Xymon Mailing List Archive search

Securing Hobbit from visitors

list Buchan Milne
Wed, 12 Mar 2008 15:11:31 +0200
Message-Id: <user-f8443720b94b@xymon.invalid>

On Wednesday 12 March 2008 14:14:41 Josh Luthman wrote:
This is what I have in httpd.conf that makes me login three times (you can
tell which three, obviously =)

Alias /hobbit/  "/hobbitdir/server/www/"
<Directory "/hobbitdir/server/www">
    Options Indexes FollowSymLinks Includes MultiViews
    Order allow,deny
    Allow from all
  AuthUserFile /hobbitdir/server/etc/hobbitpasswd
  AuthType Basic
  AuthName "Hobbit Monitoring1"
  Require valid-user
</Directory>

ScriptAlias /hobbit-cgi/ "/hobbitdir/cgi-bin/"
<Directory "/hobbitdir/cgi-bin">
    AllowOverride None
    Options ExecCGI Includes
    Order allow,deny
    Allow from all
  AuthUserFile /hobbitdir/server/etc/hobbitpasswd
  AuthType Basic
  AuthName "Hobbit Monitoring2"
  Require valid-user
</Directory>

ScriptAlias /hobbit-seccgi/ "/hobbitdir/cgi-secure/"
<Directory "/hobbitdir/cgi-secure">
    AllowOverride None
    Options ExecCGI Includes
    Order allow,deny
    Allow from all

    AuthUserFile /hobbitdir/server/etc/hobbitpasswd
    AuthGroupFile /hobbitdir/server/etc/hobbitgroups
    AuthType Basic
    AuthName "Hobbit Monitoring3"
    Require valid-user
    Require group group4admin
</Directory>
If you use the same AuthName, most likely you users should not need to log in 
more than once. Was there a reason you used different ones.


Regards,
Buchan