Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
file_browser_install [2014/12/18 18:54] tower [Windows Style Configuration for Linux] |
file_browser_install [2016/08/31 16:49] (current) tower [How to fix this problem] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ===== Some Common Problems (Unix/Linux-type Systems) ===== | + | ===== Some Common Problems on Unix/Linux Systems ===== |
Line 150: | Line 150: | ||
- | === Ways to fix this problem === | + | === How to fix this problem === |
- | 1. Add a .htaccess file to data/media/ with these lines: | + | Add a .htaccess file to data/media/ with these lines: |
<code> | <code> | ||
- | order allow,deny | + | <IfModule mod_authz_host> |
- | allow from all | + | Require all denied |
- | </code> | + | </IfModule> |
+ | <IfModule !mod_authz_host> | ||
+ | Order allow,deny | ||
+ | Deny from all | ||
+ | </IfModule> | ||
+ | <FilesMatch "\.(gif|jpe?g|png)$"> | ||
+ | <IfModule mod_authz_host> | ||
+ | Require all granted | ||
+ | </IfModule> | ||
+ | <IfModule !mod_authz_host> | ||
+ | Order allow,deny | ||
+ | Allow from all | ||
+ | </IfModule> | ||
+ | </FilesMatch> | ||
- | For some web sites this may open a security hole, since the media directory may hold files which are not for public access. One way around this is to create a secure subdirectory which contains the following .httaccess directives: | + | Options -Indexes |
- | |||
- | <code> | ||
- | order allow,deny | ||
- | deny from all | ||
- | </code> | ||
- | |||
- | |||
- | 2. A secure solution is to protect the media or secure subdirectory directory in this way: | ||
- | |||
- | |||
- | <code> | ||
- | order allow,deny | ||
- | allow from mysite.com 192.168.1.4 | ||
- | </code> | ||
- | |||
- | |||
- | This will give access only to your organization or to a LAN where the web site is on IP 192.168.1.4. The files protected in this way will display in your wiki pages but will not be directly accessible from the Internet. | ||
- | |||
- | |||
- | 3. Another slution is described on the [[:media#security_and_the_media_directory|filebrowser page]], and uses this form of .htaccess: | ||
- | |||
- | |||
- | <code> | ||
- | <FilesMatch "\.(gif|jpe?g|png)$"> | ||
- | order allow,deny | ||
- | allow from all | ||
- | </FilesMatch> | ||
</code> | </code> | ||
- | Consult the filebrowser page for more details. | + | Consult the [[media#security_and_the_media_directory|filebrowser security section]] for more details. |