Re: Apache and password protection
From: Tyler Larson (g.news_at_tlarson.com)
Date: 09/19/03
- Previous message: Tyler Larson: "Re: Apache and password protection"
- In reply to: Gary Petersen: "Re: Apache and password protection"
- Next in thread: Tyler Larson: "Re: Apache and password protection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 19 Sep 2003 14:44:42 -0700
Gary Petersen <garyp1492@remove.meearthlink.invalid> wrote in message news:<pan.2003.09.18.06.40.36.966630.3604@REMOVE.MEearthlink.INVALID>...
> On Wed, 17 Sep 2003 17:50:57 -0500, Mairhtin O'Feannag created an
> award-winning crop circle <Xns93F9A155487FFmairhtinofeannag@64.164.98.29>,
> which, when translated into English, means this:
>
> > [ difficulty setting up access restrictions in Apache snipped ]
> >
>
> Perhaps you need to tell Apache to recognize
> your .htaccess file:
>
> file(httpd.conf):
> <Directory /www/secure-directory-example/>
> AllowOverride AuthConfig
> # [ other configuration options ]
> </Directory>
>
>
> And make sure that the root directory is not accessible:
> <Directory />
> Order allow,deny
> Deny from all
> </Directory>
If you're going to "Deny from all" in your root directory, you'll have
to remember to "Allow from all" in all the directories that are
supposed to be accessible by apache.
Of course, it's good pracice, but it's not going to make a lick of
difference as far as password-protecting pages is concerned. Instead,
it just makes it impossible for anyone (whether they're supposed to be
allowed or not) to access any files except those in directories you
explicitly mark as allowed in your httpd.conf file.
- Previous message: Tyler Larson: "Re: Apache and password protection"
- In reply to: Gary Petersen: "Re: Apache and password protection"
- Next in thread: Tyler Larson: "Re: Apache and password protection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
