Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi,
I was wondering if anyone knows of a web application that is soley used for authenticating users. Several web applications come with authentication crippled if you're using the free version and you have to pay for authentication + other features. A good example of this is Splunk. The free version can index about 500 MB worth of syslog every day. However, it comes with no user authentication, so anyone that knows the IP and port can access your Splunk/syslog-ng server. Of course, I can try to prevent this by using iptables, etc. but I would prefer to add an authentication page. What I was thinking of is a small web application that I can define usernames + passwords (permissions aren't important) and only after the user is authenticated from this web page will they be redirected to the Splunk console. Any ideas? Does anyone know of such an authentication application? Thanks for your help.
PS. Ideally, I should purchase the enterprise version, but it currently stands at $5000, which is out of budget. So at least for the time being, I would like a workaround that would provide me with better security. Thanks.
Hi Tinkster,
I'll try to clarify. Splunk (and some other projects) remove the authentication page from their free versions. So you set up their web application and you get it to listen on a network port (eg. 80, 8080, 8000, whatever). What I'm trying to do is try to compensate for Splunk's limitation by seeing if there is any wrapper or web application that I can also start that will give me the authentication part that has been crippled in the free version of Splunk. All I need is the authentication part to add a little security to the setup (so you at least have to know a valid username/password combination before accessing it). Hope the picture's clearer now. Thanks.
You are right about that. In order to drive sales, splunk has killed auth in the free version... but other than that it is still a pretty full featured free application.
I'd recommend following the directions posted by this blogger to utilize apache's built in http auth system (assuming you are using apache).
It's my first post, so they won't let me post a url...
but if you go to the website deckerd.com, and then put in the path /splunk-free-htaccess-protection-using-apache/ (or search google for site:deckerd.com splunk free htaccess) you should find the posting.
If not, post back here, and it will be my second post so i'll be able to post the url :P
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.