Gossamer Forum
(Advanced Search)
for
Home : Products : Links 2.0 : Customization :

@ Quick Questions- Security/Detailed

Apr 17, 1999, 9:29 AM
eb
Novice (19 posts)
Apr 17, 1999, 9:29 AM
Post #1 of 5
Views: 1736
Shortcut
Quote Reply
@ Quick Questions- Security/Detailed
Hi,
Everything works fine. Been adding mods an lots of stuff to this great script. This was the first script i ever installed and got it and modified it both on NT and Unix servers. I know big deal.
I have no prob editing and uderstanding most of these mods and fixes but:

1. On an NT server with IIS 4 I know the difficulties in password protecting, if i delete the admin.cgi when not editing site, will cause any probs with any dependent running scripts?
2. The detailed template seems to be inactive since i put the snap template into the site even though it is called up in my build scripts. Where would be the first place to look to see if the template is being used to build anything and where would it build the html after doing a site build?

thanks for any info in advance Smile
Apr 16, 1999, 10:39 PM
Bobsie
Veteran / Moderator (3111 posts)
Bobsie's avatar
Apr 16, 1999, 10:39 PM
Post #2 of 5
Views: 1682
Shortcut
Quote Reply
Re: @ Quick Questions- Security/Detailed In reply to
I can't answer the second question but may be able to shed light on the first:

Quote:
1. On an NT server with IIS 4 I know the difficulties in password protecting, if i delete the admin.cgi when not editing site, will cause any probs with any dependent running scripts?

If I understand what you are asking here, you want to delete admin.cgi when not performing any admin functions and put it back when you want to perform admin functions.

Yes, you can do that but, without password protection on the admin directory, it would be pretty much meaningless to do so. Your other admin scripts, along with all your data, would still be vulnerable and subject to access by someone who knows how to find them. In other words, password protecting the admin directory is not just to protect your admin.cgi. It is to protect the entire directory, subdirectories, and files in those directories.
Apr 16, 1999, 10:53 PM
eb
Novice (19 posts)
Apr 16, 1999, 10:53 PM
Post #3 of 5
Views: 1709
Shortcut
Quote Reply
Re: @ Quick Questions- Security/Detailed In reply to
Thanks Bobsie,
I ll let you know if i find any alternatives.
I was asleep when i asked the other questions and forgot all about the other files needing protecting Smile
Have fun...
Apr 17, 1999, 7:54 PM
Babalon
Novice (28 posts)
Apr 17, 1999, 7:54 PM
Post #4 of 5
Views: 1691
Shortcut
Quote Reply
Re: @ Quick Questions- Security/Detailed In reply to
Hi,
I am running Links on IIS 4.0 and what I have done is set up in the MMC to force NT Challenge/Responce security and disabled anonymous access to my Admin directory.

This allows me to update my site from anywhere while forcing a Login prompt when I go to hit the admin.pl page. It works great, to get a sample of this go to
http://thelema.dynip.com/divination/admin/admin.pl without a valid domain user name and password, you are SOL

the only drawback there is is that you have to use MSIE to get into the file, but thats what I use anyway, so no issue with me Wink

Babalon
http://thelema.dynip.com/
Apr 18, 1999, 9:00 AM
eb
Novice (19 posts)
Apr 18, 1999, 9:00 AM
Post #5 of 5
Views: 1681
Shortcut
Quote Reply
Re: @ Quick Questions- Security/Detailed In reply to
Hey babalon,
Thanks for the input. I will get up with my Server admin who happens to be one of my partners and see what he can do. I appreciate all the info.
Have a great one Smile