httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bob Kinney <>
Subject RE: [users@httpd] Configuring Password Protection
Date Tue, 25 Jul 2006 16:52:43 GMT

--- Boyle Owen <> wrote:

> BTW, you may be suffering from the popular misconception that
> AllowOverride and .htaccess files are needed for password protection.
> They're not. If you can edit the config, as you can, it's usually better
> to put all the Auth directives straight into the directory container.
> Rgds,
> Owen Boyle

Confusion:  I have set up this directive per the examples
to allow simple password protection on a directory.  This is in my
httpd.conf file:


<Directory /web/html/missy>
     AllowOverride AuthConfig
     AuthName "MISSY'S PLACE"
     AuthType Basic
     AuthUserFile /web/etc/.htpasswd
     AuthGroupFile /dev/null
     require user missy


Boyle, are you saying that AllowOverride is not necessary?

Here are the other main Directory entries:
<Directory "/">
#        Options FollowSymLinks
        Order allow,deny
        Deny from all


<Directory "/web/html">
        Options Indexes Includes FollowSymLinks
        IndexOptions FancyIndexing IconsAreLinks
        AllowOverride None
        Allow from all
        Order deny,allow

Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message