Changes between Version 91 and Version 92 of FAQ


Ignore:
Timestamp:
2013-04-25T11:28:00Z (11 years ago)
Author:
luckyredhot
Comment:

Added: Q30: How can I prevent intruders from using my Tahoe-LAFS web-interface?

Legend:

Unmodified
Added
Removed
Modified
  • FAQ

    v91 v92  
    207207
    208208You can read the following section for more details: [[https://tahoe-lafs.org/trac/tahoe-lafs/wiki/Performance|Performance]].
     209
     210'''[=#Q30_authorization Q30:] How can I prevent intruders from using my Tahoe-LAFS web-interface? Even without knowing exact object caps they will be able to see stats and upload objects.'''
     211
     212A: There is no such built-in authorization capability in Tahoe-LAFS. Security is based on secret object caps.
     213Meanwhile you can forbid unauthorized access to your Tahoe-LAFS WUI by using firewall (iptables, ipfw etc.) and combining it with proxy-server authorization and redirection (nginx, apache, squid etc.)