« NMPDR v19 is Now Live | Main | Important New Attribute Methods »

Attribute Server Security

Somehow when I updated the attribute server last night a bogus .htaccess file got pulled in. This file caused an Internal Server Error each time the attribute server was accessed.

The goal of the file was to prevent unauthorized access to the Attribute Control Center. The problem was that it used a directive which works on the Annotator SEED, but not in the attribute server. so every use of a CGI script on the attribute server failed with a message about an error in the .htaccess file. The tricky part of fixing it was allowing general access to the attribute data without allowing general access to the control center. I accomplished this using a FilesMatch directive, a process which I believe will be causing me nightmares for several weeks.

Anyway, the attribute server is back, and is considerably more secure than it used to be.

Posted by Bruce on April 23, 2007 4:15 PM |

Leave a comment

HTML is not allowed in comments; however, if you put in a raw URL (http://www.somewhere.com/page.html) it will automatically be converted to a link.. Also, it is likely your comment will not appear unless you refresh the page manually after posting it.

Search


About

This page contains a single entry from the blog posted on April 23, 2007 4:15 PM.

The previous post in this blog was NMPDR v19 is Now Live.

The next post in this blog is Important New Attribute Methods.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]
Powered by
Movable Type 4.01