Secure And Restrict SSH Access
Aug 23, 20071.Who can I secure and restrict SSH access?
View 3 Replies
ADVERTISEMENT
Restrict Access To WHM By IP
Apr 13, 2007where I can restrict access to WHM to only my IP? My provider is stumped. They were using iptables and came to the conclusion it couldn't be done on a VPS.
View 6 Replies View RelatedHow To Restrict Directory Access
May 28, 2009How to restrict directory access by IP address using .htaccess?
AS i know the code must be like this
Code:
Order Deny,Allow
deny from 111.111.111.111
Now the questions
1. how to restrict access by IP-subnet?
Does such code right ?
Code:
Order Deny,Allow
deny from 111.111
2. how to restrict multyple IPs?
Code:
Order Deny,Allow
deny from 111.111.111.111, 222.222.222.222, 333.33.33.33
?
Apache :: Restrict Access To A Set Of IP In Specific URL
Jan 18, 2014I have Apache 2.2 installed on my Unix Server and have a couple of Application servers running each of them having similar Document Root.
For example, The URLS will look like below
https://my-test1.com/demo/index.html
https://my-prod1.com/demo/index.html
https://my-qa1.com/demo/index.html
The directory folder looks like
/myapp/my-test1/demo/index.html
/myapp/my-prod1/demo/index.html
/myapp/my-qa1/demo/index.html
I would like to restrict access to the above prod1 URL for a specific set of IP's. How can I achieve this.
Apache :: How To Restrict Access Via IP Address For Specific Webpages
Apr 17, 2014I'm using Concrete5 CMS to create a website. This CMS creates/manages all its webpages in a mySQL database. Thus, there is no physical folder associated with each webpage, so I can't simply create an .htaccess file and place it in the directory tree in the right sub-folder to restrict access for that sub-folder and all folders it contains.
I have one .htaccess file located at the root level (e.g top-level folder for the website).
QUESTION 1: I need place in this top-level .htaccess file to (1) restrict access to only two specific IP addresses that I can specify (blocking access to all other IP addresses), and (2) specify the URL addresses that I wish to apply this rule to?
For example, let's say my website is [URL] ....
And I want to restrict access to the [URL] ....
and my .htaccess file is located at
/home/myname/public_html/conc/.htaccess
What code can do that?
Secure FTP Without Shell Access?
Apr 22, 2009Do you guys have any idea what is the best way to enable SFTP for a cPanel account?
I could give it Shell access, but isn't it possible without it?
Secure Employees SSH Access To Server
Jul 6, 2009I'm thinking about creating a limited platform for my employees to access my hosting servers
I wish they can create certain types of directories for users, set permissions on some directories, list users accounts, etc.
but although I don't think they would want to abuse this kind of access, I not only like the Trust-No-One premisse, but I also find it not very unlikely that the computer they're using get compromised or something like that
so I'd like to get technical ideas on how to develop this system and to know if anyone is interested and would like to contribute to the code
what I've considered so far is that I should either create a special user for that which would be on all users group, or should give it "root" access... the latter seems more reasonable for me considering the implementation and compatibility between systems and control panels
but with "root" access I mean "running MY INTERFACE to the employee as root"... this interface would have limited options like "create directory for user X", "list content of user X", etc. (taking a lot of care on input validation)... and would enforce some limits to prevent abuse (for example, can't list the content of more than 10 users per hour, or something like that... and alert me)
my main doubt is how you think that should be implemented? as a special server or as a webservice? with webservice I have the advantage of being capable of using SSL in a simple way and I don't need a special client (since any browser is a client)
then that could be PHP or Perl... but running as UID 0 (I don't even know if apache allows that, or if there's a workaround like SUID)
How To Secure Access To MySQL Database
Jan 28, 2008What can I do to secure access to my MySQL database to stop it from getting compromised from hackers?
Is there any way I can restrict access to the MySQL database to my IP only?
The database is for an IPB 2.3.4 forum and the username/password are stored in a conf_global.php file that is CHMODed 0444.
How To Secure /tmp,/dev/shm Without Access To OpenVZ Hardware Node?
Aug 27, 2008I have recently picked up a CentOS5 server running on an OpenVZ box. Going thru various guides, I have seen repeatedly the importance of securing the /tmp partition. However, I am running into trouble when I try to follow the usual commands [1][2]
For example:
# mount -o nosuid,noexec /media/tmpFS /tmp
mount: /media/tmpFS is not a block device (maybe try `-o loop'?)
If I check for the presence of loop, it is missing:
# ls -ltr /dev/loop*
ls: /dev/loop*: No such file or directory
If I try and create loop using /sbin/makedev loop and re-execute the mount command, I get a new error
mount: no permission to look at loop
The nearest I have found so far is this thread [3], which suggests using
mount -t tmpfs tmpfs /tmp
I believe the above will not persist across a reboot, so that defeat's the purpose.
Can you advise on how to mount /tmp in noexec,nosuid mode within the VPS environment?
How Do I Secure Remote Access To Remote Access Products
Mar 24, 2007I have windows servers that I'll be co-locating very soon. I have purchased a Dell 2161ds-2 and an APC remote boot power strip. Could someone please tell me the best way to secure remote access to these products. Do I put them on public IP's and allow them through the firewall or do I put them behind the firewall and access them after I authenticate through the firewall.
View 6 Replies View RelatedHow To Restrict CPU Resources
Jun 26, 2008I would like to configure my delicated server to have following restriction on cpu...
system resources: 10% @ 30 sec per cPanel Account
Want To Install FTP And Restrict It To Certain IP Addresses
Jan 25, 2008I have set up IIS, and have been running a web server for about a month. I want to install FTP and restrict it to certain IPs. When I install the FTP will it erase everything I have set up? Also I want to have the FTP be only accessable from my school. They run active directory. Is it possible to restrict the FTP to this domain? Or maybe to the WAN IP of the school?
