On 5/29/07, Pedro LaWrench <pedrolawrench@xxxxxxxxx> wrote:
In my main server, I allow all with <Directory /mydocs> Order allow,deny Allow all </Directory> Then in a virtual server (different port) I have <Directory /> Order deny,allow Allow from 10.1.2.3 Deny from all </Directory> Yet, it appears that all hosts can access /mydocs through the virtual server. Even with a deny for / in a virtual server config, is it true that more specific directory entries *outside* the virtual server config will still be in effect and take precedence?
Yes. For each directory, apache checks first for <Directory> sections outside vhosts then for <directory> sections inside vhosts. It does not apply all outside <directory> sections followed by all inside <directory> sections. Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|