httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David H <godave...@yahoo.com>
Subject [users@httpd] Dav security problem
Date Sun, 14 Mar 2004 03:26:13 GMT
Hi all,

I have seted up apache 2.0.48 with mod_dav and
mod_php. Everything is working fine but I have this
security problem... here is my configuration under
ssl.conf:


Alias /demo /home/demo/docs
<Location /demo>

        Dav On

        ForceType text/plain
        AllowOverride None
       Options None

        AuthType Basic
        AuthName Demo
        AuthUserFile /web/www/restriction/demo

        <LimitExcept GET POST OPTIONS>
                require user david
        </LimitExcept>
</Location>

It did asked me for login name and password when I
connect with dav mapping in windows, but when I make
and directory under demo like example01 and have a
html file called test.php. Now on my browser I type
https://www.mysite.com/demo/example01/test.php I see
all the code. I am not being ask for password at all.
Do anyone know what is wrong?

Thanks,
David

__________________________________
Do you Yahoo!?
Yahoo! Mail - More reliable, more storage, less spam
http://mail.yahoo.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message