Securing a server side directory

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I want  to create a webpage that everyone can read but only those with
a password can  post.

How would be the  best way to do that?

Would putting the application to  post in a protected directory and
the application to display in a public directory work. Maybe I am
asking can you make a directory on the server public read and private
post.  Will cross see/show work?

I need to keep this very simple. I would like it be be simular to a
cookbook/recipe type of thing. It is for the club members to post
pictures and instructions on the fly patterens they tie. I want it to
be world viewable but only club members with a password can post.

The members of this fly fishing club are really not interested in
computers. They are older and a computer is a tool to use for work or
communications. If you can't squirt some oil in it to fix it they are
at a loss. Their interests lay in fishing and good wine and trophy
wives (probable  someone elses).

I am getting up in years and need to leave something easy  to
administer when I go.

If you can help  with this information it  will be appreciated.


Re: Securing a server side directory

On Sat, 18 Apr 2009 11:47:27 -0700 (PDT), Dave Kelly put finger to
keyboard and typed:

Quoted text here. Click to load it

Install Wordpress, create users with "author" or "contributor" rights
and let them post.

Quoted text here. Click to load it

That's precisely the sort of tool for which a basic CMS like Wordpress
is appropriate. You could use something more complex and feature-rich
if you want (Joomla, Website Baker, Mambo, Drupal, etc), but if
simplicity is what you're after then it's hard to beat Wordpress.

Quoted text here. Click to load it

Again, that's precisely what a CMS is for. The contributors don't need
to have any more understanding of computers than they would to create
a simple word processor document. And, even more importantly, they
don't need to know anything about web authoring.

Quoted text here. Click to load it

And another advantage of a standard, open source CMS is that anyone
else can take it on after you, without you needing to teach them what
you've done - it's all fully documented and there's plenty of online
advice available for new administrators.


Re: Securing a server side directory

Dave Kelly wrote:

Quoted text here. Click to load it

You could separate them and require people to log into a password
protected area to use the script that allows them to post, or better
yet, just have a script where people need to sign up to post and maybe
you can set certain users to post or not based on an approved
membership. There are a lot of existing scripts that do this, many open

Re: Securing a server side directory

On 2009-04-18, Dave Kelly wrote:
Quoted text here. Click to load it

   Put a password field on the form and have the script that does the
   posting check it.

   Chris F.A. Johnson, webmaster         <
   Shell Scripting Recipes: A Problem-Solution Approach (2005, Apress)

Re: Securing a server side directory

Quoted text here. Click to load it

Thank you for the suggestions. You are suggesting a little more
security than I would like to get into. I presently have a small
guestbook app. hacked to receive only name.  email. phone to use for a
signup sheet for our outings. I put it in a protected directory on the
server and everyone uses the same user name and password.  Not very
strong but keeps non-members from harvesting names and addresses.

You would be surprised how many of the members can not remember the
most outrages user name - password I could think of at the time.

I would like to keep input as simple as possible.

So  that leads me back to my original  post. Do things like this work
between  protected / non-protected directories

At most I would like to keep someone from surfing in and posting off
topic images and text.
I  only need one image of the finished project uploaded along with a
typed in list of materials and several lines of directions/
instructional text to describe assembly.

Very simple

Thanks again for the feedback

Re: Securing a server side directory

Quoted text here. Click to load it

I hate it when I answer off the cuff.  After a week in the hospital I
reread your  reply. Thats what I need.

Site Timeline