At 5:46 PM -0600 12/3/06, Richard Lynch wrote:
On Sun, December 3, 2006 9:57 am, tedd wrote:
> But, the "_vit_pvt" folder is not apparent. I can't get to it -- is
> this a host file that only they can access, or is there a secret
> handshake I need to get to it, or what?
That's a bull-crap made-up directory reference that FrontPage or
something of that ilk added because everybody uses FrontPage, and
everybody uses their lame-brained "security" layout of weird directory
names.
Replace it with a real AuthUserFile reference.
At 8:57 PM -0700 12/3/06, Frank Reichenbacher wrote:
That is the MS FrontPage auth system. Directories beginning with _
underscores cannot be viewed in your browser. Unless you want to
dump FrontPage, you do not want to be messing with this setup.
If you can't view these directories in FrontPage, it's because you
do not have the website set to show hidden files. Tools>Site
Settings.
Ahhh, thanks -- so it's a FrontPage phenomena. I was wondering about
that. I've heard enough bad things about FrontPage to shy away from
that.
I've used both .htacess (AuthUserFile ) and pulling a md5 encrypted
password from MySQL -- is one method more secure than another or are
they both about the same?
Opinions?
tedd
--
-------
http://sperling.com http://ancientstones.com http://earthstones.com
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
