Login, Security, and the like
Posted: Fri Nov 22, 2002 2:01 pm
Hi all,
I am in the midst of moving five of our sites on to a LVS cluster. This creates some new needs for security due to the fact that some of the sites are internal and some are external. I am running Redhat Advanced Server 2.1 with Piranha handling the LVS. I am running Apache 1.3.27 with PHP 4.2.3 Here is what I am trying to do:
The internal sites cannot be accessible externally... as it stands a simple entry into a "hosts" file will probably allow someone to enter.
If a user bookmarks a page they can re-access that page without logging in. It really will not do them much good but it is a security issue none the less.
... Anyone have any suggestions?
John M
I am in the midst of moving five of our sites on to a LVS cluster. This creates some new needs for security due to the fact that some of the sites are internal and some are external. I am running Redhat Advanced Server 2.1 with Piranha handling the LVS. I am running Apache 1.3.27 with PHP 4.2.3 Here is what I am trying to do:
The internal sites cannot be accessible externally... as it stands a simple entry into a "hosts" file will probably allow someone to enter.
If a user bookmarks a page they can re-access that page without logging in. It really will not do them much good but it is a security issue none the less.
... Anyone have any suggestions?
John M