• Recent
    • Unsolved
    • Tags
    • Popular
    • Users
    • Groups
    • Search
    • Register
    • Login

    Possible to secure /var/www/* ipxe boot contents?

    Scheduled Pinned Locked Moved
    General
    2
    3
    279
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • D
      DBCountMan
      last edited by

      I have a couple of ipxe items and their contents reside in /var/www. I noticed that I can browse to those web shares without authentication. I know FOG needs them shared, but I thought the FOG ipxe kernel is already authenticated. Is there a way to block web browsing to these specific shares and only allow access via FOG pxe?

      george1421G 1 Reply Last reply Reply Quote 0
      • george1421G
        george1421 Moderator @DBCountMan
        last edited by

        @brakcounty said in Possible to secure /var/www/* ipxe boot contents?:

        eside in /var/www. I noticed that I can browse to those web shares without authentication.

        I can say in general there is a way to tell apache to now allow browsing of files in a certain directory path. To be able to access the files, you must know the complete path and file name (your fog menus or what ever you have referencing these files would know the complete path).

        So I would suggest that you google “apache stop file browsing” to see the correct apache directive for the path where your files are stored. I would recommend though that you place all of your files in its own unique root path like /var/www/html/mystuff and not use a subdirectory of /var/www/html/fog or store files in the apache docroot /var/www/html That way your directive can be isolated to the files you want to protect.

        Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

        D 1 Reply Last reply Reply Quote 0
        • D
          DBCountMan @george1421
          last edited by

          @george1421 said in Possible to secure /var/www/* ipxe boot contents?:

          apache stop file browsing

          Yes I will place this here to save a search for anyone who stumbles upon this post.
          https://www.vultr.com/docs/how-to-disable-directory-browsing-on-apache/

          1 Reply Last reply Reply Quote 1
          • 1 / 1
          • First post
            Last post

          234

          Online

          12.0k

          Users

          17.3k

          Topics

          155.2k

          Posts
          Copyright © 2012-2024 FOG Project