Setting up password authentication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I want to setup digest password authentication as a light deterrent
around a development site (i.e. nothing sensitive, just not ready for
public consumption).

I added the following to httpd.conf:

<Directory "/var/www/html/dev">
        AuthType Digest
        AuthName "Development Area - Authorised Access Only!"
        AuthUserFile /usr/local/apache2/passwd/digest
        Require user username
        Order Deny,Allow
        Deny from all
        Allow from {ipaddress}
</Directory>

<VirtualHost *:80>
     ServerAdmin administrator@xxxxxxxxxxxx
     ServerName dev.domain.co.uk
     DocumentRoot /var/www/html/dev
</VirtualHost>

I then created a password file:

htdigest -c /usr/local/apache2/passwd/digest realm username

Finally I restarted apache:

apachectl graceful

A few issues:

1. I don't know what the significance of realm is, nor have I been able
to find out.

2. Attempts to connect to this site get the username and password box,
but all produce an Error 500 page, regardless of whether the correct
credentials are entered or not. No files exist within /var/www/html/dev
because I simply wished to test authentication.

Everything looks okay as best as I can tell, but as this is my first
crack at this sort of thing I'm hoping for some guidance.

Paul Cocker
Systems Infrastructure Support Administrator




TNT Post is the trading name for TNT Post UK Ltd (company number: 04417047), TNT Post (Doordrop Media) Ltd (00613278), TNT Post Scotland Ltd (05695897),TNT Post North Ltd (05701709) and TNT Post South West Ltd (05983401). Emma's Diary and Lifecycle are trading names for Lifecycle Marketing (Mother and Baby) Ltd (02556692). All companies are registered in England and Wales; registered address: 1 Globeside Business Park, Fieldhouse Lane, Marlow, Buckinghamshire, SL7 1HY.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux