Hello everyone, For several days now I have been searching the 'net for information on Apache and MD5/DES. My search strings have been fairly specific, but no matter how or where I look, the ones talking the most about Apache, Win32, MD5, DES are PHP related groups - and you get into it deeply. So, I'm taking a chance here...
We've decided to migrate a couple of our services from Linux Redhat servers to W2K servers. One of the services we're trying to put together is HTTP with Frontpage Server Extensions, PHP, Perl, CGI, etc. We've installed Apache 2.0.42 on W2K with FP 2000 Server Extensions. Unfortunately, Frontpage uses DES encryption when creating passwords either from within Frontpage client or from the command line program fpsrvadm on the server itself. Both of these methods write user passwords in DES encrypted form. Apache itself though is defaulting to use MD5 - not only via the htpasswd command but also when it authenticates users. The error_log shows this error: [Wed Nov 13 14:00:22 2002] [error] [client 123.123.123.123] user test: authentication failure for "/~test/_vti_bin/_vti_aut/author.exe": Password Mismatch I can 'fix' this problem by running the apache2/bin/htpasswd and creating service.pwd with the same username and password. The service.pwd file is then copied to the FP enabled web site in /_vti_pvt/ - after this, all problems (apparent ones anyway) go away. Apache on our W2K server simply will not deal with Frontpage's DES encrypted password files. I just know one, if not most of you, are going to know: What module or library is required for DES authentication using Apache 2.0.42 for Win32? Is there an Apache directive that is eluding me? Thank you for any help you can offer. Bob Kramer -- PHP Install Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
