httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eugene Lee <>
Subject Re: [users@httpd] How do I protect a CGI directory?
Date Fri, 04 Jun 2004 17:54:26 GMT
On Fri, Jun 04, 2004 at 01:44:36PM -0400, wrote:
: I want my users to go to and click on links to get to
: programs in my CGI directory.  Specifically, I want to keep them from
: using URLs like https:/
: I thought I knew how to do this.  All of my CGI programs are in
: /usr/apache/cgi-bin and I'd added this to my httpd.conf file:
:  <Directory /usr/apache/cgi-bin>
:    Require valid-user
:  </Directory>
: I can't get any CGIs, even after logging in.  My error_log has things
: like:
:   [Fri Jun  6 14:18:43 2004] [crit] [client] configuration error:  couldn't perform
authentication. AuthType not set!: /cgi-bin/xxx.cgi
: So, how _do_ I make sure users are validated before running any CGIs?  TIA.

Well, the message in error_log is actually quite self-explanatory:
you need to specify an AuthType.  Like so:

	<Directory /usr/apache/cgi-bin>
		AuthType Basic
		AuthName "Restricted CGI"
		AuthUserFile /usr/apache/passwd
		Require valid-user

For more info:

Eugene Lee

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message