Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations sizbut on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

This *should* be simple

Status
Not open for further replies.
codestorm

codestorm

Programmer
Apr 11, 2001
504
AU
Hi all, another newbie here,

Given how configurable apache, etc is renowned to be, this should be a piece of cake, but as I can't find a doco on the syntax of .htaccess files, I'm stumped.

I want a directory to be password protected with .htaccess/.htpasswd. So far no problem.

However I want a subdirectory of this protected directory to be totally unprotected - without having no move it somewhere other than under the protected directory.

I'm sure it must be doable, but how?
codestorm
Fire bad. Tree pretty. - Buffy
Kludges are like lies.
You're not a complete programmer unless you know how to guess.
I hope I never consider myself an 'expert'.
<insert witticism here>
 
Sort by date Sort by votes
By default the subdirectories are all protected. I don't think there's a way to override that when you're using the .htaccess method. Wullie could confirm.

You might want to consider scripting some other type of password protection. Newposter
&quot;Good judgment comes from experience. Experience comes from bad judgment.&quot;
 
Upvote 0 Downvote
I had the same trouble..set &quot;Options&quot; to all and &quot;AllowOverride&quot; to &quot;All&quot; it'll werk then.
Hope I was of some help...
--OR--
Thanks for the help...
--Rich

 
Upvote 0 Downvote
Hi guys,

Newposter is correct.

If you do manage to get this to work, then you are likely blowing security holes into your own authentication methods.

If you have a directory that is not to be protected, then simple answer is to move it outside of the protected area.

Hope this helps Wullie

sales@freshlookdesign.co.uk

The pessimist complains about the wind. The optimist expects it to change. The leader adjusts the sails. - John Maxwell
 
Upvote 0 Downvote
I'm fairly new to the Apache thing, but this has worked for us:

maindir is protected with standard .htaccess/.htpasswd stuff, while the subdir has the following as .htaccess:
--
Options +Indexes

<Limit GET POST PUT>
order allow,deny

allow from all
satisfy any
</Limit>
--

Security-wise, it is probably not the best, but it is for a very small development area on our intranet.

-Joe
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

kristiandg
  • Locked
  • Question
Linux, &quot;port mirror&quot; between two boxes...
Replies
0
Views
267
kristiandg
kristiandg
bazil2
  • Locked
  • Question
Does a tape library need to be 'mounted' after connecting it to fibre card?
Replies
1
Views
113
bazil2
bazil2
samiramiss
  • Locked
  • Question
Unfamiliar behavior of &quot;setdscp&quot; in IPFW
Replies
0
Views
128
samiramiss
samiramiss
bazil2
  • Locked
  • Question
Read line from file after marker and ignore characters before - can this be done? 1
Replies
2
Views
97
bazil2
bazil2
MarkyA
  • Locked
  • Question
Image downloaded becomes unreadable
Replies
2
Views
142
MarkyA
MarkyA

Part and Inventory Search

Sponsor

Back
Top