PM, Joshua Slive wrote:

>  The mailing list works
> better for people who know enough about apache to formulate
> more-complete questions.]

Never have I been spoken to on any email list in the manner you have  
just spoken to me.

I will take my second grade english and go some where else.

Thank you  for your fucking time..  next time impale your self on a  
dirty aids needle.

And as always have a nice fucking day.

I just said what you could not.

Fuck you.

Leon Sargent
'

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Joshua Slive <jo...@slive.ca>.

On 9/6/06, Leon Sargent <le...@comcast.net> wrote:
>
> On Sep 6, 2006, at 2:57 PM, Joshua Slive wrote:
>
> > Yes, in a <Directory> section corresponding to the location of the
> > content.
>
> DocumentRoot "/Library/WebServer/Documents"
>
> Before /Library would be my harddrive name.  Documents is where my
> whole website is stored,  files and directories.
>
> So for my URL SEO the Directory would be the full path name above or
> just Documents?

Full path name.

[Another random note for you: If you continue to need a bunch of short
one-on-one help sessions, you should find an irc client and head over
to the #apache channel on irc.freenode.net.  The mailing list works
better for people who know enough about apache to formulate
more-complete questions.]

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Leon Sargent <le...@comcast.net>.

On Sep 6, 2006, at 2:57 PM, Joshua Slive wrote:

> Yes, in a <Directory> section corresponding to the location of the  
> content.

DocumentRoot "/Library/WebServer/Documents"

Before /Library would be my harddrive name.  Documents is where my  
whole website is stored,  files and directories.

So for my URL SEO the Directory would be the full path name above or  
just Documents?

Leon

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Joshua Slive <jo...@slive.ca>.

On 9/6/06, Leon Sargent <le...@comcast.net> wrote:
>
> On Sep 6, 2006, at 2:34 PM, Joshua Slive wrote:
>
> > It looks to me that you are working off some lousy documentation
> > someplace.  Why not instead simply tell us what you want to do.
>
>
> All I want to do is not allow someone to type in my website
> lhsmarkets.com with a directory that does not have an index file so
> that they can preview change edit or delete files from the
> directory.  If it is not me looking at the directory structure via
> the web I don't want it to be anyone else who may bring down my
> server or corrupt it.

This is simple.  Just look through httpd.conf and all your .htaccess
files for all the Options directives, and make sure that none of them
contain "Indexes" as one of the Options.

>
> I have a URL SEO code implemented in my website and it says to put
> some code with the directory name into the .htaccess file so if not
> there where do I put it?  In the httpd.conf file?

Yes, in a <Directory> section corresponding to the location of the content.

> Security, my URL SEO to function and the Apple code from the htaccess
> file all put where they belong so they function.

This is too vague to answer.

>
> Leon
>
> I use Apache 1.3.3

I certainly hope you mean 1.3.33.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Leon Sargent <le...@comcast.net>.

On Sep 6, 2006, at 2:34 PM, Joshua Slive wrote:

> It looks to me that you are working off some lousy documentation
> someplace.  Why not instead simply tell us what you want to do.

All I want to do is not allow someone to type in my website  
lhsmarkets.com with a directory that does not have an index file so  
that they can preview change edit or delete files from the  
directory.  If it is not me looking at the directory structure via  
the web I don't want it to be anyone else who may bring down my  
server or corrupt it.

I have a URL SEO code implemented in my website and it says to put  
some code with the directory name into the .htaccess file so if not  
there where do I put it?  In the httpd.conf file?

There are some specific Apple code that needs to be takes out of  
the .htaccess file and put into the httpd.conf file as well.

That is all I want.

Security, my URL SEO to function and the Apple code from the htaccess  
file all put where they belong so they function.

Leon

I use Apache 1.3.3

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Next part of my HTPD.conf file.

Posted by Joshua Slive <jo...@slive.ca>.

[Try a more descriptive subject line next time.]

On 9/6/06, Leon Sargent <le...@comcast.net> wrote:
> Controls who can get stuff from this server.
>
> Order allow,deny
>      Allow from all
> </Directory>
>
> I have looked this up but still do not understand what it means.
> Does it mean anyone can access my webserver?

Yes, assuming that they are not otherwise restricted.  See:
http://httpd.apache.org/docs/2.2/howto/access.html

>
> Does this line from my >htaccess file override that.  Documents is
> where my website is located.
>
> <Directory   "lhsmarkets.com/Library/WebServer/Documents">
>      Order allow,deny
>      Deny from all
>      Satisfy All
> </Directory>

You cannot have a <Directory> section inside an .htaccess file.
(.htaccess files determine what directory they apply to by their own
location.)  In addition, the <Directory> section should contain an
absolute path (starting with a slash) relative to the root of the
file-system, not the webspace or DocumentRoot.

It looks to me that you are working off some lousy documentation
someplace.  Why not instead simply tell us what you want to do.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org