On Mon, Jan 24, 2011 at 1:53 AM, J. Bakshi <joydeep@xxxxxxxxxxxxxxx> wrote: > Dear list, > > I have a .htaccess with authentication configuration located at the htdocs , so all folders under htdocs need a username / password to be accessed. Now I need to allow connection from a specific IP and to a specific folder, so it would be a password less access for that folder only when accessed from that IP. The .htaccess placed in that folder is > > `````````````````` > Allow from <ip address> > Satisfy Any > ```````````````` > > But this allows all the connection to be password less. Is there any mistake in this config ? How about preceding it with something that actually denies host-based access? Order allow,deny or Order deny,allow deny from all --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|