[Zope] mod_rewrite rule to close managment screens from outsiders

Riku Voipio Riku.Voipio@tietoenator.com
Tue, 27 Jun 2000 17:05:51 +0300


I'm trying to deny external access to zope maintainance from elsewhere
(just for  sure), with Zope behind apache. However, It 
just doesn't seem work... Sure It's more apache's problem, but I guess 
someone around there has a working solution?

#</IfModule>
dule mod_rewrite.c>
RewriteEngine on
RewriteCond %{HTTP:Authorization}  ^(.*)
RewriteRule ^/Zope(.*) /usr/lib/cgi-bin/Zope/$1 [e=HTTP_CGI_AUTHORIZATION:%1,t=application/x-httpd-cgi,l]

RewriteCond %{REMOTE_ADDR} !^193\.143\.156\.(.*)
RewriteRule ^/Zope.*manage - [F]
#</IfModule>

-- 
Riku Voipio
riku.voipio@tietoenator.com
09-862 60764