Sun Java System Web Server 7.0 Update 1 Administrator's Guide

Restricting Symbolic Links (UNIX/Linux)

You can limit the use of the file system links in your server. File system links are references to files stored in other directories or file systems. The reference makes the remote file as accessible as if it were in the current directory. There are two types of file system links:

For more information about hard and symbolic links, see your UNIX/Linux system documentation.

File system links are an easy way to create pointers to documents outside of the primary document directory and anyone can create these links. For this reason you might be concerned that people might create pointers to sensitive files (for example, confidential documents or system password files).

To restrict symbolic links, follow these steps:

ProcedureTo Restrict Symbolic Links

  1. From the virtual server page, click the Content Handling tab.

  2. Click General sub tab.

  3. Go to Symbolic Links section under Miscellaneous section.

  4. Choose whether to enable soft and/or hard links and the directory to start from.

  5. Click Save

    Note –

    Using CLI

    For restricting symbolic links through CLI, execute the following command.

    wadm> set-symlinks-prop --user=admin --password-file=admin.pwd 
    --host=serverhost --port=8989 --config=config1 --vs=config1_vs_1 
    allow-soft-links=true allow-hard-links=false directory=/abc

    See CLI Reference, set-symlinks-prop(1).