~ubuntu-branches/ubuntu/saucy/nut/saucy

« back to all changes in this revision

Viewing changes to man/upsset.conf.5

Committer: Bazaar Package Importer
Author(s): Reinhard Tartler
Date: 2005-07-20 19:48:50 UTC
mto: (16.1.1 squeeze)
mto: This revision was merged to the branch mainline in revision 4.
Revision ID: james.westby@ubuntu.com-20050720194850-oo61wjr33rrx2mre

Tags: upstream-2.0.2

Import upstream version 2.0.2

files added:
data/driver.list

docs/cables/apc-rs500-serial.txt

docs/ideas.txt

drivers/apc-hid.h

drivers/belkinunv.c

drivers/bestfcom.c

drivers/cpsups.c

drivers/cpsups.h

drivers/ippon.c

drivers/metasys.c

drivers/mge-hid.h

drivers/mustek.c

drivers/netvisionmib.h

drivers/powermust.c

drivers/pwmib.h

drivers/serial.c

drivers/serial.h

drivers/solis.c

drivers/solis.h

drivers/upscode2.c

include/attribute.h

include/version

lib/Makefile.in

lib/README

lib/libupsclient-config.in

lib/libupsclient.pc.in

man/belkinunv.8

man/bestfcom.8

man/cpsups.8

man/ippon.8

man/metasys.8

man/mustek.8

man/powermust.8

man/solis.8

man/upscode2.8

server/netget.h

server/netinstcmd.h

server/netlist.h

server/netmisc.c

server/netmisc.h

server/netset.h

server/netuser.c

server/netuser.h

files removed:
clients/libupsclient.a

common/strlcpy.c

docs/driver.list

docs/todo.txt

drivers/bestfortress.c

drivers/ferrups.c

drivers/hp.c

drivers/microdowell.c

drivers/microdowell.h

drivers/newapc.c

drivers/newapc.h

drivers/newhidups

drivers/powernet.c

drivers/powernet.h

drivers/sec.c

drivers/sec.h

drivers/upscommon.c

include/cmd-map-init.h

include/cmd-map.h

include/shared-tables-init.h

include/shared-tables.h

include/shared.h

include/upscommon.h

include/var-map-init.h

include/var-map.h

man/bestfortress.8

man/ferrups.8

man/hp.8

man/microdowell.8

man/newapc.8

man/powernet.8

man/sec.8

man/upscli_getlist.3

man/upscli_getvar.3

server/levels.h

server/oldnet.c

files modified:
CHANGES

CREDITS

INSTALL

MAINTAINERS

Makefile.in

NEWS

README

UPGRADING

clients/Makefile.in

clients/cgilib.c

clients/upsc.c

clients/upsclient.c

clients/upsclient.h

clients/upscmd.c

clients/upsimage.c

clients/upslog.c

clients/upslog.h

clients/upsmon.c

clients/upsmon.h

clients/upsrw.c

clients/upssched.c

clients/upsset.c

clients/upsstats.c

common/common.c

common/parseconf.c

common/upsconf.c

conf/ups.conf

conf/upsd.conf

conf/upsmon.conf

conf/upsstats-single.html

conf/upsstats.html

configure

configure.in

data/Makefile.in

data/cmdvartab

docs/FAQ

docs/big-servers.txt

docs/cables/apc.txt

docs/chroot.txt

docs/commands.txt

docs/configure.txt

docs/contact-closure.txt

docs/design.txt

docs/developers.txt

docs/new-drivers.txt

docs/new-names.txt

docs/protocol.txt

docs/shutdown.txt

docs/ssl.txt

drivers/Makefile.drvbuild

drivers/Makefile.in

drivers/apccmib.h

drivers/apcsmart.c

drivers/apcsmart.h

drivers/bcmxcp.c

drivers/bcmxcp.h

drivers/belkin.c

drivers/belkin.h

drivers/bestuferrups.c

drivers/bestups.c

drivers/blazer.c

drivers/cyberpower.c

drivers/dstate.c

drivers/dstate.h

drivers/dummycons.c

drivers/energizerups.c

drivers/esupssmart.c

drivers/etapro.c

drivers/everups.c

drivers/fentonups.c

drivers/fentonups.h

drivers/gendb

drivers/genericups.c

drivers/genericups.h

drivers/hid-usb.h

drivers/hidparser.c

drivers/hidparser.h

drivers/hidtypes.h

drivers/hidups.c

drivers/hidups.h

drivers/isbmex.c

drivers/libhid.c

drivers/libhid.h

drivers/libusb.c

drivers/liebert.c

drivers/main.c

drivers/main.h

drivers/masterguard.c

drivers/mge-shut.c

drivers/mge-shut.h

drivers/mge-utalk.c

drivers/mge-utalk.h

drivers/mgehid.h

drivers/mgemib.h

drivers/newhidups.c

drivers/newhidups.h

drivers/oneac.c

drivers/oneac.h

drivers/powercom.c

