wucong0 2014-10-18
CentOS7 安装最新版本 AWStats,在httpd.conf 中加入了alias,可以直接访问网址就进入 浏览。十分不安全。
给访问加上密码的方法:
[root@localhost wwwroot]# htpasswd -bc /home/awstats/wwwroot/.htpasswd aaa 123456
[root@localhost wwwroot]# nano /etc/httpd/conf/httpd.conf #修改 Apache 配置文件,给awstats 加上限制:
Alias /awstatscss "/home/awstats/wwwroot/css/"
Alias /awstatsicons "/home/awstats/wwwroot/icon/"
ScriptAlias /awstats/ "/home/awstats/wwwroot/cgi-bin/"
#
# This is to permit URL access to scripts/files in AWStats directory.
#
<Directory "/home/awstats/wwwroot">
Options None
AllowOverride None
AuthName "Members Only"
AuthType basic
AuthUserFile /home/awstats/wwwroot/.htpasswd
require valid-user
#Require all granted
</Directory>