WebDAV OSX 限制上传的权限

tag-icon tag-icon apache-2.2 permissions
WebDAV OSX 限制上传的权限

我有一个在 OSX ML 上运行的 WebDav 服务器 - 访问是安全的,但我刚刚将文件移动到了外部驱动器

  1. 我不需要修改驱动器上的目录权限,它仍然可以工作并且需要密码......它仍然安全吗?

  2. 如何创建一个不需要密码但不允许上传的别名?

    • 我现在授予的访问权限将允许 GUEST,但也允许上传?

以下是我的访问配置以及该驱动器的权限:

drwxr-xr-x   6 iMac  staff    204 Feb  7 09:54 Download
drwxr-xr-x   5 iMac  staff    170 Feb  5 19:17 STORAGE
drwxr-xr-x   5 iMac  staff    170 Feb  5 19:14 WebDAV

-

# Distributed authoring and versioning (WebDAV)
#
# Required modules: mod_dav, mod_dav_fs, mod_setenvif, mod_alias
#                   mod_auth_digest, mod_authn_file
#

# The following example gives DAV write access to a directory called
# "uploads" under the ServerRoot directory.
#
# The User/Group specified in httpd.conf needs to have write permissions
# on the directory where the DavLockDB is placed and on any directory where
# "Dav On" is specified.

DavLockDB "/usr/var/DavLock"

Alias /webdav "/xyz/WebServer/WebDAV"

<Directory "/xyz/WebServer/WebDAV">
Dav On
Options Indexes MultiViews

Order Allow,Deny
Allow from all
# Add the following line to restrict access to Read or write
Require valid-user

AuthType Digest
AuthName DAV-upload

# You can use the htdigest program to create the password database:
#   htdigest -c "/usr/user.passwd" DAV-upload admin
AuthUserFile "/xyz/uxyz.passwd"
AuthDigestProvider file

# Allow universal read-access, but writes are restricted
# to the admin user.
<LimitExcept GET OPTIONS>
    require user admin
</LimitExcept>
</Directory>


Alias /webdav-private "/Volumes/RAID_MIRROR/WebDAV"

<Directory "/Volumes/RAID_MIRROR/WebDAV">
Dav On
Options Indexes MultiViews

Order Allow,Deny
Allow from all
AuthType Digest
AuthName DAV-Public
AuthUserFile "/xyz/xyz.passwd"
AuthDigestProvider file
<LimitExcept GET OPTIONS>
    #require user public
</LimitEx# Distributed authoring and versioning (WebDAV)

Alias /download "/Volumes/RAID_MIRROR/Download"

<Directory "/Volumes/RAID_MIRROR/Download">
Dav On
Options Indexes MultiViews

Order Allow,Deny
Allow from all
</Directory>

在实际的 Web 服务器(OSX)(而非外部驱动器)上,我使用不同的权限允许 apache 通过组 _www 访问,但外部不需要此限制?

drwxr-xr-x   2 root  wheel    68 Jun 20  2012 CGI-Executables
drwxr-xr-x  14 root  wheel   476 Jan 20  2013 Documents
drwxrwxrwx  29 _www  _www    986 Jan 21 12:24 WebDAV
drwxrwxrwx  24 _www  _www    816 Mar 18  2013 WebDAV-Public

相关内容