logo
Apache Lounge
Webmasters

 

About Forum Index Downloads Search Register Log in RSS X


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
Post new topic   Forum Index -> Apache View previous topic :: View next topic
Reply to topic   Topic: Troubles with .HTACCESS password protection
Author
michaeldk



Joined: 21 Jun 2012
Posts: 4
Location: Denmark

PostPosted: Thu 21 Jun '12 20:13    Post subject: Troubles with .HTACCESS password protection Reply with quote

Hi all,

First of, thanks for dedicating your time to help out on this site.

now, to my issue.

I am currently working with apache 2.2.16

I am using .htaccess file with DIGEST for protecting some development dirs.

Now the problem that I am facing is, that the .htaccess file works like a charm when accessing the dir with the DNS name.

But, I tryed to access the dir directly with the IP, now the server did not ask for any user confirmation? I tryed from different nodes on different networks just to be sure, its the same on anyone of them, if one use the Ip adress then no user confirmation is required, if one uses the DNS name, it ask for user confirmation.

Here is a copy of my .htaccess file

Code:
AuthType Digest
AuthName non-public
AuthUserFile /etc/apache2/.userfile
Require user michael


I hope there is an guru out there who can help me in a jiffy =)

Thanks in advanced

Best regards
Michael

PS.

I did check the logs but I could not find any error logs on the issue.
Back to top
michaeldk



Joined: 21 Jun 2012
Posts: 4
Location: Denmark

PostPosted: Fri 22 Jun '12 14:01    Post subject: Reply with quote

Guess this is a difficult issue? =)
Back to top
admin
Site Admin


Joined: 15 Oct 2005
Posts: 692

PostPosted: Fri 22 Jun '12 14:45    Post subject: Reply with quote

Works localhost or 127.0.0.1 ?
Back to top
michaeldk



Joined: 21 Jun 2012
Posts: 4
Location: Denmark

PostPosted: Sun 24 Jun '12 12:06    Post subject: Reply with quote

Quote:
Works localhost or 127.0.0.1 ?



Hmm I only have shell to work with, so cant test from localhost. But a good question, to bad I don't have any means to test it.
Back to top
James Blond
Moderator


Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg

PostPosted: Mon 25 Jun '12 16:08    Post subject: Reply with quote

michaeldk wrote:
Quote:
Works localhost or 127.0.0.1 ?



Hmm I only have shell to work with, so cant test from localhost. But a good question, to bad I don't have any means to test it.


You could also use the host file to test different domain names
Back to top
michaeldk



Joined: 21 Jun 2012
Posts: 4
Location: Denmark

PostPosted: Tue 26 Jun '12 7:27    Post subject: Reply with quote

Hi again.

I got to test it from shell access with lynx (a terminal internet browser)

The .HTaccess file does not ask me to input any user credentials to access the page, so it seems security is no at max here.

Hmm I probably should tell you I am running a linux and not a windows server Smile

Although I don’t think it makes any difference regarding the .htaccess file
Back to top


Reply to topic   Topic: Troubles with .HTACCESS password protection View previous topic :: View next topic
Post new topic   Forum Index -> Apache