Someone is attempt to brute force accounts by the loggin page of webmail .
So for stop this i want to put an htacces file for webmail .I do a lot of tries and found this but don't know if it's the good way !!!
1rst create an ibay no public acces with password
for the exemple: emailuser
edit 85ImpAccess
loggin as root via putty
pico /etc/e-smith/templates/etc/httpd/conf/httpd.conf/85ImpAccess
add where you want
<Directory /home/httpd/html/horde/imp>
AuthName "Webmail"
AuthType Basic
AuthExternal pwauth
require user emailuser
satisfy all
</Directory>
ctrl+x for save
rebuild apache templates
/sbin/e-smith/expand-template /etc/httpd/conf/httpd.conf
restart apache
/etc/init.d/httpd-e-smith restart
Can you tel me if i forgot something is it secure ??
the htacces work wel for loggin simply use "emailuser" and the password you define for the ibay emailuser ...
Thanks for help me !!!
0 Replies
969 Views