[mapserver-users] Access control for wms served from mapserver cgi

[Rahkonen Jukka]

Hi,

If it is easy to limit access to mapserv executable, then how about making a few copies of the executable and tie each copy to its own mapfile in httpd.conf?

SetEnvIf Request_URI "/cgi-bin/wms1.exe?" MS_MAPFILE=d:/ms4w/apps/wms1.map
SetEnvIf Request_URI "/cgi-bin/wms2.exe?" MS_MAPFILE=d:/ms4w/apps/wms2.map

Just thinking, I do not know if this is secure at all.  

-Jukka Rahkonen-
 

> -----Alkuperäinen viesti-----
> Lähettäjä: mapserver-users-bounces at lists.osgeo.org 
> [mailto:mapserver-users-bounces at lists.osgeo.org] Puolesta Mike Leahy
> Lähetetty: 20. lokakuuta 2008 3:58
> Vastaanottaja: mapserver-users at lists.osgeo.org
> Aihe: [mapserver-users] Access control for wms served from 
> mapserver cgi
> 
> Hello list,
> 
> Does anyone on this list know of a simple strategy for 
> configuring Apache to restrict access to specific mapfiles 
> served as WMS through the cgi mapserv program?  I'd like to 
> do is restrict access to specific IPs for URLs like the following: 
> http://host/cgi-bin/mapserv?map=/path/to/file.map[&...].
> 
> It's easy enough to limit access to the mapserv executable 
> itself, but I'd rather do it on a per-mapfile basis.  I tried 
> a couple things using mod_rewrite in apache, but anything 
> I've tried so far doesn't seem to work.
> 
> I know that this sort of question has been asked before, but 
> after searching/tinkering for a while, I haven't found a 
> solution that works for me yet.
> 
> Thanks for any suggestions,
> Mike
> _______________________________________________
> mapserver-users mailing list
> mapserver-users at lists.osgeo.org
> http://lists.osgeo.org/mailman/listinfo/mapserver-users
>