Re: [users@httpd] how to enable a module in one virtualhost

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Joshua Slive wrote:
On 1/24/06, Jason Keltz <jas@xxxxxxxxxxx> wrote:

Joshua Slive wrote:

On 1/24/06, Jason Keltz <jas@xxxxxxxxxxx> wrote:


Hi.

I'm running Apache 1.3.34, and have a question that I was hoping someone
might be able to help me with.

I have two virtual hosts - one for standard HTTP, and the other for
HTTPS.  All I want to be able to do is to enable one module
(mod_auth_pam actually) in the https virtualhost, and NOT have the
module defined in the HTTP virtualhost so that authentication with PAM
is not done in the clear.  mod_auth_pam isn't really all that important
to this problem though.  There must be a way to enable a module in one
virtualhost, and not have it enabled in the other one, all on the same
server.  If there is, I can't find it..


It is the responsibility of the module to define where it is or is not
in effect.  Most modules provide directives to turn themselves on or
off.  In the case of mod_auth_pam, it seems like "AuthPam_Enabled off"
will do the trick.

Hi Joshua,

Thanks for your response.

The problem with this is that while I can disable the module with
AuthPam_enabled off, the user can then "enable" it in their .htaccess
file with the AuthPam_enabled on.  I am looking for a higher level way
of making it so that the module is not even available to the http
server.  I would have thought this is something that Apache would do.


It is always up to the module to decide where it has effect and where
it doesn't.

You can use

<Location />
AuthPAM_Enabled off
</Location>

in the appropriate <VirtualHost> to override .htaccess.

Excellent. That does work. However, the authentication page still comes up requesting a username/password when I attempt to visit the http version of the page. It's just that any username and password will display the "Internal Server Error". Is there any way to make that failure error come up without even displaying the authentication page?

Thanks a lot..

Jason.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux