[ee122] [Proj1b] index.html Question

Lisa Fowler fowler at eecs.berkeley.edu
Sun Oct 28 10:17:29 PDT 2007 

This should all be handled by the OS for you, but the order should be:

If you can't read index.html, but you can read the directory,
permission is denied on haha/zip/bang .

If you can't read the directory, and you can't read index.html,
permission is denied on haha/zip/bang .

You only move forward through the steps if the file does not exist,
NOT if you don't have permission...

-Lisa

On 10/27/07, Jonathan D. Ellithorpe <jde at berkeley.edu> wrote:
> There's also the question of, what if index.html doesn't have the
> permissions your need (silly, I know), but the directory in which it
> resides does have proper permissions...
>
> In this case, would we return Forbidden or the contents of the readable
> directory?
>
> More concretely:
>
> foo = haha/zip/bang/
>
> So we jump to step 2:
> Step 2: try opening foo + index.html
>  - if get access error, move on to step 3 (?)
> Step 3: try opening foo
>  - if get access error, tell client forbidden
>  - else return contents of directory
>
> Thanks!
> Jonathan
>
>
> Lisa Fowler wrote:
> > HTTP/1.0 403 Forbidden: /foo  Would be sufficient.  That was the
> > request that the user made, and perhaps revealing that "/foo" was
> > translated to "/foo/index.html" might be revealing too much about your
> > system....
> >
> > -Lisa
> >
> > On 10/26/07, Allen Lee <leeallen at berkeley.edu> wrote:
> >
> >> I have a question about what to print if we don't have read permission after
> >> appending /index.html to the URI.  Suppose the server receives the request
> >> "GET /foo HTTP/1.0" and successfully resolves the request by appending
> >> /index.html to the URI.  If we don't have read permission for this file,
> >> should the response be
> >>
> >> HTTP/1.0 403 Forbidden: /foo
> >>
> >> or
> >>
> >> HTTP/1.0 403 Forbidden: /foo/index.html
> >>
> >> Thanks,
> >> Allen
> >>
> >> _______________________________________________
> >> ee122 mailing list
> >> ee122 at mailman.ICSI.Berkeley.EDU
> >> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/ee122
> >>
> >>
> >>
> > _______________________________________________
> > ee122 mailing list
> > ee122 at mailman.ICSI.Berkeley.EDU
> > http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/ee122
> >
> >
>
>

More information about the ee122 mailing list