[dokuwiki] Re: Securing Downloads

• From: Andreas Gohr <andi@xxxxxxxxxxxxxx>
• To: dokuwiki@xxxxxxxxxxxxx
• Date: Fri, 9 Nov 2007 11:02:53 +0100

On Fri, 9 Nov 2007 09:06:16 +0100
Tan-Vinh Nguyen <tan@xxxxxxxxxx> wrote:

> This is not a dokuwiki issue

well it is... hehe usually I am the rude one here ;-)
 
All files offered through DokuWiki's media syntax are delivered
through the lib/exe/fetch.php which will check ACLs and handles caching
of external files (if enabled). Because all downloads go through this
single PHP file, no apache config will help you to protect them.

The only way to secure acccess to them is by using the ACLs - they will
ensure only logged in users with proper (read) permissions are allowed
to download the files of a certain namespace.

There is no IP based protection in DokuWiki, but there is AFAIK a tip
how to add IP checking to the ACL mechanism - search the Wiki.

Andi


-- 
http://www.splitbrain.org

• Follow-Ups:
  • [dokuwiki] Re: Securing Downloads
    • From: Jan Tönjes

• References:
  • [dokuwiki] Securing Downloads
    • From: Jan Tönjes
  • [dokuwiki] Re: Securing Downloads
    • From: Tan-Vinh Nguyen

Other related posts:

• » [dokuwiki] Securing Downloads
• » [dokuwiki] Re: Securing Downloads
• » [dokuwiki] Re: Securing Downloads
• » [dokuwiki] Re: Securing Downloads
• » [dokuwiki] Re: Securing Downloads
• » [dokuwiki] Re: Securing Downloads
• » [dokuwiki] Re: Securing Downloads
• » [dokuwiki] Re: Securing Downloads

1. Home
2. dokuwiki
3. Archive
4. 11-2007

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---