Warning: This page has not been updated in over over a year and may be outdated or deprecated.
administration:security
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
administration:security [2023/03/10 11:37] – [Changing File Ownership] demiankatz | administration:security [2023/06/30 11:01] – [Changing the Solr Port Number] demiankatz | ||
---|---|---|---|
Line 25: | Line 25: | ||
</ | </ | ||
- | The username is most likely '' | + | The username is most likely '' |
2.) Change ownership of the entire VuFind® directory to your new service user, then change the cache back to the appropriate ownership, then adjust the command-line cache. This requires three commands, but you should run them in rapid sequence to avoid disruption to your system: | 2.) Change ownership of the entire VuFind® directory to your new service user, then change the cache back to the appropriate ownership, then adjust the command-line cache. This requires three commands, but you should run them in rapid sequence to avoid disruption to your system: | ||
Line 42: | Line 42: | ||
<code bash> | <code bash> | ||
- | sudo su vufind | + | sudo su vufind |
crontab -e | crontab -e | ||
</ | </ | ||
+ | |||
+ | Note that in this example, we specify which shell to use when switching to the vufind user, since in the example above, we set a " | ||
===== Using SSL ===== | ===== Using SSL ===== | ||
Line 91: | Line 93: | ||
<code bash> | <code bash> | ||
- | sudo su solr | + | sudo su solr -s / |
cd $VUFIND_HOME | cd $VUFIND_HOME | ||
./solr.sh start | ./solr.sh start | ||
</ | </ | ||
+ | |||
+ | See the note under [[administration: | ||
If you are automatically starting Solr, make sure that your configuration includes the appropriate username. See the [[/ | If you are automatically starting Solr, make sure that your configuration includes the appropriate username. See the [[/ | ||
Line 135: | Line 139: | ||
[[administration: | [[administration: | ||
+ | ==== Allowing Access to the Solr Host ==== | ||
+ | |||
+ | Starting with Solr 9 (and thus affecting VuFind® releases 9.0 and later), Solr will only allow " | ||
+ | |||
+ | === Option 1: Reconfigure SOLR_JETTY_HOST === | ||
+ | |||
+ | If you want to permanently allow Solr to accept connections using a hostname other than " | ||
+ | |||
+ | === Option 2: Use SSH Tunneling === | ||
+ | |||
+ | If you only want to temporarily access Solr from another location, you can do so without loosening security by opening an SSH tunnel to expose the Solr port on another machine. SSH tunneling is available through the standard Unix ssh command line tool and through graphical clients like PuTTY. It is beyond the scope of this documentation to explain SSH tunneling in detail, but if you search for "SSH tunnel" | ||
===== Locking Down the Admin Panel ===== | ===== Locking Down the Admin Panel ===== | ||
administration/security.txt · Last modified: 2024/05/22 17:27 by demiankatz