Tags:
create new tag
view all tags

SID-02291: Securing Attachments without twiki.conf?

Status: Asked Asked TWiki version: 6.0.2 Perl version: 5.10.1
Category: CategorySecurity Server OS: CentOS 6, kernel 3.12.65-188.ELK6.x86_64 Last update: 5 years ago

I'm using shared hosting, so I do not have root access and therefore cannot use twiki.conf. SecuringFileAttachments doesn't explicitly address using .htaccess, though it appears there might have been a mod_rewrite method in a previous version. The question https://twiki.org/cgi-bin/view/Support/SID-00721 seems to be the same issue, but possibly incomplete. I attempted to use it, and was promptly rejected by Apache because of "Options ExecCGI FollowSymLinks" Is there a best practice to secure file attachments without root access?

-- Jeff Ballenski - 2017-01-17

Discussion and Answer

      Change status to:
ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.
SupportForm
Status Asked
Title Securing Attachments without twiki.conf?
SupportCategory CategorySecurity
TWiki version 6.0.2
Server OS CentOS 6, kernel 3.12.65-188.ELK6.x86_64
Web server Apache 2.2.31
Perl version 5.10.1
Browser & version Chrome 55.0.2883.87 m
Edit | Attach | Watch | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r2 - 2020-04-26 - PeterThoeny
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.