<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Hi Ross,<div><br></div><div>I believe you would do this with definitions in the /etc/apaches2/http.conf file. However I've really only done this in Linux so the following details might be a bit off.</div><div><br></div><div>You can set directories for IP based authentication (this example defines the whole 192.168.xxx.xxx subnet)</div><div><br></div><div><div><Location /somedirectory></div><div> Order deny,allow</div><div> Deny from all</div><div> Allow from 192.168.</div><div></Location></div><div><br></div><div>Or a simple user/password combo by creating a .htaccess file in the directory you want to restrict. I'd also recommend using an SSL cert to protect the password.</div><div><br></div><div>SSLRequireSSL</div><div><div>AuthUserFile /etc/apache2/Users</div><div>AuthName Example</div><div>AuthType Basic</div><div><br></div><div><Limit GET POST PUT></div><div>order deny,allow</div><div>deny from all</div><div>require user exampleuser</div><div>satisfy any</div><div></Limit></div><div><br></div></div><div>You also have the create the /etc/apache2/Users file and populate it with the terminal command - </div><div>htpasswd -c exampleuser /etc/apache2/Users</div><div><br></div><div>I believe that .htaccess files are disabled by default in 10.5 server, you'll need to find the option in /etc/apaches2/http.conf to enable them. Also I think that changing this file will break your Server Admin tool for Apache, perhaps someone else can confirm that?</div><div><br></div><div>hope that helps,</div><div><br></div><div>Craig</div><div><br></div><div><div>--</div><div>Craig Richardson</div><div>Systems Administrator<br>Macquarie Centre for Cognitive Science<br>MACQUARIE UNIVERSITY NSW 2109<br><br>Phone: +61 (0)2 9850 6730<br>Fax: +61 (0)2 9850 6059<span class="Apple-tab-span" style="white-space: pre; "> </span><br><a href="http://www.maccs.mq.edu.au">http://www.maccs.mq.edu.au</a><br><br>CRICOS Provider No 00002J<br><br>This message is intended for the addressee named and may contain confidential information. If you are not the intended recipient, please delete it and notify the sender. Views expressed in this message are those of the individual sender, and are not necessarily the views of MACCS or Macquarie University.</div></div></div><div><br><div><div>On 03/12/2008, at 9:18 AM, Ross Glover wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0; "><div lang="EN-AU" link="blue" vlink="purple"><div class="Section1"><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">Hello Folks,</span></font></div><p class="MsoNormal" style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; "> </span></font></p><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">We have a stand-alone web server running on OS X 10.5 and we would like to limit access to some directories.</span></font></div><p class="MsoNormal" style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; "> </span></font></p><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">Access on-campus access must be seamless (by ip) but off-campus access would require username/password.</span></font></div><p class="MsoNormal" style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; "> </span></font></p><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">My limited understanding is that this would normally be done via an auth-ldap-type module in Apache but the OS X 10.5 implementation doesn’t have this so presumably Apple have another method. One suggested solution is to use Open Directory, apple_auth_module and Realms but I don’t see how this can work to allow on-campus without authentication. Another is to re-compile Apache with the required modules.</span></font></div><p class="MsoNormal" style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; "> </span></font></p><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">As a complete novice in this area, I would welcome any advice on how to proceed.</span></font></div><p class="MsoNormal" style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; "> </span></font></p><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">Thanks you,</span></font></div><p class="MsoNormal" style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; "> </span></font></p><div style="margin-top: 0cm; margin-right: 0cm; margin-left: 0cm; margin-bottom: 0.0001pt; font-size: 12pt; font-family: 'Times New Roman'; "><font size="2" face="Arial"><span style="font-size: 10pt; font-family: Arial; ">Ross.</span></font></div></div>_______________________________________________<br>unimactech mailing list<br><a href="mailto:unimactech@auc.edu.au" style="color: blue; text-decoration: underline; ">unimactech@auc.edu.au</a><br><a href="http://www.auc.edu.au/mailman/listinfo/unimactech" style="color: blue; text-decoration: underline; ">http://www.auc.edu.au/mailman/listinfo/unimactech</a><br></div></span></blockquote></div><br></div><br><br><div apple-content-edited="true"> <span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; -webkit-text-decorations-in-effect: none; text-indent: 0px; -webkit-text-size-adjust: auto; text-transform: none; orphans: 2; white-space: normal; widows: 2; word-spacing: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; -webkit-text-decorations-in-effect: none; text-indent: 0px; -webkit-text-size-adjust: auto; text-transform: none; orphans: 2; white-space: normal; widows: 2; word-spacing: 0px; "><div>--</div><div>Craig Richardson</div><div>Systems Administrator<br>Macquarie Centre for Cognitive Science<br>MACQUARIE UNIVERSITY NSW 2109<br><br>Phone: +61 (0)2 9850 6730<br>Fax: +61 (0)2 9850 6059<span class="Apple-tab-span" style="white-space: pre; "> </span><br><a href="http://www.maccs.mq.edu.au">http://www.maccs.mq.edu.au</a><br><br>CRICOS Provider No 00002J<br><br>This message is intended for the addressee named and may contain confidential information. If you are not the intended recipient, please delete it and notify the sender. Views expressed in this message are those of the individual sender, and are not necessarily the views of MACCS or Macquarie University.</div><div><br class="khtml-block-placeholder"></div><br class="Apple-interchange-newline"></span></div></span></div></span><br class="Apple-interchange-newline"></div></span><br class="Apple-interchange-newline"> </div><br></body></html>