本人使用的是emos1.5X64
1:源码上! 修改/var.............../extmail/html/default/index.html 删除以下几行 <div id="lgextman" style="display:none;"> <TABLE cellpadding=2px> <form name="extmanlogin" action="/extman/cgi/index.cgi" method="post"> <input type=hidden name=action value=valid_login> <TR> <TD><%username%></TD> <TD><INPUT TYPE="text" class="input_n" NAME="username"><br/><span class="tip"><%hint_extmail_login%></span></TD> </TR> <TR> <TD><%password%></TD> <TD><INPUT TYPE="password" class="input_n" NAME="password"></TD> </TR> <TR> <TD></TD> <TD><INPUT TYPE="checkbox" NAME=""><%remember_one%></TD> </TR> <TR> <TD></TD> <TD><INPUT TYPE="submit" class="input_s" value="<%login%>"> </TD> </TR> </form> </TABLE> </div> 2:修改vhost.extmail.conf 放出我的实例大家可以参考一下 # VirtualHost for ExtMail Solution <VirtualHost *:443> ServerName ***************** DocumentRoot /var/www/extsuite/extmail/html/ SSLEngine on SSLOptions +StrictRequire SSLCertificateFile /etc/postfix/tls/server.crt SSLCertificateKeyFile /etc/postfix/tls/server.key ScriptAlias /extmail/cgi/ /var/www/extsuite/extmail/cgi/ Alias /extmail /var/www/extsuite/extmail/html/ #ScriptAlias /extman/cgi/ /var/www/extsuite/extman/cgi/ #Alias /extman /var/www/extsuite/extman/html/ #Alias /monitor /var/www/extsuite/monitor/ # Suexec config SuexecUserGroup vuser vgroup </VirtualHost> 另外,把extman单独拎出来! apache conf.d 下面新建一个extman.conf Alias /extman/cgi/ /var/www/extsuite/extman/cgi/ Alias /extman /var/www/extsuite/extman/html/ <Location "/extman/cgi"> SetHandler cgi-script Options +ExecCGI AllowOverride AuthConfig Order allow,deny Allow from 192.168.1.7 AuthType basic AuthName "extman Web User Interface" AuthUserFile "/usr/share/dspam/webui/cgi-bin/.htpasswd" require valid-user </Location> 我能想到的基本上大概就这些,分别从源码限制登录,和apache目录安全入手,以上是本人的几点搓见 |
转载于:https://blog.51cto.com/fghjk/836791