I have a docroot site password protected in the usual manner in httpd.conf section of the virtual domain: AuthUserFile /home/site/public/.htpasswd AuthName "What's the Secret Word?" AuthType Basic require valid-user How can I un-protect a subdirectory of that site? I've tried dozens of combinations of <directory>order allow,deny,etc .....in httpd.conf and the local .htaccess, but can't quite figure out the right combination. Thanks in advance. -- -Hank --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx