Line 87: |
Line 87: |
| **'''Indexes''': Let you control if the server should generate an index of all the files if no index.html file is found. You can disable it if you don't want everyone to have access to the list of files. This setting is global for the shared folder, I mean, if enabled, any directory which doesn't have a index.html file will be indexed. | | **'''Indexes''': Let you control if the server should generate an index of all the files if no index.html file is found. You can disable it if you don't want everyone to have access to the list of files. This setting is global for the shared folder, I mean, if enabled, any directory which doesn't have a index.html file will be indexed. |
| **'''Dynamic content execution (PHP, CGI, SSI)''': this enable the execution of PHP script. If disabled files with php, php3, phtml, cgi or pl as extension won't be allowed. If enabled, you can create a directory named "cgi-bin" in your shared folder. It will allow execution of cgi scripts | | **'''Dynamic content execution (PHP, CGI, SSI)''': this enable the execution of PHP script. If disabled files with php, php3, phtml, cgi or pl as extension won't be allowed. If enabled, you can create a directory named "cgi-bin" in your shared folder. It will allow execution of cgi scripts |
| + | |
| + | === Ajaxplorer === |
| + | If you install the [[Ajaxplorer]] contrib, you'll have a new option displayed in the configuration of the shared folders. With this, you can easily enable the access of any shared folders through Ajaxplorer. This is only available on SME8. |
| + | |
| + | == Limitaions of Ajaxplorer == |
| + | * You cannot work with file bigger than 2GB, this is a limitation of PHP on 32 Bits system |
| + | |
| + | === Encryption === |
| + | {{Note box|Data encryption have only be tested on SME8, it might work on SME7 but it's not supported. YMMV}} |
| + | Since smeserver-shared-folders-0.1-50, you can now encrypt all the data stored in a shared folder. For this to work, you first have to install fuse-encfs from the [[Dag|rpmforge]] repository (don't use the fuse-encfs from the EPEL repository as it's broken) |
| + | |
| + | yum --enablerepo=dag install fuse-encfs |
| + | |
| + | {{Note box|on SME8 kernel, the fuse module is already included, so you don't have to do anything more, but on SME7, you'll have to install the fuse-kmdl module for your current kernel. fuse-kmdl can be found in [[Atrpms|atrpms repository]] |
| + | |
| + | Once fuse-encfs is installed, make sure the fuse module is loaded |
| + | lsmod | grep fuse |
| + | |
| + | Now, when you create a new shared folder, you have a new option to encrypt the data. You'll have to type a password, and to select '''enabled''' for the encryption. An encrypted shared folders can be '''protected''' (data is only available in encrypted form) or '''enabled''' (data appear in clear text, encryption/decryption is done on the fly). Changing the state of an encrypted shared folder can be done through the 'Shared Folder Encryption' panel in the server-manager. You can grant access to this panel to all every users using the [[UserManager]] contrib. Users will only be able to toggle mode of shared folders they have access to. |
| + | |
| + | == Limitations with encryption == |
| + | Before using encryption on a shared folder, you should be aware of some limitations: |
| + | * Encryption is done on the fly in user-space using encfs, accessing data may be a bit slower when encryption is enabled |
| + | * Encryption can only be enabled at creation time, it's not possible to encrypt an existing shared folders |
| + | * Read Only permission is '''not''' supported on encrypted shared folders, only full read/write access is possible (this is a limitation of fuse which doesn't pass ACL permissions). If you set read only access to some groups, it'll just be ignored |
| + | * The current implementation doesn't provide any option to change the password from the web GUI. If you want to change the password, you can do so from the command line with the encfsctl utility |
| + | * There's '''NO WAY''' to recover the data if you forget the password. |
| | | |
| === Additional options === | | === Additional options === |