| |
For more information contact us at info@psoft.net
Last
modified: Wed Jun 26 15:54:10 DST 2001
The
Questions
General
questions
-
What is WebShell?
WebShell 2.1 with htProtect WebShell 2.1 is a combination
of CGI Script, HTML and JavaScripts that performs most of the
file operations required for web-site maintenance from your favorite
web browser.
A product description available.
Features:
- Remote Account Administration
- Intuitive, easy to use interface
- Files/Directories copy, move, delete, rename, inf.
- Files upload, download, compress and uncompress (supports
zip, gzip, tar, Z formats)
- Files preview (supports most of the formats understandable
by web browser)
- Multiple files/directories selection and manipulations
- Files Editing and Source Viewing
- Superior two panel view for ease of file manipulations
- Based on Unix security mechanism for maximum security and
flexibility
- Easily configurable interface
- Set access permissions on files and directories
- Manage password-protected areas of web-site
- Full Unix type accounts support
- File Filtering
- Online user help
- Select multiple files using mask or by mouse click
- Simple 2-step installation
- Supports Netscape 3.x, 4.x and Explorer 4.x (any platform)
- Written in C++ for optimum performance.
-
Where does it run?
Unix (Free BSD, Open BSD, Linux, Solaris, Irix & other)
WebShell does not run under NT or 95
-
Is there an NT version?
No.
Technical questions
-
How does WebShell work ?
WebShell is ran as SUID root CGI script in order to check user's
password in the system password database ( like /etc/shadow ).
After that ( in case of success ) it changes it's user ID and
effective user ID to the users' ID and all other operations performs
as this user.
-
Where do I get login and password to get in?
WebShell uses each user's Unix account, so no special setup is
needed, WebShell will work with users that have user's ID >= 1000
and group ID >= 100 that exists in the system user database
or will be added to it, it will use their login, password and
home directory. ( see how to allow different
user/group id )
-
How password is stored on the client site ?
WebShell uses cookies that expire when client's browser is terminated,
so passwords are never stored in cache or on client's hard drive.
-
Do I need to allow telnet access ?
No.
-
Does WebShell support virtual hosts ?
Yes, and no special configuration is needed.
-
Does WebShell support SSL ?
Yes, as long as http server does.
-
Does WebShell allow root access?
During the configuration ( before the compilation ) you may specify
the lowest user ID ( 1000 by default ) and group ID ( 100 by default
) user must have in order to be able to use WebShell.
-
Does WebShell support disk usage limits?
No special support, use Unix quota.
-
Is it possible to limit certain file operations (move,
delete or chmod)?
Yes, by request.
-
Do I get the source code?
Yes, complete source code is provided.
-
Is it possible to set up different functionality for
different users?
Not in this version.
-
Do I need any special configuration to my http server?
No, just allow to run WebShell as SUID root CGI.
-
Is it necessary to run WebShell on the same computer
as http server ?
WebShell should have access to file system where web-site's files
are stored. So it may run on the same computer as http server
or any other computer that for example NFS mounts web-server's
hard drive or uses the same file-server as web-server does. The
password file on computer that runs WebShell should have consistent
user IDs and home dirs as they are seen from WebShell server's
point of view.
-
What kind of security risk do I have with people trying
to get into the server via WebShell?
None
-
Can WebShell access local file system?
Short answer is No.
You can access only file-system of the computer where WebShell
CGI script is located.
|
|
