You are going to need to add some security.
You have several options. You can use htpasswd ,and put a username/password prompt in front of those directories,
or you can do directory security.
Directory security would look something like this:
<Directory /var/www/webmin/>
Order, Deny, Allow
Deny from All
Allow from 192.168.0.
</Directory>
If you want to use username/password protection so that you can still access these directories from the outside,
then I would add htpasswd:
<Directory /var/www/webmin/>
AllowOverride AuthConfig
AuthType Digest
AuthName "something_goes_here"
AuthDigestProvider file
AuthUserFile /etc/apache2/htaccess/digest_file_name
Require valid-user
Order, Deny, Allow
Deny from All
Allow from 192.168.0.
Satisfy Any
</Directory>
I use the 2nd option for myself. It allows passowrd-less access from my local lan,
but when I connect from outside, it requires a username/password.
|