httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Brad Nicholes" <BNICHO...@novell.com>
Subject Re: svn commit: r427780 - in /httpd/httpd/trunk: docs/manual/mod/mod_authz_core.xml modules/aaa/mod_
Date Fri, 04 Aug 2006 18:02:30 GMT
>>> On 8/1/2006 at 5:34 PM, in message
<e498c1660608011634h19c5bf81u686b23cba3e28e69@mail.gmail.com>, "Joshua
Slive"
<joshua@slive.ca> wrote:
> On 8/1/06, bnicholes@apache.org <bnicholes@apache.org> wrote:
>> Author: bnicholes
>> Date: Tue Aug  1 15:54:38 2006
>> New Revision: 427780
>>
>> URL: http://svn.apache.org/viewvc?rev=427780&view=rev 
>> Log:
>> Converted the reject directive to be definitive and enabled
directory_merge 
> to merge all of the authorization rules and logic.
> 
> Can you explain how you do something like the following:
> 
> Allow access from anywhere except IPs starting 10.2, but also allow
> access from the specific subnet 10.2.1.
> 
> Joshua

Good point, I have reverted the reject directive being definitive and
determined that I can achieve the same thing through other means.  As
far as answering your question.  You can do it now, this way:

<SatisfyAll>
   reject ip 10.2
   require ip 10.2.1
</SatisfyAll>


Brad

Mime
View raw message