Return-Path: 
 <users-return-25508-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 19816 invoked by uid 500); 9 Apr 2003 14:32:14 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
list-post: <mailto:users@httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 19588 invoked from network); 9 Apr 2003 14:32:11 -0000
Received: from montreal-hs-64-26-155-159.s-ip.magma.ca (HELO oggy.wasmer.ca)
 (64.26.155.159)
  by daedalus.apache.org with SMTP; 9 Apr 2003 14:32:11 -0000
Received: from vince2 ([192.168.0.202])
	by oggy.wasmer.ca (8.12.9/8.12.8) with SMTP id h39EWBfb025574
	for <users@httpd.apache.org>; Wed, 9 Apr 2003 10:32:12 -0400 (EDT)
Message-ID: <001a01c2fea5$211553e0$ca00a8c0@wasmer.ca>
From: "Jean-Luc Wasmer" <jl.apache@wasmer.ca>
To: <users@httpd.apache.org>
References: <000201c2fe5a$099c86c0$0300a8c0@gejit.com>
Date: Wed, 9 Apr 2003 10:34:29 -0400
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.2314.1300
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
Subject: Re: [users@httpd] Access control for files outside DocumentRoot

> Looks fine but you are missing an alias to the root path, if you do
> directory / on the directory directive it will think that you are
assigning
> permissions to the documentroot folder, therefore you'd need to add to the
> VHost container:
> Alias /root
> And then change the / to /root.

What is the other argument of Alias?
I tried:
    Alias /root /
    <Directory /root>
But I still get access to the pages (I get a 403 error only when accessing
http://intranet.domain.com/root )

I also tried:
    Alias /root /
    <Directory />
with the same result....

By the way, I'm running apache-2.0.44


JL

> -----Original Message-----
> From: Jean-Luc Wasmer [mailto:jl.apache@wasmer.ca]
>
> Hi,
>
> I'm trying to control the access to _any_ file on the filesystem, eg any
> file in /.
> I need this because I have included files that are outside DocumentRoot
> and the Allow-Deny directives need to be in a <Directory> section.
>
> The following setting lets everybody in:
>
> <VirtualHost *:80>
>     ServerName intranet.domain.com
>     DocumentRoot /data/htdocs/intranet
>     Include /usr/pkg/etc/httpd/services.conf
>     <Directory />
>         Order Allow,Deny
>         Allow from 192.168.0.0/255.255.255.0
>         Deny from All
>     </Directory>
> </VirtualHost>
>
> Am I doing the right thing?



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org