• Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login
  • Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login

Possible to secure /var/www/* ipxe boot contents?

Scheduled Pinned Locked Moved
General
2
3
279
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • D
    DBCountMan
    last edited by Apr 20, 2022, 8:05 PM

    I have a couple of ipxe items and their contents reside in /var/www. I noticed that I can browse to those web shares without authentication. I know FOG needs them shared, but I thought the FOG ipxe kernel is already authenticated. Is there a way to block web browsing to these specific shares and only allow access via FOG pxe?

    G 1 Reply Last reply Apr 20, 2022, 11:25 PM Reply Quote 0
    • G
      george1421 Moderator @DBCountMan
      last edited by Apr 20, 2022, 11:25 PM

      @brakcounty said in Possible to secure /var/www/* ipxe boot contents?:

      eside in /var/www. I noticed that I can browse to those web shares without authentication.

      I can say in general there is a way to tell apache to now allow browsing of files in a certain directory path. To be able to access the files, you must know the complete path and file name (your fog menus or what ever you have referencing these files would know the complete path).

      So I would suggest that you google “apache stop file browsing” to see the correct apache directive for the path where your files are stored. I would recommend though that you place all of your files in its own unique root path like /var/www/html/mystuff and not use a subdirectory of /var/www/html/fog or store files in the apache docroot /var/www/html That way your directive can be isolated to the files you want to protect.

      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

      D 1 Reply Last reply Apr 21, 2022, 12:44 PM Reply Quote 0
      • D
        DBCountMan @george1421
        last edited by Apr 21, 2022, 12:44 PM

        @george1421 said in Possible to secure /var/www/* ipxe boot contents?:

        apache stop file browsing

        Yes I will place this here to save a search for anyone who stumbles upon this post.
        https://www.vultr.com/docs/how-to-disable-directory-browsing-on-apache/

        1 Reply Last reply Reply Quote 1
        • 1 / 1
        1 / 1
        • First post
          2/3
          Last post

        165

        Online

        12.0k

        Users

        17.3k

        Topics

        155.2k

        Posts
        Copyright © 2012-2024 FOG Project