Screenshot instructions:
Windows
Mac
Red Hat Linux
Ubuntu
Click URL instructions:
Right-click on ad, choose "Copy Link", then paste here →
(This may not be possible with some types of ads)
You can subscribe to this list here.
| 2001 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
(221) |
Nov
(357) |
Dec
(268) |
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 2002 |
Jan
(348) |
Feb
(246) |
Mar
(299) |
Apr
(230) |
May
(205) |
Jun
(209) |
Jul
(411) |
Aug
(350) |
Sep
(282) |
Oct
(248) |
Nov
(334) |
Dec
(106) |
| 2003 |
Jan
(230) |
Feb
(221) |
Mar
(123) |
Apr
(99) |
May
(127) |
Jun
(152) |
Jul
(128) |
Aug
(103) |
Sep
(71) |
Oct
(97) |
Nov
(105) |
Dec
(75) |
| 2004 |
Jan
(85) |
Feb
(79) |
Mar
(154) |
Apr
(241) |
May
(68) |
Jun
(108) |
Jul
(70) |
Aug
(91) |
Sep
(101) |
Oct
(64) |
Nov
(67) |
Dec
(87) |
| 2005 |
Jan
(46) |
Feb
(82) |
Mar
(81) |
Apr
(59) |
May
(37) |
Jun
(45) |
Jul
(49) |
Aug
(61) |
Sep
(26) |
Oct
(20) |
Nov
(25) |
Dec
(20) |
| 2006 |
Jan
(16) |
Feb
(17) |
Mar
(45) |
Apr
(34) |
May
(14) |
Jun
(17) |
Jul
(5) |
Aug
(22) |
Sep
(24) |
Oct
(5) |
Nov
(44) |
Dec
(18) |
| 2007 |
Jan
(15) |
Feb
(13) |
Mar
(21) |
Apr
(25) |
May
(15) |
Jun
(21) |
Jul
(9) |
Aug
(1) |
Sep
(14) |
Oct
(12) |
Nov
(8) |
Dec
(11) |
| 2008 |
Jan
(10) |
Feb
(15) |
Mar
(3) |
Apr
|
May
(4) |
Jun
(4) |
Jul
(26) |
Aug
(1) |
Sep
(2) |
Oct
|
Nov
(3) |
Dec
|
| 2009 |
Jan
|
Feb
|
Mar
(2) |
Apr
(3) |
May
|
Jun
|
Jul
(1) |
Aug
|
Sep
(1) |
Oct
(4) |
Nov
(2) |
Dec
|
| 2010 |
Jan
|
Feb
|
Mar
|
Apr
(4) |
May
|
Jun
|
Jul
|
Aug
(1) |
Sep
|
Oct
(1) |
Nov
(1) |
Dec
|
| 2011 |
Jan
|
Feb
(1) |
Mar
(3) |
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2015 |
Jan
|
Feb
|
Mar
|
Apr
(1) |
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
|
Dec
|
| 2017 |
Jan
|
Feb
|
Mar
|
Apr
|
May
|
Jun
|
Jul
|
Aug
|
Sep
|
Oct
|
Nov
(1) |
Dec
|
| S | M | T | W | T | F | S |
|---|---|---|---|---|---|---|
|
|
|
|
|
1
(1) |
2
(1) |
3
|
|
4
(1) |
5
|
6
(2) |
7
(6) |
8
(2) |
9
(1) |
10
(1) |
|
11
|
12
|
13
|
14
|
15
(2) |
16
|
17
|
|
18
|
19
(2) |
20
(1) |
21
|
22
|
23
|
24
|
|
25
|
26
|
27
|
28
|
29
|
30
|
31
|
|
From: JupiterHost.Net <mlists@ju...> - 2005-12-07 23:32:47
|
Neal Richter wrote:
> If you are dilligent enough in verifying input from the user you can
> lock-down what the user could enter to the file. You could also have a
> process to copy the user/PHP created script to the main htdig.conf file
> to further isolate it.
Put PHP's security problems aside, if the file is owned by the user or
nobody (IE the script can write to it) then the user can open it in a
text editor via SSH and change it, so all the hours you'd spend
limiting, checking and hoping you didn't miss any sort of "bad entry"
injection, is all for naught because they have write access to it.
> I understand your idea. It's a good idea. I am trying to come up with
> a work-alike for you, as it's unlikely that the idea will be implemented
> in 3.1.6 or 3.2.bx.
I don't need an interface to edit a config file (which in itself isn't a
bad idea and has been done) I needed to know for sure if:
include: file/they/can/write/to/by/whatever/means.conf
important: they should not be able to change this via their include
then they can put whatver they want in
file/they/can/write/to/by/whatever/means.conf and "important" will
always be "they should not be able to change this via their include"
> The other alternative is to set up the defaults.cc file how you want it
> and make a custom binary, then the htdig.conf file would only contain
> the user overrides you allow. A perl script could validate that only a
> discrete set of configs are contained in the file and filter-out others
> before passing to htsearch via a command-line switch. htdig -c xxx.conf.
To much work and ways to get around it still :), just:
include: file/they/have/write/access/to.conf
# directives you don't want chanegd here
then you're directives are "safe" and there's zero overhead mainteneance
wise because only I can write to the file described above.
What *would* be a nice addition to htdig is to make it catch include: loops:
in main.conf
include: user.conf
in user.conf
include: main.conf
it'd include user.conf and when it got to the include: user.conf line
throw a warning/log that main.conf is already part of the party and then
ignore it.