drivers/powercom.h

drivers/safenet.c

drivers/skel.c

drivers/sms.c

drivers/sms.h

drivers/snmp-ups.c

drivers/snmp-ups.h

drivers/tripplite.c

drivers/tripplitesu.c

drivers/upsdrvctl.c

drivers/victronups.c

include/common.h

include/config.h.in

include/parseconf.h

include/proto.h

include/upsconf.h

include/upshandler.h

include/version.h

man/Makefile.in

man/apcsmart.8

man/bcmxcp.8

man/belkin.8

man/bestuferrups.8

man/bestups.8

man/cyberpower.8

man/dummycons.8

man/energizerups.8

man/etapro.8

man/everups.8

man/fentonups.8

man/genericups.8

man/hidups.8

man/isbmex.8

man/liebert.8

man/masterguard.8

man/mge-shut.8

man/mge-utalk.8

man/newhidups.8

man/nutupsdrv.8

man/oneac.8

man/powercom.8

man/safenet.8

man/sms.8

man/snmp-ups.8

man/tripplite.8

man/tripplitesu.8

man/ups.conf.5

man/upscli_connect.3

man/upscli_disconnect.3

man/upscli_fd.3

man/upscli_get.3

man/upscli_list_next.3

man/upscli_list_start.3

man/upscli_readline.3

man/upscli_sendline.3

man/upscli_splitname.3

man/upscli_ssl.3

man/upscli_strerror.3

man/upscli_upserror.3

man/upsclient.3

man/upscmd.8

man/upsd.8

man/upsd.conf.5

man/upsd.users.5

man/upsdrvctl.8

man/upsimage.cgi.8

man/upslog.8

man/upsmon.8

man/upsmon.conf.5

man/upsrw.8

man/upssched.8

man/upssched.conf.5

man/upsset.cgi.8

man/upsset.conf.5

man/upsstats.cgi.8

man/upsstats.html.5

man/victronups.8

packaging/RedHat/nut.spec

packaging/RedHat/nut.spec.in

scripts/hotplug/libhid.usermap

server/Makefile.in

server/access.c

server/access.h

server/conf.c

server/conf.h

server/ctype.h

server/desc.c

server/netcmds.h

server/netget.c

server/netinstcmd.c

server/netlist.c

server/netset.c

server/sockdebug.c

server/ssl.c

server/ssl.h

server/sstate.c

server/sstate.h

server/upsd.c

server/upsd.h

server/user-data.h

server/user.c

server/user.h

Show diffs side-by-side

added added

removed removed

man/upsset.conf.5

.TH UPSSET.CONF 5 "Tue Jul 30 2002" "" "Network UPS Tools (NUT)"

.TH UPSSET.CONF 5 "Wed Nov 26 2003" "" "Network UPS Tools (NUT)"

.SH NAME

upsset.conf \- Configuration for Network UPS Tools upsset.cgi

.SH DESCRIPTION

This file only does one job - it lets you convince \fBupsset.cgi\fR(8)

This file only does one job \(hy it lets you convince \fBupsset.cgi\fR(8)

that your system's CGI directory is secure. The program will not run

until this file has been properly defined.

Such is the nature of CGI programs.

Normally, attackers would not be able to access your \fBupsd\fR(8) server

directly as it would be protected by the ACCESS/ACL directives in your

\fBupsd.conf\fR(5) file and hopefully local firewall settings in your

OS.

directly as it would be protected by the ACL/ACCEPT/REJECT directives in

your \fBupsd.conf\fR(5) file and hopefully local firewall settings in

your OS.

Since upsset runs on your web server, it could provide a passage from

the outside to the inside, bypassing any firewall rules or upsd access

control limitations, since it appears to be coming from the web server.

This is why you must secure it first.

upsset runs on your web server, so upsd will see it as a connection from

a host on an internal network. It doesn't know that the connection is

actually coming from someone on the outside. This is why you must

secure it.

On Apache, you can use the .htaccess file or put the directives in your

httpd.conf. It looks something like this, assuming the .htaccess

.LP

You will probably have to set "AllowOverride Limit" for this directory

in your server-level configuration file as well.

in your server\(hylevel configuration file as well.

If this doesn't make sense, then stop reading and leave this program

alone. It's not something you absolutely need to have anyway.

Older »