Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Discussion forum about ELOG  Not logged in ELOG logo
 Back  |  Find  |  Login  |  Help 
icon3.gif   Can other pages hide behind elog user authentication?, posted by Jason St. John on Sat Apr 17 01:06:58 2010 
    icon2.gif   Re: Can other pages hide behind elog user authentication?, posted by Stefan Ritt on Mon Apr 19 08:55:19 2010 
Message ID: 66791     Entry time: Mon Apr 19 08:55:19 2010     In reply to: 66788
Icon: Reply  Author: Stefan Ritt  Author Email: stefan.ritt@psi.ch 
Category: Request  OS: Linux  ELOG Version: 2.7.8-2278 
Subject: Re: Can other pages hide behind elog user authentication? 

Jason St. John wrote:

Hello,

The elog security suits me just fine: the content is not available unless users have logged in, and as administrator I have complete control over who that is and what their privileges are. I can easily share somewhat sensitive notes, plots, and findings without making them completely open to the world. 

I have a project which generates html pages, which I'm also not really supposed to make public to the world.  I'd rather not resort to attaching them to elog entries.

Could the elog security be extended to control access to other files I put on the server? 

Thanks,

-jmsj

If you don't want  to make elog attachments, don't use elog at all. Just use a simple web server like Apache. Most web servers have some mean to protect certain web pages with passwords etc.

ELOG V3.1.5-fe60aaf