httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Raymond S Brand <>
Subject Re: Change relative path for AuthUserFile, perhaps?
Date Thu, 13 May 1999 03:16:27 GMT
David Harris wrote:
> I agree. Having the path be relative to the directory of the AccessFile
> which contains the Auth*Files directive is better. That's what I most
> commonly have... a .htaccess and .htpasswd file in the same directory.
> Then adding in blocking for .htpasswd files just like .htaccess files, along
> with a warning on the docs could help with security.
> Can this be done? What about reverse compatibility for other webmasters?

Can it be done? Yes. Can it be done compatibly? No. How big an issue is
compatibility? It's not for my setups (ServerRoot is on a read only partition).
I THINK (really a guess) that most Auth*File directives in use use absolute
paths but I don't really know.

Raymond S Brand

View raw message