Authentication problems 2005-01-17 - By Bob Smith
On 1/17/2005 4:16 AM, Boyle Owen wrote:
>>-----Original Message-----
>>From: Alan Lloyd [Hosting Reserve]
>>[mailto:alan.lloyd@(protected)]
>>Sent: Freitag, 14. Januar 2005 11:40
>>To: users@(protected)
>>Subject: [users@(protected)] Authentication Problems
>>
>>
>>Hello
>>
>>I am having a few problems with authentication. No matter what I do I
>>can not set up a password protected directorys.
>>
>>I have tried using .htaccess, a directory container in the conf file
>>even tried using plesk (plesk does it automatically in the conf file).
>>
>>When I set everything up all I get is a 401 error. There is no pop-up
>>login box. So no chance to even enter a passwd.
>
>
> Here's my input based on your initial post:
>
> - In httpd.conf you have "AllowOverride All" globally which is fine,
> this allows .htaccess to work anywhere... except where you disable it
> with "AllowOverride None" in /var/www/icons,manual,cgi-bin and error. So
> that's OK (I assume your protected directory is not in any of these).
>
> - It would be nice to see your .htaccess to check you have the syntax
> right [the fact it "works" in another server is not proof: the other
> server might have authentication set up in its config file and it only
> looks like the .htaccess file works]. Nevertheless, let's assume it
> works anyway.
>
> - When I try the link to http://tor-bay.co.uk/admin/, I get 403
> Forbidden. That means that /admin is not in the webspace or does not
> have an Allow directive. In your config, you have:
>
> DocumentRoot /home/httpd/vhosts/default/httpsdocs
>
> but the only directories containing an "Allow from" are under /var/www.
> So nothing at all should be accessible on your site. However, it is, so
> all the other allows must be in /etc/httpd/conf/httpd.include (which
> unfortunately you don't share with us).
If you have /var/www as an alias (or soft link) to (say)
/home/httpd/vhosts/default, then it is my experience that mixing those
references (that is, sometimes using /var/www and sometimes using the other) is
a formula for trouble. It seems that, sometimes, Apache does a string compare
on the initial text of paths to determine whether or not two paths are the same
,
rather than expand links to the raw paths and then compare.
[...]
--
_______________________________________________________________
Bob Smith - bsmith@(protected) - http://www.sudleyplace.com
a.k.a. bsmith@(protected) - http://www.qualitas.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@(protected)
" from the digest: users-digest-unsubscribe@(protected)
For additional commands, e-mail: users-help@(protected)
|
|
