You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Gentian Hila <ge...@gmail.com> on 2005/01/03 21:48:55 UTC

[users@httpd] Re: authentication not working

Fixed the problem throug includinf AllowOverride AuthConfig




On Mon, 3 Jan 2005 14:53:02 -0500, Gentian Hila <ge...@gmail.com> wrote:
> I have little experience with Apache. I have installed Fedora Core 2
> and I have some websites in different directories that need to be
> accessed only by the network administrator (otherwise the root). So I
> tried to set up authentication according to the instructions in
> several sites but it doesn't seem to be working.
> 
> Here is what I added on httpd.conf  (acid is my directory that I want
> to protect).
> 
> <Directory /var/www/hmtl/acid>
> AuthType Basic
> AuthUserFile /etc/httpd/accidpass
> AuthName SnortIDS
> Require valid-user
> 
> <Limit GET>
> Require valid-user
> </Limit>
> 
> </Directory>
> 
> I created the accidpass file through the following command:
> 
> httpasswd -c accidpass root rootpassword
> 
> I restarted httpd but I still can access the index.htm file without
> authentification
> 
> Can somebody help and tell me what's goin' on ?
> 
> Did I forgot something ?
>

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Re: authentication not working

Posted by Joshua Slive <js...@gmail.com>.

On Mon, 3 Jan 2005 15:48:55 -0500, Gentian Hila <ge...@gmail.com> wrote:
> Fixed the problem throug includinf AllowOverride AuthConfig

No you didn't.  AllowOverride has no effect on directives inside
httpd.conf.  It affects only .htaccess.  More likely, you hadn't
properly restarted apache, cleared your cache or something similar.

Also, the fact that you are using <Limit GET> implies that you are
reading bad documentation.  See the apache docs on <Limit> for why it
shouldn't be used.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org