On 04/01/2016 02:43 AM, Daniel wrote:
I'd rather not use names, use a specific ip for localhost or a network, You will save yourself from issues in the long run. El vie., 1 abr. 2016 a las 11:27, Marat Khalili (<mkh@xxxxxx <mailto:mkh@xxxxxx>>) escribió: Yes. According to documentation at https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html#require :When multiple |Require| directives are used in a single configuration section <https://httpd.apache.org/docs/2.4/sections.html#merging> and are not contained in another authorization directive like |<RequireAll> <https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html#requireall>|, they are implicitly contained within a |<RequireAny> <https://httpd.apache.org/docs/2.4/mod/mod_authz_core.html#requireany>| directive. Thus the first one to authorize a user authorizes the entire request, and subsequent |Require| directives are ignored.You can make your intent more clear with:<Directory "/srv/cdn/utility"> AllowOverride None php_value include_path "/srv/cdn/phpinclude" <RequireAny> Require local Require ip 2001:db8::a00:20ff:fea7:ccea Require ip 10.1.2.3 </RequireAny> </Directory>Also, "Require local" seem to have only appeared in documentation to version 2.5. Are you using 2.5 already?
It's in the 2.4 documentation here: https://httpd.apache.org/docs/2.4/mod/mod_authz_host.html --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|