That'd be trivial to do and would be extremely handy :)
Thanks for the input though
|
|
From: JupiterHost.Net <mlists@ju...> - 2005-12-07 15:32:59
|
Kurt Cypher wrote: > JupiterHost.Net wrote: > >> Excellent! Exactly what I'd been looking for :) although that text >> isn't at that url for me, weird?? >> > I should have mentioned that once you click on > <http://www.htdig.org/confindex.html>;, then you click on "Alphabetical" > over on the left-hand side, under "Attributes", then scroll down and > click on "include". No worries, I should've used a bit of common sense to figure out where include was documented :) Have a great day Kurt |
|
From: Kurt Cypher <kurt.cypher@wr...> - 2005-12-07 15:00:33
|
JupiterHost.Net wrote: > Excellent! Exactly what I'd been looking for :) although that text isn't > at that url for me, weird?? > I should have mentioned that once you click on <http://www.htdig.org/confindex.html>;, then you click on "Alphabetical" over on the left-hand side, under "Attributes", then scroll down and click on "include". >> This paragraph does bring up the interesting point of what could >> happen if the user adds an include that references the main config file: >> >> common.conf -> include: user.conf >> user.conf -> include: common.conf >> >> I don't know exactly how that would manifest itself, but I imagine it >> wouldn't be a good thing. > > > Good point, I'll have to consider that as well. At least a big fiery > warning that says: > You will 100% guaranteed break your config if you include: the > configuration file that uses this file. > > Thanks again Kurt! > You're welcome. Kurt |
|
From: JupiterHost.Net <mlists@ju...> - 2005-12-07 14:40:57
|
>> b) if htdig uses the last instance of it then I need to specify it last >> to override anything they put in: >> >> include: their/file >> whatever: they shouldn't be able to change this >> >> Which way would make it so that even if they specified "whatever:" it >> woudl still use the "whatever:" in the main config that they do not >> have access to? >> >> > > From the definition of "include" at <http://www.htdig.org/confindex.html>; > > "The last definition of an attribute is the one that applies, so after > including a file, any of its definitions can be overridden with > subsequent definitions. This can be useful when setting up many > configurations that are mostly the same, so all the common attributes > can be maintained in a single configuration file. The include directives > can be nested, but watch out for nesting loops." > > So, according to that, anything you do not want the user to be able to > change would need to be after the include statement, which would be > option "B" above. Excellent! Exactly what I'd been looking for :) although that text isn't at that url for me, weird?? > This paragraph does bring up the interesting point of what could happen > if the user adds an include that references the main config file: > > common.conf -> include: user.conf > user.conf -> include: common.conf > > I don't know exactly how that would manifest itself, but I imagine it > wouldn't be a good thing. Good point, I'll have to consider that as well. At least a big fiery warning that says: You will 100% guaranteed break your config if you include: the configuration file that uses this file. Thanks again Kurt! |
|
From: Kurt Cypher <kurt.cypher@wr...> - 2005-12-07 14:20:05
|
JupiterHost.Net wrote: > > No need for any sort of special editor or interface, just in the config > file they do not have write access to does it need to be A or B: > > a) if htdig uses the first instance of it then I need to specify it first: > > whatever: they shouldn't be able to change this > include: their/file > > > b) if htdig uses the last instance of it then I need to specify it last > to override anything they put in: > > include: their/file > whatever: they shouldn't be able to change this > > Which way would make it so that even if they specified "whatever:" it > woudl still use the "whatever:" in the main config that they do not have > access to? > > From the definition of "include" at <http://www.htdig.org/confindex.html>; "The last definition of an attribute is the one that applies, so after including a file, any of its definitions can be overridden with subsequent definitions. This can be useful when setting up many configurations that are mostly the same, so all the common attributes can be maintained in a single configuration file. The include directives can be nested, but watch out for nesting loops." So, according to that, anything you do not want the user to be able to change would need to be after the include statement, which would be option "B" above. This paragraph does bring up the interesting point of what could happen if the user adds an include that references the main config file: common.conf -> include: user.conf user.conf -> include: common.conf I don't know exactly how that would manifest itself, but I imagine it wouldn't be a good thing. Kurt |
|
From: Victor Roman <roman_v@ro...> - 2005-12-07 02:26:07
|
Thanks Mike, I appreciate the response. I also have the problem of not being able to compile on a public system. Mine is a 'smaller' problem with Linux to Linux and just making sure the libraries are compatible. This seems to be possible only if the libraries are identical - my environment is (kernel 2.4, GCC 3.3.2). Victor ----- Original Message ----- From: "Mike Causer" <mikec@...> To: "Victor Roman" <roman_v@...> Cc: <htdig-general@...> Sent: Monday, December 05, 2005 8:19 PM Subject: Re: [htdig] Moving ht://Dig > On Thu, 1 Dec 2005 11:19:47 -0500 "Victor Roman" <roman_v@...> wrote: > > > Is it possible to move ht://Dig to another server with just path > > adjustments and without reinstallation? > > Yes. I build the db on one Linux distro and run the public version on > another. I cannot compile on the public system, nor install rpms, so I > have to disassemble an rpm for the target system and copy over the > binaries. > > To avoid potential snafus I keep the htdig directory structure of my > home machine as close as possible to the target system, so that there > are only two lines in the config file to be commented out between the > systems. > > I'm confident this could be made to work between Linux and Solaris, and > probably HPUX/AIX etc. The more Unices you've wrestled with the easier > it gets (and the more grey hair you have -- but they're ALL better than > wrangling JCL on a CDC6600!). > > > Your question is a little light on detail, so it may be that you have a > smaller problem than I think, eg between two RedHat servers, or maybe a > bigger problem that I think eg Solaris to W2K. A bit more description > of your circumstances would get a better answer. > > > Mike > -- > Mike Causer Email - mailto:mikec@... > GPG KeyID 1C2DDA07 WWW - http://www.mikecauser.com > Flood the fen again! - Wicken Fen enlargement - http://www.wicken.org.uk > |