View 2 Replies View RelatedIs It Possible To Restrict Outbound Email With Smartermail
Jul 20, 2009A prospect wants an email server that could allow him to restrict some accounts and make them send emails only to the companies domain.
I was thinking of setting up a VPS with smartermail, so I was wondering if this be done with smartermail?
How Can I Restrict User Specific CPU Usages
Nov 18, 2008How can i restrict my user that always taking high CPU usages..i have linux server with shared hosting and most of the time i suffer that some user takes 10% of our server CPU so that i want to restrict those take high cpu usages..
View 6 Replies View RelatedApache :: Restrict Number Of Session For Context
Dec 29, 2014I have installed apache 2.4.10 with tomcat-7 as backend .Proxypass has been added in apache to access tomcat via http port .now requirement is to restrict each Context to 100 sessions only , how i need to achieve this .
View 1 Replies View RelatedPlesk 12.x / Linux :: Restrict SSH User To One Folder?
May 15, 2015I need to create a SSH account for an subscription. This account is not allowed to access other domains. How do i do that?
I know how to create an SSH account with remote access.
Plesk Automation :: PPA - Restrict Service Nodes For Subscriptions
Feb 26, 2014I'm testing PPA and have now a questions. How can restrict a subscription to a service node? I have try that over the subscriptions and custom atribute's. That work for the most thinks (Apache/Postfix) but not for MySQL, all customers can by a create to choose the database server (all database servers). How can i customer don't allow to choose the database server?
For a example (web1, mail1 only -> db1) (web2, mail2 only -> db2)
And for the DNS settings to create automaticly a DNS for the database service? (as a sample: db.domain.de -> database service node)....
Plesk Automation :: Unable To Restrict Customer Permissions
Feb 28, 2015I'm not able to restrict the customer permission.
I want to prevent customer of creation new Webspaces , domains, subdomains and manage DNS records.
If I put zero in webspaces, the customer remains able to create a new webspace.
If I disable DNS management, he can creates a subdomain in DNS.
I tried to put zero in domains, subdomains, webspace, dns in subscription.
None of permissions combinations or subscription limit prevents him to create a new webspace, neither add subdomain an manage the dns records.
Plesk Automation :: Restrict What Applications From Catalog Can Be Used For Each Server?
Mar 28, 2013In PPA is there a way to restrict what applications from the application catalog can be used for each server? Right now I have a hosting node that can install anything from the application catalog, but I can't find anywhere in PPA to specify what is available and what isn't. If I go to APS Applications and My Apps, Add App, and select "Select an app from Application Catalog", firstly no matter which browser I use, the OK/Cancel buttons disappear. I have to open the frame in its own tab to be able to use this properly. But even if I select an app and choose not to make it available, it can still be added from the customer's hosting panel. In Plesk 11 I can choose which applications are available to the customers. I can't find how to do the same thing in PPA.
View 5 Replies View RelatedPlesk 12.x / Linux :: Log Rotation For Particular Domain - Restrict File Size?
Feb 12, 2015For a particular domain I've got it set to:
Log rotation condition: By size (1024 KB)
Maximum number of log files: 5
Compress log files: Yes
...however the access_log.processed is at 20.4MB. Is this correct? I would have thought it could only get to 5MB in total?
How do I restrict the size of access_log.processed?
Plesk 11.x / Windows :: How To Limit Access To Few IP Address To Access Port 8443 On Firewall
Aug 28, 2012How can I allow only one ip or a list of ip addresses to access port 8443.I need to limit access this port to few ip addresses and not everyone
View 6 Replies View RelatedIIS 5 - Cant Access Page From IE7 But Can Access From Firefox
Feb 20, 2008I found a great little app called ID Shutdown Manager which bascially lets you do stuff like wake on LAN, Shutdown, Log Off etc.
The App also has a cgi script which you can call from a web server so you get a web interface to the program.
This is exactly my reason for getting the app as I just wanted to host a web page where I could login from the internet and wake on lan my media PC.
Ok so...
The app gives you all the iis or apache setup instructions and tells you to place the cgi script which is actually a .exe into the scripts folder and then enable basic authentication for it.
Done.
So if I navigate to <SERVER>/scripts/sdmancgi.exe its supposed to give me a user / pass prompt and then when login successful I see the app and can wake on lan etc.
ok I have got this to work
on the actual machine where server is running I can access it in IE7 by localhost etc.. and it works
However when I try to access from another PC in my lan by typing <SERVER>/scripts/sdmancgi.exe I get a nice little message saying the content cannot be displayed you may require to insall a program or something to display it.
If I try to access the page from firefox on same remote PC, it works!
I can also access page from outside my LAN, it works on my N95 browser.
Also I have had friends try it from firefox from the Internet and they say it works as well.
Forgot to mention I am running on port 8081 as I already have other servers running on 8080 and 80 (one is my router and the other server installed itself from setup.exe and I dont know what server its using)
I have also tried latest apache server as well as some other free one. Both have the same effect. Ok in firefox, not in IE.
One would think its a problem with the cgi file not compatible with IE7 however, I even tried to go to default page setup in IIS <SERVER>:8081 and I get the same message. So at this point the server hasnt even tried to access CGI or prompt for Basic Authentication.
I tried googling and not much luck. I read something about CSS and when I view source of failed web page from IE7 it mentions something about CSS so dont know if this is it?