home *** CD-ROM | disk | FTP | other *** search
- <HTML>
- <HEAD>
- <META HTTP-EQUIV="Pragma" CONTENT="no-cache">
- <META HTTP-EQUIV="Expires" CONTENT="-1">
- <TITLE>Security Configuration</TITLE>
- </HEAD>
- <BODY bgcolor=#ffffff>
- <A HREF="/sysadmin/index.stm" TARGET=_top>
- <IMG border=0 ALIGN=left SRC="/sysimage/system/console.gif"></A>
- <CENTER><FONT SIZE=6>Security Configuration</FONT></CENTER><BR>
- <CENTER><I>Changes don't take effect until system restart.</I></CENTER><BR>
- <A HREF="/session/reloadsec?RCpage=/sysadmin/index.stm" TARGET=_top>
- <FONT SIZE=+1>Reload Security Rules</FONT></A><BR>
- <A HREF="/sysadmin/security/security.stm?RCStype=redirect">
- <FONT SIZE=+1>Read-only Security View</FONT></A>
- <P>
- <I><B>Wildcard Characters</B></I>
- <BR>
- The star (*) wildcard character matches any character string. The
- question mark (?) wildcard character matches any one character in a
- fixed position. All string matches should be expressed in lower-case.
- <P>
- <CENTER>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Redirects</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>URI to Redirect </TH><TH align=left> URL to Redirect To</TH></TR>
- <TR><TD>/microsoft </TD><TD align=left> http://www.microsoft.com/</TD></TR>
- <TR><TD>/docs </TD><TD align=left> http://techpub.sambar.com/</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=redirect>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Restrictions</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>URI to Restrict </TH><TH align=left> User or Group to Restrict To</TH></TR>
- <TR><TD>/securedir </TD><TD align=left> root staff</TD></TR>
- <TR><TD>/foo/bar </TD><TD align=left> anonymous</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=restrict>
- <P>
- Note: Users must first be defined using the <A HREF="usermgmt/users.htm">
- User Management</A> forms.
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security IP Restrictions</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>URI to Restrict </TH><TH align=left> IP address to Restrict To</TH></TR>
- <TR><TD>/securedir </TD><TD align=left> 140.172.165.*</TD></TR>
- <TR><TD>/foo/bar </TD><TD align=left> 140.172.* 140.175.150.*</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=iprestrict>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Deny</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP to Deny Access </TH><TH align=left> URL to Redirect To</TH></TR>
- <TR><TD>140.175.165.22 </TD><TD align=left> http://www.microsoft.com</TD></TR>
- <TR><TD>140.175.* </TD><TD align=left> http://www.microsoft.com</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=deny>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security HTTP Accept</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Accept </TH><TH align=left> Description</TH></TR>
- <TR><TD>* </TD><TD align=left> Allow all clients</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Allow only corporate users</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=httpaccept>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security FTP Accept</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Accept </TH><TH align=left> Description</TH></TR>
- <TR><TD>* </TD><TD align=left> Allow all clients</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Allow only corporate users</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=ftpaccept>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Mail Accept</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Accept </TH><TH align=left> Description</TH></TR>
- <TR><TD>* </TD><TD align=left> Allow all clients</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Allow only corporate users</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=mailaccept>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Proxy Accept</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Accept </TH><TH align=left> Description</TH></TR>
- <TR><TD>* </TD><TD align=left> Allow all clients</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Allow only corporate users</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=proxyaccept>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security DNS Server/Proxy Accept</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Accept </TH><TH align=left> Description</TH></TR>
- <TR><TD>* </TD><TD align=left> Allow all clients</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Allow only corporate users</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=dnsaccept>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security HTTP Deny</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Deny </TH><TH align=left> Description</TH></TR>
- <TR><TD>140.172.40.78 </TD><TD align=left> Deny mother-in-law</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Deny competitors</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=httpdeny>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security FTP Deny</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Deny </TH><TH align=left> Description</TH></TR>
- <TR><TD>140.172.40.78 </TD><TD align=left> Deny mother-in-law</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Deny competitors</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=ftpdeny>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Mail Deny</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Deny </TH><TH align=left> Description</TH></TR>
- <TR><TD>140.172.40.78 </TD><TD align=left> Deny mother-in-law</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Deny competitors</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=maildeny>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Proxy Deny</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Deny </TH><TH align=left> Description</TH></TR>
- <TR><TD>140.172.40.78 </TD><TD align=left> Deny mother-in-law</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Deny competitors</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=proxydeny>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security DNS Server/Proxy Deny</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>IP Addresses to Deny </TH><TH align=left> Description</TH></TR>
- <TR><TD>140.172.40.78 </TD><TD align=left> Deny mother-in-law</TD></TR>
- <TR><TD>140.175* </TD><TD align=left> Deny competitors</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=dnsdeny>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Host Filter</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>Host to Filter (via Proxy) </TH><TH align=left> Description</TH></TR>
- <TR><TD>ad.linkexchange.com </TD><TD align=left> LinkExchange Ad Server</TD></TR>
- <TR><TD>*.focallink.com </TD><TD align=left> All Focallink Ad Servers</TD></TR>
- <TR><TD>*.playboy.com </TD><TD align=left> Get back to work.</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=hostfilter>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security URL Filter</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>URL to Filter (via Proxy) </TH><TH align=left> Description</TH></TR>
- <TR><TD>/ad/* </TD><TD align=left> No AD pages/images</TD></TR>
- <TR><TD>/advertising/* </TD><TD align=left> No advertising pages/images</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=urlfilter>
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security Host Restrict</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>Host to Restrict </TH><TH align=left> Description</TH></TR>
- <TR><TD>www.mylibrary.com </TD><TD align=left> Restricted to library.</TD></TR>
- <TR><TD>www.otherlibrary.com </TD><TD align=left> Restrict to other library.</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=hostrestrict>
- <P>
- Proxy access is limited to the hosts listed above. This might be used for
- a kiosk (i.e. library browser) where general surfing is not desired.
- <P>
- <HR>
- <P>
- <FONT SIZE=5 COLOR=#990033><B>Security URL Restrict</B></FONT>
- <P>
- <TABLE border=0 cellspacing=4>
- <TR><TH>URL to Restrict </TH><TH align=left> Description</TH></TR>
- <TR><TD>/mylibrary/ </TD><TD align=left> General library URLs.</TD></TR>
- </TABLE>
- <P>
- <RCXcfgshow fname=security.ini section=urlrestrict>
- <P>
- Proxy access is limited to the URLs matching the list above. This might
- be used for a kiosk (i.e. library browser) where general surfing is not desired.
- <P>
- <HR>
- <P>
- </CENTER>
- <HR>
- <BR>
- <A HREF="/"><IMG border=0 SRC="/sysimage/system/powerby.gif"></A>
- </BODY>
- </HTML>
-