On my Apache 2.x server at home, I have a number of virtual directories. I've set up my router so that I can access Apache from the internet. I need to keep one of those virtual dirs (/private) from being accessed outside my home network LAN. So given /private, how do I configure Apache to only serve requests to /private from 192.168...
I have a .NET system where I need to allow files to be locked and unlocked across process boundaries. The model I plan to use is this: User generate a lock token Uses Locks a file with token and refreshes token repeat at #2 as needed Uses unlocks all files by releasing token If uses fails to refresh token in some time-frame, #4 happens...
What is the best approach to implement access control on CVS repositories hosted on a Linux server? The goal is to prevent accidental deletion of modules by developers. The developers should be able to do all other CVS activities. ...
I have users for my application with access control list (these are both tables/schema/objects). Currently these are read from the database, Boolean values are used to indicate what they can view/manipulate. However, anyone can still go to the database and change the data. Can someone offer some suggestion on what kind of things I can do...
Note: I originally asked this question on serverfault.com but only got one response so far, and the more I think about it, the more I realise it is probably better on stackoverflow. I have multiple subversion repositories which are served up through Apache 2.2 and WebDAV. They are all located in a central place, and I used this debian-a...
Hello, I have several repositories setuped on my domain at: svn.domain.com and i have it so it will list the repos by the SVNParentPath configuration. And now i would like to create user permision for each folder / repo, but i want to remove that repo from the listing if a user does not have permision to access it. This is mainly for ...
My application uses a Named Pipe to do IPC. What access control should I place on it, to provide broad local only access? The pipe is created by the .net 2.0 remoting protocol, and it already has an ACL for the 'NETWORK' group to deny all access, so I think only local users can access it. In my remoting configuration file I need to pick...
I have a PHP page I need to limit execution access of to only clients inside our firewall. How would I write a php-script that can look up the clients ip-address and match it to a ip-range (for instance 10...* or 200.10.10.*). ...
As all you know, Sharepoint 2003 has simple access rights privilages. You can only grant rights (Reader, Contributor, Administrator) but unfortunatelly you can not deny access. So, if someone is not welcome in SharePoint portal there is no simple way to restrict access for him. I found nice articles how to secure access to certain page...
For some device users, on startup they are presented with the following permissions dialog "Would you like to grant AppX trusted application status?" The user says yes and the app runs fine. But what does "trusted application status" mean? This seems really ambiguous, most permission dialogs refer to making a http message, accessin...
How do you setup a git repository where some users can see certain parts of the source code and other users can see all of it? I've seen lots of guides for only giving certain users commit access, but these assume everyone should have read access. I've also heard of gitosis, but I'm not sure it supports this and it hasn't had any commits...
What is the opinion of everyone out there about having local admin rights for a developer on their local machine? Or at least the ability to do it such as through runas without having to rely on someone else? ...
While executing multple update statements on a particular table simultaneosly, I am getting an error - Permission Denied. Previously, the same was working perfectly. What could be the reason this is getting failed now? ...
I have records (Contacts, Addresses etc.) which should be accessible to any of the following (incl. combinations, e.g. 2 groups and 4 individuals): Everybody Members of multiple Groups/Departments Members of a single Group/Department Multiple Individuals Single Individual What is a good database structure to realize this? Basically i...
Hi folks, it's my first post, so be gentle! I'm familiar with a whole bunch of ways to authenticate users for the web-based administration application we're developing, and even various techniques to keep tabs on authorisation... However, my question to you is, how would you recommend I implement a fine-grained access control mechanism...
I loop through a bunch of directories recursively. Some of them (like D:\$RECYCLE.BIN\S-1-5-20) give me a System.UnauthorizedAccessException. I suppose that I can just catch it and move on, but I would rather figure that out in advance. So, when I have a DirectoryInfo object. How can I see if I am allowed to GetDirectories() and possibl...
I am looking for a security framework for Java web application with Object granularity. What it means is that I don't just want to filter by urls or by roles, but by specific user ownership of domain objects inside the system. For example, if there is a Message object that has a Sender user and a Receiver user I would like to be able ...
I need to limit access of content on Drupal site based on the Drupal User's Role. http://site.com/managers/intro http://site.com/managers/reviews http://site.com/managers/up-for-raises The content can be of multiple content types and isn't limited to one specific content-type. These content types will be used elsewhere on the site s...
I'm building a client/server iPhone game, where I would like to keep third-party clients from accessing the server. This is for two reasons: first, my revenue model is to sell the client and give away the service, and second I want to avoid the proliferation of clients that facilitate cheating. I'm writing the first version of the serv...
I'm working on a PHP application, and I'd like to add access control to some of my objects. I didn't tag this question as PHP, as I feel this question is not language specific. Say I have a 'Service class' abstract class Service { } Many services use this as a baseclass. One pseudo example would be: class Companies extends Servic...