- Posts: 2
- Thank you received: 0
Welcome to the LimeSurvey Community Forum
Ask the community, share ideas, and connect with other LimeSurvey users!
What folders are required to be accessed externally?
- louism
- Topic Author
- Offline
- New Member
Less
More
4 years 11 months ago #184684
by louism
What folders are required to be accessed externally? was created by louism
Hi,
we have a Web Application Firewall (WAF) that allows us to block by URL, common threats etc etc
We are hosting LS ourselves so was wondering what URL's we need to provide for public access.
For instance, we don't want to provide access externally to the /admin folder as we manage that internally.
We can provide access to /LS root folder but was wondering what other folders within this we would require as we would need to specify them.
regards,
Louis
we have a Web Application Firewall (WAF) that allows us to block by URL, common threats etc etc
We are hosting LS ourselves so was wondering what URL's we need to provide for public access.
For instance, we don't want to provide access externally to the /admin folder as we manage that internally.
We can provide access to /LS root folder but was wondering what other folders within this we would require as we would need to specify them.
regards,
Louis
The topic has been locked.
- jelo
- Offline
- Platinum Member
Less
More
- Posts: 5033
- Thank you received: 1257
4 years 11 months ago #184685
by jelo
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
Replied by jelo on topic What folders are required to be accessed externally?
What version of LS is used?
What WAF is used? Depending on the rules, you will see certain hits by LimeSurvey caused by JS libraries.
I would be surprised if someone will provide you a list with URLS, which are needed.
That can change within an update.
What WAF is used? Depending on the rules, you will see certain hits by LimeSurvey caused by JS libraries.
I would be surprised if someone will provide you a list with URLS, which are needed.
That can change within an update.
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
The topic has been locked.
- louism
- Topic Author
- Offline
- New Member
Less
More
- Posts: 2
- Thank you received: 0
4 years 11 months ago - 4 years 11 months ago #184702
by louism
Replied by louism on topic What folders are required to be accessed externally?
It's a Sophos SG330 using WAF. LS is 3.4 CE.
Straight away I can see I wouldn't want:
/admin
/installer
to be accessible to the internet. I know that LS will have it's own security but it's certainly enhanced if /admin isn't accessible full stop.
So I'm wondering exactly what folders do need to be exposed and what don't for LS to function?
Straight away I can see I wouldn't want:
/admin
/installer
to be accessible to the internet. I know that LS will have it's own security but it's certainly enhanced if /admin isn't accessible full stop.
So I'm wondering exactly what folders do need to be exposed and what don't for LS to function?
Last edit: 4 years 11 months ago by louism.
The topic has been locked.
- jelo
- Offline
- Platinum Member
Less
More
- Posts: 5033
- Thank you received: 1257
4 years 11 months ago #184711
by jelo
Which adds another layer of potential issues with LimeSurvey.
[quote="louism" post=184702So I'm wondering exactly what folders do need to be exposed and what don't for LS to function?[/quote]
I understand, but my WAF is based on rules and not blocking any generic path by defintion. My tools need to be accessed via Web tool
For your case (only submitting surveys via WAN, everthing else via LAN/DMZ) you can start here:
manual.limesurvey.org/Directory_structure
You will need to run tests after every update, if you block too tight.
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
Replied by jelo on topic What folders are required to be accessed externally?
SG330 is quite an investment. If I remember correct, the WAF is based on a reverse proxy.louism wrote: It's a Sophos SG330 using WAF. LS is 3.4 CE.
Which adds another layer of potential issues with LimeSurvey.
[quote="louism" post=184702So I'm wondering exactly what folders do need to be exposed and what don't for LS to function?[/quote]
I understand, but my WAF is based on rules and not blocking any generic path by defintion. My tools need to be accessed via Web tool
For your case (only submitting surveys via WAN, everthing else via LAN/DMZ) you can start here:
manual.limesurvey.org/Directory_structure
You will need to run tests after every update, if you block too tight.
The meaning of the word "stable" for users
www.limesurvey.org/forum/development/117...ord-stable-for-users
The topic has been locked.
- DenisChenu
- Offline
- LimeSurvey Community Team
Less
More
- Posts: 13643
- Thank you received: 2491
4 years 11 months ago #184736
by DenisChenu
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Replied by DenisChenu on topic What folders are required to be accessed externally?
/ and tmp/ and upload/ (in some situation) only i think …
But depend on : the url params used …
But depend on : the url params used …
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
The topic has been locked.