  Linuxconf HTML mode access control


  _L_i_n_u_x_c_o_n_f can be operated using any Web browser. This makes Linux much
  more appealing for remote management. You can limit access to this
  facility to certain networks or hosts.

  11..  PPrriinncciippllee

  Using a password to limit access to a machine is a good idea but it
  isn't perfect.  A stolen password is never reported missing!  Limiting
  access to a machine based on a potentially simpler criteria, such as
  physical location, is sometimes better. Limiting access to Linuxconf
  to specific hosts or hosts on specific networks is a way to limit
  potential problems.


  22..  TThhee ddiiaalloogg

  A checkbox lets you activate logging. If activated, Linuxconf will add
  a line to /var/log/htmlaccess.log for every HTTP request.

  The rest of the dialog goes like this. You must specify pairs.  You
  specify a host or a network and optionally a netmask. Your options in
  specifying a host or network are:


  +o  A host name

  +o  A network name

  +o  An IP number

  +o  A device name (eth0 eth1)

  A default netmask is computed based on the type of the first entry (is
  it a host or network?). You can override this by supplying the
  optional netmask.  Also, it is possible to specify a host name with a
  wider netmask, allowing access by all hosts on this host's network.

  Some examples:


               machine1.foo.com
               (empty netmask implies 255.255.255.255)
               10.1.2.0
               255.255.255.0
               eth0
               (empty netmask grabs the current one for eth0)


  The first pair allows access from one machine. The second and third
  allow access to complete networks.


  33..  TThhee AAdddd  bbuuttttoonn

  If you need more space, use the _A_d_d button. It will add four more
  lines to the dialog each time it is depressed.


  44..  TThhee ddeeffaauulltt bbeehhaavviioorr

  Unless you fill in this dialog, _L_i_n_u_x_c_o_n_f will only accept HTTP
  connections from the local network of the first Ethernet adapter.  The
  default behavior is fairly secure.


  55..  NNoottee ttoo ddeemmoo uusseerrss

  When Linuxconf is run in demo mode, it allows access to this dialog
  but does not record any changes. Nevertheless, HTML access is still
  enforced even in demo mode.