Sun Java System Web Server 7.0 Update 5 Administrator's Guide

Restricting Symbolic Links (UNIX/Linux)

You can limit the use of the file system links in your server. File system links are references to files stored in other directories or file systems. The reference makes the remote file as accessible as if it were in the current directory. There are two types of file system links:

For more information about hard and symbolic links, see your UNIX/Linux system documentation.

File system links are an easy way to create pointers to documents outside of the primary document directory and anyone can create these links. People can thus create pointers to sensitive files such as confidential documents or system password files.

To restrict symbolic links, follow these steps:

ProcedureTo Restrict Symbolic Links

  1. From the virtual server page, click the Content Handling tab.

  2. Click the General sub tab.

  3. Go to the Symbolic Links section under Miscellaneous.

  4. Choose whether to enable soft and/or hard links and the directory to start from.

  5. Click Save

    Note –

    Using CLI

    To restrict symbolic links through CLI, execute the following command.

    wadm> set-symlinks-prop --user=admin --password-file=admin.pwd 
    --host=serverhost --port=8989 --config=config1 --vs=config1_vs_1 
    allow-soft-links=true allow-hard-links=false directory=/abc

    See CLI Reference, set-symlinks-prop(1).