httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Matthew Shannon <>
Subject [users@httpd] allow override directive
Date Thu, 15 Jan 2004 01:38:25 GMT
Hi all,
   I have a directory with nearly 2000 user specific directories. Each
of these has it's own .htaccess file with a require user specification.
I am also restricting these logins by IP address. In the global conf, I
have the following;

<Directory "/home/apache/*">
   Options +Indexes +MultiViews FollowSymLinks
   AllowOverride AuthConfig Limit
   Order deny,allow
   deny from all
   Satisfy all

The "require user" in the .htaccess files works fine, however, when I
place an "allow from" in the .htaccess file, it opens the
directory up to all IPs instead of just the one. This is only countered
if another "deny from all" is placed in the .htaccess file. I was under
the impression that unless the deny configuration was overwritten, the
global "deny from all" would stick. 

My question is this: Is it the case that if one configuration from a
group ( allow, deny, etc. under the Limit group ) is changed, the others
go back to the default?

Thank you for your help,

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message