[Zope] securing webdav

Tino Wildenhain tino at wildenhain.de
Sat Sep 24 09:21:49 EDT 2005


Am Samstag, den 24.09.2005, 13:39 +0200 schrieb Sascha Ottolski:
> Am Samstag, 24. September 2005 01:08 schrieb David Bear:
> > I run zope in back of apache, and let apache handle tls/ssl.
> >
> > In all the searching on zope.org <http://zope.org> though I haven't found
> > any documents on how to let apache handle securing webdav for zope as well.
> >
> > Anyone see/written such?
> 
> depending on your situation, a ssh tunnel might be feasible; works perfectly. 
> small drawback is, you obviously have to open a ssh session first (ssh-agent 
> is your friend).

Oh, its not that hard either, you can use apache as proxy for
any host:port combination. That means if you really want to
use the separate zope webdav daemon, you can use another
hostname, say https://dav.yourdomain.com/ to
proxy to zopeserver:webdavport
or https://yourdomain.com:8443/ - which works
too (and has the advantage of keeping the ssl-certificate
valid)



More information about the Zope mailing list