<DIV> </DIV>
<DIV>Do you mean the web-site port would be different than workplace port, when we set "workplace.limited.port" property to another port in "opencms.properties"?<BR><BR><B><I>Claus Priisholm <cpr@codedroids.com></I></B> wrote:</DIV>
<BLOCKQUOTE class=replbq style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #1010ff 2px solid">I haven't fiddled with this myself, but maybe it is something you can <BR>utilize for your setup:<BR><BR># workplace limited port<BR># This is the port the workplace access is limited to. With the <BR>opencms.properties<BR># the access to the workplace can be limited to a user defined port. <BR>With this<BR># feature a firewall can block all outside requests to this port with <BR>the result<BR># the workplace is only available in the local net segment.<BR># Default=-1 (no limit)<BR>workplace.limited.port=-1<BR><BR>Maybe this approach can be used with https, ie. setting the port to be <BR>say 443 (or whatever the https port is set to). But if you're behind a <BR>firewall and doing VPN adding HTTPS seems to be a bit of an overkill.<BR><BR><BR>On 5/10-2004, at 7.49, Farnaz Fotrousi wrote:<BR><BR>> Dear Arash,<BR>> <BR>> Thanks a lot for your solution. My problem is that I
don't want to let <BR>> any one to enter opencms workplace through internet. I just want to <BR>> let them work with opencms in VPN, But have a site on internet.<BR>> <BR>> Consider the situation that I implement an advanced authentication and <BR>> put all on internet. If any one find username and password, can enter <BR>> opencms workplace and make any undesirable changes on site.But This <BR>> situation is terrible.<BR>><BR>> So I prefere to have two databases. One for VPN and one for Internet. <BR>> In VPN database, have opencms workplace but in Internet database <BR>> doesn't have or disable it.<BR>> Is it possible?<BR>> It is good to mention that I have lots of dynamic pages.<BR>> <BR>> Best Regards,<BR>> Farnaz.<BR>><BR>><BR>> Arash Kaffamanesh <KAFFAMANESH@DMU-WORLD.DE>wrote:<BR>> > For more security, How it is possible to disable workplace? Do you <BR>> have another solution?<BR>>
<BR>> you can either export your site statically and serve it with a <BR>> webserver (e.g proxied apache or iis), or<BR>> <BR>> connect via https, if you have to use the dynamic mode for several <BR>> reasons (e.g using lucene), or<BR>> <BR>> you can write your own custom login (e.g. with jaas, cas) and replace <BR>> the basic authentification<BR>> <BR>> > For solving this problem I think, I need to install another opencms <BR>> with another DB and disable the workplace in the way that no body can <BR>> enter workplace.<BR>> <BR>> and how would you yourself enter the workplace? ;-)<BR>> <BR>> in short: the fastest secure way is to ssl / tls enable your tomcat <BR>> --> https.<BR>> <BR>> Best Regards,<BR>> Arash<BR>> -----Original Message-----<BR>> From: opencms-dev-bounces@opencms.org <BR>> [mailto:opencms-dev-bounces@opencms.org] On Behalf Of
Farnaz Fotrousi<BR>> Sent: Montag, 4. Oktober 2004 14:34<BR>> To: opencms<BR>> Subject: [opencms-dev] How is it possible to disable workplace?<BR>><BR>> Hi,<BR>> <BR>> I have made a site through opencms.Now I would like to publish this <BR>> site but I fear that If I put this site on the internet, some one can <BR>> crack and enter opencms workplace. So he can make any undesirable <BR>> changes on this site.<BR>> <BR>> For solving this problem I think, I need to install another opencms <BR>> with another DB and disable the workplace in the way that no body can <BR>> enter workplace.<BR>><BR>> For more security, How it is possible to disable workplace? Do you <BR>> have another solution?<BR>> <BR>> Reagards,<BR>> Farnaz<BR>><BR>> Do you Yahoo!?<BR>> New and Improved Yahoo! Mail - Send 10MB messages!<BR>><BR>><BR>> _______________________________________________<BR>> This mail is
send to you from the opencms-dev mailing list<BR>> To change your list options, or to unsubscribe from the list, please <BR>> visit<BR>> http://mail.opencms.org/mailman/listinfo/opencms-dev<BR>><BR>> Do you Yahoo!?<BR>> vote.yahoo.com - Register online to vote today!<BR>><BR>> _______________________________________________<BR>> This mail is send to you from the opencms-dev mailing list<BR>> To change your list options, or to unsubscribe from the list, please <BR>> visit<BR>> http://mail.opencms.org/mailman/listinfo/opencms-dev<BR>--<BR>Claus Priisholm, CodeDroids ApS<BR>+45 48 22 46 46<BR>cpr (you-know-what) interlet.dk - cpr (you-know-what) codedroids.com<BR>http://www.interlet.dk - http://www.codedroids.com<BR><BR><BR><BR>_______________________________________________<BR>This mail is send to you from the opencms-dev mailing list<BR>To change your list options, or to unsubscribe from the list, please
visit<BR>http://mail.opencms.org/mailman/listinfo/opencms-dev</BLOCKQUOTE><p>
<hr size=1>Do you Yahoo!?<br>
Yahoo! Mail is new and improved - <a href="http://us.rd.yahoo.com/mail_us/taglines/new/*http://promotions.yahoo.com/new_mail">Check it out!</a>