[Gllug] Securing zope with apache-ssl
Bruce Richardson
itsbruce at uklinux.net
Mon Jun 7 16:31:59 UTC 2004
On Mon, Jun 07, 2004 at 01:37:07PM +0100, Jim wrote:
> # Do not allow use of the Zope management interfaces.
> RewriteCond %{REQUEST_URI} manage
> RewriteRule manage - [F]
One other thing: assuming the uri for the zope management interface is
http://whatever/manage, then the patterns in those rules should be
^manage$
or possibly
^manage/?$
This is a regex that you're matching and you should anchor it.
--
Bruce
I unfortunately do not know how to turn cheese into gold.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: Digital signature
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20040607/faf8733d/attachment.pgp>
-------------- next part --------------
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list