This forum has been moved here:
Helicon Tech Community Forum

Helicon Ape (Forum Locked Forum Locked)
 Helicon Tech : Helicon Ape
Subject Topic: Restrict Write Access
Author
Message |
Willids
Newbie


Joined: 21 May 2009
Location: United Kingdom
Posts: 15
Posted: 12 September 2011 at 2:41am

We have a wordpress blog and want to restrict write access to certain folders as I am sick of it been hacked.

Can this be done with Helicon APE ?

Thanks
Back to Top
 
Anton
Admin Group


Joined: 30 January 2007
Location: Ukraine
Posts: 10519
Posted: 12 September 2011 at 3:24am

There are several opportunities for blocking access with Helicon Ape mod_auth...
Please choose the one which better suits you from the list here http://www.helicontech.com/ape/

__________________
Regards,
Anton
Back to Top
 
Willids
Newbie


Joined: 21 May 2009
Location: United Kingdom
Posts: 15
Posted: 12 September 2011 at 3:53am

The probloem we have is the site is being injected with eval code so we need something to stop the current being alterd and this is all new to me as I don't deal with Helicon much, so asking me to choose is like taking a kid into a sweet shop and asking them what they want.

We need to restrict access to the plugins folder to stop code being injected into the plugins.


Edited by Willids - 12 September 2011 at 4:26am
Back to Top
 
Anton
Admin Group


Joined: 30 January 2007
Location: Ukraine
Posts: 10519
Posted: 12 September 2011 at 7:34am

One clarification: do you need to restrict access for specific IPs or for specific group of users or...?

__________________
Regards,
Anton
Back to Top
 
Willids
Newbie


Joined: 21 May 2009
Location: United Kingdom
Posts: 15
Posted: 14 September 2011 at 8:26am

we need to be able to restrict write access to the following folders/files for everyone, even the hosting customer so if he wants to write anything he will have to remove file then put back when finished.

Plugins
Themes
Upgrades
Uploads


Back to Top
 
Anton
Admin Group


Joined: 30 January 2007
Location: Ukraine
Posts: 10519
Posted: 15 September 2011 at 2:40am

Ok, Let me explain. Helicon Ape is not capable of changing NTFS permissions like Write.
What we can suggest is limit access to the above folders by restricting POST and PUT requests.
The config will be:

<Limit POST PUT>
   Deny from All
</Limit>

This config should be put into the .htaccess files in above folders.

__________________
Regards,
Anton
Back to Top
 

Sorry, you can NOT post a reply.
This forum has been locked by a forum administrator.

Printable version Printable version