httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "J.P. Wadkin C9951627" <>
Subject RE: Apache 1.3 .22 - "advanced" authentication question
Date Sun, 02 Jun 2002 15:29:45 GMT
That won't work - just gets stuck in a loop:

Deny because of IP address
Request u/name and p/word
Deny because of IP address

The most obvious solution is to add every subnet - e.g.

123.123.1 123.123.2 123.123.3 ....

except subnet X to the allow directive. But this would mean adding 250+
partial IP addresses!

When I said that:

"I wanted to simply "allow" all local IP addresses "except" the Web Server,
otherwise "require" a username and password."

I meant that when the Web Server is disallowed access, a username and
password should be requested. I didn't mean that the Server should be denied
access altogether - this would defeat my objective :)

I cant believe that something as simple as "Allow from except" should be so hard to implement, or uncommon?



-----Original Message-----
From: Joshua Slive []
Sent: 02 June 2002 15:01
Subject: Re: Apache 1.3 .22 - "advanced" authentication question

J.P. Wadkin C9951627 wrote:
> All,
> I've searched the Net, archives and FAQs - can't find an answer or 
> anything close to an answer for this question...
> <Directory "/usr/local/apache/htdocs/someDirectory">
>    AuthType Basic
>    AuthName "Some secure directory"
>    AuthUserFile /usr/local/apache/seeds/sesame
>    Require group someGroup
>    Allow from except

Order allow,deny
Allow from
Deny from


To unsubscribe, e-mail:
For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message