httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bob Smith <>
Subject Re: [users@httpd] Authentication Problems
Date Mon, 17 Jan 2005 14:32:27 GMT
On 1/17/2005 4:16 AM, Boyle Owen wrote:
>>-----Original Message-----
>>From: Alan Lloyd [Hosting Reserve]
>>Sent: Freitag, 14. Januar 2005 11:40
>>Subject: [users@httpd] Authentication Problems
>>I am having a few problems with authentication. No matter what I do I 
>>can not set up a password protected directorys.
>>I have tried using .htaccess, a directory container in the conf file 
>>even tried using plesk (plesk does it automatically in the conf file).
>>When I set everything up all I get is a 401 error. There is no pop-up 
>>login box. So no chance to even enter a passwd.
> Here's my input based on your initial post:
> - In httpd.conf you have "AllowOverride All" globally which is fine,
> this allows .htaccess to work anywhere... except where you disable it
> with "AllowOverride None" in /var/www/icons,manual,cgi-bin and error. So
> that's OK (I assume your protected directory is not in any of these).
> - It would be nice to see your .htaccess to check you have the syntax
> right [the fact it "works" in another server is not proof: the other
> server might have authentication set up in its config file and it only
> looks like the .htaccess file works]. Nevertheless, let's assume it
> works anyway.
> - When I try the link to, I get 403
> Forbidden. That means that /admin is not in the webspace or does not
> have an Allow directive. In your config, you have:
> DocumentRoot /home/httpd/vhosts/default/httpsdocs 
> but the only directories containing an "Allow from" are under /var/www.
> So nothing at all should be accessible on your site. However, it is, so
> all the other allows must be in /etc/httpd/conf/httpd.include (which
> unfortunately you don't share with us).

If you have /var/www as an alias (or soft link) to (say) 
/home/httpd/vhosts/default, then it is my experience that mixing those 
references (that is, sometimes using /var/www and sometimes using the other) is 
a formula for trouble.  It seems that, sometimes, Apache does a string compare 
on the initial text of paths to determine whether or not two paths are the same, 
rather than expand links to the raw paths and then compare.

Bob Smith - -
a.k.a.    -

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message