[mrtg] Re: 14all and authorization

Rippe, Mark (CCI-Warwick) Mark.Rippe at cox.com
Wed Dec 13 18:33:23 MET 2000 

i found this in the big brother archives.
hopefully this will help.

---- snip ----

Let's assume you're using Apache on unix. If not, stop here.

Did you modify your conf files to use Basic Authentication? If not, read on.

Long Explaination: see http://www.apache.org/docs/

Quick Explaination: You need to add a Directory directive to your
access.conf
Here is an example which password protects the entire Big Brother web site,
adjust as necessary:

<Directory /usr/local/bb/www>
AuthType Basic
AuthName BigBrother
AuthUserFile /usr/local/bb/.htpasswd
require valid-user
Options Indexes Includes FollowSymLinks
AllowOverride None
order allow,deny
allow from all
</Directory>


With Apache, you can password-protect the whole site, the cgi-bin directory
or even just the bb-servmaint.sh script. For details, see the long
explaination.

"Windows may break but the Sun will always shine" -Unknown

--Jeff
Unix Systems Administrator
Blackboard, Inc.
1899 L St., NW
Washington, D.C. 20036
(202) 463-4860 ext. 283
(202) 463-4863 (fax)

    -snip ----


mark.rippe at cox.com

"The ships hung in the sky in
much the same way that bricks don't"

The Hitchhikers Guide To The Galaxy
Douglas Adams



> -----Original Message-----
> From:	Rainer.Bawidamann at rz.uni-ulm.de
> [SMTP:Rainer.Bawidamann at rz.uni-ulm.de]
> Sent:	Wednesday, December 13, 2000 12:16 PM
> To:	mrtg at list.ee.ethz.ch
> Subject:	[mrtg] Re: 14all and authorization
> 
> 
> In article <000201c06516$4524cf20$f4a69793 at geeur.bt.com>,
> 	M.Dorenbos at concert.net ("Marcel Dorenbos") writes:
> > 
> > I am using the MRTG tool for quite a while now. At the moment we are
> > building a new system and we will switche to rrdtool mode. In the old
> > situation I could rely on the authorization methods offered by the
> apache
> > web server (basically the reports are placed in different
> subdirectories,
> > with different realms).
> > 
> > It seems that the 14all.cgi script doesnot provide this functionality,
> so
> > allowing group of users access to their reports only. Is there a known
> > solution for this problem?
> 
> No. In fact 14all takes the config file name as CGI parameter so
> everyone has access to every mrtg config file if he knows the name.
> 
> A quick hack would be to add "BasicAuthentication" support to 14all so
> you can say in the config file
> 
>   14all*users[target]: user1,user2,root
> 
> Should be around 20 lines of code (if '14all*users' exists check if
> $ENV{REMOTE_USER} exists and '14all*users' contains it). I currently
> don't have much time, any volunteers?
> 
> Rainer
> 
> --
> Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe
> Archive     http://www.ee.ethz.ch/~slist/mrtg
> FAQ         http://faq.mrtg.org    Homepage     http://www.mrtg.org
> WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi

--
Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe
Archive     http://www.ee.ethz.ch/~slist/mrtg
FAQ         http://faq.mrtg.org    Homepage     http://www.mrtg.org
WebAdmin    http://www.ee.ethz.ch/~slist/lsg2.cgi

More information about the mrtg mailing list