diff -Nur --no-dereference smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules --- smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules 2022-11-20 20:15:47.931000000 -0500 +++ smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/20Modules 2022-11-20 20:16:58.727000000 -0500 @@ -49,6 +49,7 @@ authn_core authz_core authz_user + authz_host proxy_ajp proxy_connect proxy_express diff -Nur --no-dereference smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki --- smeserver-phpki-ng-0.3.old/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki 2022-11-20 20:15:47.931000000 -0500 +++ smeserver-phpki-ng-0.3/root/etc/e-smith/templates/etc/httpd/pki-conf/httpd.conf/90phpki 2022-11-20 20:19:00.398000000 -0500 @@ -26,16 +26,19 @@ AuthName "PHPKI Admin" AuthType Basic TKTAuthLoginURL /server-common/cgi-bin/login - require user admin {getUsersList("phpki");} + + Require user admin {getUsersList("phpki");} + Require ip 127.0.0.1 + + { my $ManagerTimeout = ${'httpd-admin'}{ManagerTimeout} || "30m"; $OUT = " TKTAuthTimeout $ManagerTimeout\n"; my $Cookie = ${'httpd-admin'}{Cookie} || "disabled"; - $OUT .= " TKTAuthCookieExpires $ManagerTimeout\n" if "$Cookie" eq "enabled"; + $OUT .= " TKTAuthCookieExpires $ManagerTimeout\n" if "$Cookie" eq "enabled"; my $ManagerTimeoutReset = ${'httpd-admin'}{ManagerTimeoutReset} || "0.66"; - $OUT .= " TKTAuthTimeoutRefresh $ManagerTimeoutReset\n"; + $OUT .= " TKTAuthTimeoutRefresh $ManagerTimeoutReset\n"; } - Satisfy all # Disable access to /admin, which is used to configure user/password