Bii a ṣe le Daabobo Awọn ilana wẹẹbu ni Apache Lilo Oluṣakoso .htaccess
Nigbati o ba ṣakoso awọn iṣẹ akanṣe lori ayelujara, igbagbogbo o nilo lati ni opin aaye si iṣẹ yẹn lati le daabobo rẹ si agbaye ita. Awọn idi oriṣiriṣi le wa fun iyẹn - fun apẹẹrẹ o fẹ ṣe idiwọ awọn crawlers ẹrọ wiwa lati wọle si aaye rẹ lakoko ti o tun wa ni ipele idagbasoke.
Ninu ẹkọ yii, Emi yoo fi ọ han bi o ṣe le ṣe aabo ọrọigbaniwọle awọn ilana oju opo wẹẹbu oriṣiriṣi ni olupin ayelujara Apache. Awọn ọna pupọ lo wa ti o le ṣe aṣeyọri eyi, ṣugbọn a yoo ṣe atunyẹwo meji ninu wọn eyiti a nlo julọ.
Ọna akọkọ ṣe atunto aabo ọrọigbaniwọle taara ninu faili iṣeto Apache, lakoko ti ekeji nlo faili .htaccess.
Awọn ibeere
Lati le ṣeto aabo ọrọ igbaniwọle fun awọn ilana wẹẹbu rẹ, iwọ yoo nilo lati ni:
- Olupin wẹẹbu Apache ti n ṣiṣẹ
- Itọsọna AllowOverride AuthConfig gbọdọ wa ni muṣiṣẹ ninu faili iṣeto Apusọ.
Ṣeto Ilana Idaabobo Ọrọ igbaniwọle Apache
1. Fun ẹkọ yii, a yoo ṣe aabo itọsọna akọkọ root root /var/www/html . Lati daabobo itọsọna naa, ṣii iṣeto ti Apache rẹ:
---------------- On RedHat/CentOS based systems ---------------- # vi /etc/httpd/conf/httpd.conf ---------------- On Debian/Ubuntu based systems ---------------- # nano /etc/apache2/sites-available/000-default.conf
2. Wa gbongbo Iwe-aṣẹ Apache fun/var/www/html ki o ṣafikun awọn nkan wọnyi bi a ti daba:
<Directory /var/www/html> Options Indexes Includes FollowSymLinks MultiViews AllowOverride All Order allow,deny Allow from all </Directory>
<Directory /var/www/html> Options Indexes Includes FollowSymLinks MultiViews AllowOverride All Require all granted </Directory>
3. Fipamọ faili ki o tun bẹrẹ Apache nipa lilo pipaṣẹ wọnyi:
--------------- On Systemd ------------------- # systemctl restart httpd [On RedHat based systems] # systemctl restart apache2 [On Debian based systems] --------------- On SysV init ----------------- # service httpd restart [On RedHat based systems] # service apache2 restart [On Debian based systems]
4. Bayi a yoo lo aṣẹ htpasswd lati ṣe orukọ olumulo ati ọrọ igbaniwọle fun itọsọna wa ti o ni aabo. A lo aṣẹ yii lati ṣakoso awọn faili olumulo fun ijẹrisi ipilẹ.
Ilana gbogbogbo ti aṣẹ ni:
# htpasswd -c filename username
Aṣayan -c n ṣalaye faili ti yoo tọju ọrọ igbaniwọle ti a papamọ ati orukọ olumulo ṣalaye olumulo fun ìfàṣẹsí naa.
5. Faili ọrọ igbaniwọle wa nilo lati wa ni ita ti itọsọna wiwọle ti oju opo wẹẹbu ti Apache ki o le ni aabo daradara. Fun idi naa, a yoo ṣẹda itọsọna tuntun:
# mkdir /home/tecmint
6. Lẹhin eyi a yoo ṣe agbekalẹ orukọ olumulo ati ọrọ igbaniwọle wa ti yoo wa ni fipamọ ni itọsọna yẹn:
# htpasswd -c /home/tecmint/webpass tecmint
Ni kete ti o ba pa aṣẹ yii ṣẹ iwọ yoo ni lati tẹ ọrọ igbaniwọle sii fun olumulo tuntun wa \"tecmint \" lẹẹmeji:
Lẹhin eyi a yoo nilo lati rii daju pe Afun ni anfani lati ka faili “webpass” naa. Fun idi naa, iwọ yoo nilo lati yi ini ti faili yẹn pada pẹlu aṣẹ atẹle:
---------------- On RedHat/CentOS based systems ---------------- # chown apache: /home/tecmint/webpass # chmod 640 /home/tecmint/webpass
---------------- On Debian/Ubuntu based systems ---------------- # chown www-data /home/tecmint/webpass # chmod 640 /home/tecmint/webpass
7. Ni aaye yii olumulo tuntun ati ọrọ igbaniwọle wa ti ṣetan. Bayi a nilo lati sọ fun Apache lati beere ọrọ igbaniwọle nigbati o wọle si itọsọna itọsọna wa. Fun idi naa, ṣẹda faili ti a pe ni .htaccess in/var/www/html:
# vi /var/www/html/.htaccess
Ṣafikun koodu atẹle ninu rẹ:
AuthType Basic AuthName "Restricted Access" AuthUserFile /home/tecmint/webpass Require user tecmint
8. Bayi fi faili naa pamọ ki o fi eto rẹ si idanwo naa. Ṣii ẹrọ aṣawakiri rẹ ki o tẹ adirẹsi IP rẹ tabi orukọ ìkápá sii ninu aṣàwákiri wẹẹbù, fun apẹẹrẹ:
http://ip-address
O yẹ ki o ṣetan fun orukọ olumulo ati ọrọ igbaniwọle:
Tẹ orukọ olumulo ati ọrọ igbaniwọle ti o ṣeto sii lati tẹsiwaju si oju-iwe rẹ.
Afikun Awọn akọsilẹ
Ti o ba nlo alejo gbigba pinpin, o ṣee ṣe kii ṣe iwọle si faili iṣeto Afun. Sibẹsibẹ ọpọlọpọ awọn ile-iṣẹ alejo gbigba ti mu aṣayan “AllowOverride Gbogbo” ṣiṣẹ nipasẹ aiyipada. Eyi tumọ si pe iwọ yoo nilo nikan lati ṣe ina orukọ olumulo ati ọrọ igbaniwọle ati lẹhinna yan itọsọna ti o fẹ lati daabobo. Eyi ṣe pataki iṣẹ-ṣiṣe rẹ.
Ipari
Mo nireti pe o rii ikẹkọ yii wulo ati ṣe iranlọwọ fun ọ lati ṣaṣeyọri ibi-afẹde rẹ. Ti o ba ni ibeere tabi awọn asọye eyikeyi, jọwọ ma ṣe ṣiyemeji lati firanṣẹ wọn ni apakan ni isalẹ.