Tom Rosso wrote:
> You may also consider moving the passwd file out of htdocs. I believe
> this is a security hazard. Mine is in /var/www/etc.
Basically it should be anywhere except any web-accessible directory.
However, HTTP Basic Authentication is worse than basic FTP. The
password and usern
Bertrand Janin wrote:
Jordi Espasa Clofent wrote :
I want to restrict the access to my syweb site (web GUI for symon).
# pwd
/var/www/htdocs/syweb
# ls -la
total 228
drwxr-xr-x 3 root daemon 1024 Oct 27 12:44 .
drwxr-xr-x 3 root daemon512 Oct 27 12:49 ..
-rw-r--r-- 1 root daemon
Have you checked that AllowOverride on /var/www/htdocs/syweb is set to
(at least) AuthConfig ?
Hi Paco, nice to see you in OpenBSD misc@
;)
Runs fine now.
--
Thanks,
Jordi Espasa Clofent
Jordi Espasa Clofent wrote :
> I want to restrict the access to my syweb site (web GUI for symon).
>
> # pwd
> /var/www/htdocs/syweb
> # ls -la
> total 228
> drwxr-xr-x 3 root daemon 1024 Oct 27 12:44 .
> drwxr-xr-x 3 root daemon512 Oct 27 12:49 ..
> -rw-r--r-- 1 root daemon131 Oct
Hi Jordi,
On Mon, Oct 27, 2008 at 12:57, Jordi Espasa Clofent
<[EMAIL PROTECTED]> wrote:
> # more .htaccess
> AuthUserFile /var/www/htdocs/syweb/.htpasswd
> AuthGroupFile /dev/null
> AuthName Restricted Access.
> AuthType Basic
> require valid-user
Have you checked that AllowOverride on /var/www/
5 matches
Mail list logo
