Forum OpenACS Q&A: Dumb Newbie Question: Unix Permissions Yet Again
How does one allow the system access to such things yet also keep it from serving it up to the world? Thanks! Rick
"Now, you need to protect the proper administration directories of the ACS. You decide the policy. Here are the directories to consider protecting:
- /doc (or at least /doc/sql/ since some AOLserver configurations will allow a user to execute SQL files)
- any private admin dirs for a module you might have written that are not underneath the /admin directory "
ns_register_filter preauth GET "/admin/*" ad_restrict_to_administrator