First a short version:
- for a single DA user we want to allow login via a tunnel/localhost only
- for all other DA users nothing should change
How can this be configured?
In more detail:
We're on a VPS running CentOS with Direct Admin. The server is hosting several domains, with also several DA-users (mostly 1 domain per user). 1 user wants to use tunnels for several admin areas, DA is one of those. So only for this single user/virtual host we'd like to make DirectAdmin to only listen to the localhost.
Btw: not sure it's relevant but I'll post it just in case. Th virtualhost concerned has its own IP. When using the tunnel the webserver resolves the tunnel user to this IP, not to localhost. I wouldn't mind changing this (though I wouldn't know how).
First we're configuring the server to allow (and test) tunnels, and we'll disable "regular" ways of access later on.
To allow a connection via the tunnel we needed to add check_referer=0 to the directadmin.conf. I can explain that since the domain isn't in the URL anymore, but this does decrease security for all other users.
- for a single DA user we want to allow login via a tunnel/localhost only
- for all other DA users nothing should change
How can this be configured?
In more detail:
We're on a VPS running CentOS with Direct Admin. The server is hosting several domains, with also several DA-users (mostly 1 domain per user). 1 user wants to use tunnels for several admin areas, DA is one of those. So only for this single user/virtual host we'd like to make DirectAdmin to only listen to the localhost.
Btw: not sure it's relevant but I'll post it just in case. Th virtualhost concerned has its own IP. When using the tunnel the webserver resolves the tunnel user to this IP, not to localhost. I wouldn't mind changing this (though I wouldn't know how).
First we're configuring the server to allow (and test) tunnels, and we'll disable "regular" ways of access later on.
To allow a connection via the tunnel we needed to add check_referer=0 to the directadmin.conf. I can explain that since the domain isn't in the URL anymore, but this does decrease security for all other users.
