[hobbit] restricting access to hobbit
Josh Luthman
josh at imaginenetworksllc.com
Thu Nov 15 16:37:38 CET 2007
I've never used the PAGE statement, but I was under the impression it was
just going to put the following hosts in www/newpage.html instead of
www/bb.html - same directory. Is this not so?
On 11/15/07, Iain Conochie <iain at shihad.org> wrote:
>
> Josh Luthman wrote:
> > With two groups of hosts you still only have one directory accessible
> > by web. This means Apache HTTP authentication is out of the question.
> >
> > That's about all I can tell you =/
>
> Not necessarily!
>
> You can use the PAGE statement in bb-hosts and then you have a new
> directory for each page and sub-page underneath. You can then use apache
> auth for that.
>
> Then for the top level you can also use apache auth for admins
>
> Cheers
>
> Iain
>
> >
> > On 11/15/07, *Phil Wild* <philwild at gmail.com
> > <mailto:philwild at gmail.com>> wrote:
> >
> > No, not quite, I want to make a single hobbit install work for two
> > groups of users, and I don't want group A to have any access to
> > see or do anything to Group B hosts and vice versa.
> >
> > I am tryingto find out if there is a way of restricting the
> > reports/tools/executables to only run against a subset of the
> > hosts defined in bbhosts say like using bbgrep to filter on a tag
> > or something for all functions.
> >
> > Any ideas?
> >
> > Phil
> >
> >
> > On 16/11/2007, *Josh Luthman* < josh at imaginenetworksllc.com
> > <mailto:josh at imaginenetworksllc.com>> wrote:
> >
> > The default Apache configuration that Hobbit makes for you
> > will specify requiring HTTP logins for the cgisec directory.
> > Is this what you're looking for?
> >
> >
> > On 11/14/07, * Phil Wild* <philwild at gmail.com
> > <mailto:philwild at gmail.com>> wrote:
> >
> > Hello,
> >
> > I am looking at setting up hobbit to manage two groups of
> > hosts. I would prefer to just deploy one hobbit
> > installation for both groups. For most of the hobbit web
> > pages, Apache security solves a lot of the browsing issues
> > but the cgi-bin executables and menus are the problem.
> >
> > I want to make sure one group don't have access to see or
> > make changes to the other groups hosts.
> >
> > The areas I see a problem with are:
> >
> > hobbit-enadis.sh
> > bb-findhost.sh
> > hobbit-confreport.sh
> >
> > I would like to restrict the above to only work with a
> > subset of hosts (perhaps a tag in the bbhosts file)
> >
> > The reports generate web pages on the fly and drop the
> > user at the top level page which is not what I would
> > prefer (each group have their own top level page etc.)
> >
> > All nongreen view is also an issue
> >
> > and lastly, manually modifying the URL based on
> > bb-hostsvc.sh to get to a web page for a host in the other
> > groups list is also a problem.
> >
> > Any ideas how I can address this?
> >
> > Thanks
> >
> > Phil
> >
> >
> >
> >
> > --
> > Josh Luthman
> > Office: 937-552-2340
> > Direct: 937-552-2343
> > 1100 Wayne St
> > Suite 1337
> > Troy, OH 45373
> >
> > Those who don't understand UNIX are condemned to reinvent it,
> > poorly.
> > --- Henry Spencer
> >
> >
> >
> >
> > --
> > Tel: 0400 466 952
> > Fax: 0433 123 226
> > email: philwild at gmail.com <mailto:philwild at gmail.com>
> >
> >
> >
> >
> > --
> > Josh Luthman
> > Office: 937-552-2340
> > Direct: 937-552-2343
> > 1100 Wayne St
> > Suite 1337
> > Troy, OH 45373
> >
> > Those who don't understand UNIX are condemned to reinvent it, poorly.
> > --- Henry Spencer
>
>
> To unsubscribe from the hobbit list, send an e-mail to
> hobbit-unsubscribe at hswn.dk
>
>
>
--
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
Those who don't understand UNIX are condemned to reinvent it, poorly.
--- Henry Spencer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.xymon.com/pipermail/xymon/attachments/20071115/89878c7a/attachment.html>
More information about the Xymon
mailing list