Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 59311 invoked from network); 7 Aug 2006 15:43:14 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 7 Aug 2006 15:43:14 -0000 Received: (qmail 51822 invoked by uid 500); 7 Aug 2006 15:43:04 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 51811 invoked by uid 500); 7 Aug 2006 15:43:04 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 51800 invoked by uid 99); 7 Aug 2006 15:43:04 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Aug 2006 08:43:04 -0700 X-ASF-Spam-Status: No, hits=0.8 required=10.0 tests=DNS_FROM_RFC_ABUSE,MAILTO_TO_SPAM_ADDR,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of jslive@gmail.com designates 66.249.92.170 as permitted sender) Received: from [66.249.92.170] (HELO ug-out-1314.google.com) (66.249.92.170) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Aug 2006 08:43:03 -0700 Received: by ug-out-1314.google.com with SMTP id u2so117816uge for ; Mon, 07 Aug 2006 08:42:41 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=N+Y46nsTqxF1tRChq5JP/wG5H7UcmOF/8XtvbxutIi+gITZ0dOCRAgcjKQMdJMAwVFrpWlShF7Iy5NN84OWsm83sQe0QwotQgl6iXEcJ+CFS//YzAzh4xQHZoyXlqPn5x60Sm7/FjjEXNp60A6wu4tX9t/t+WBCm3OEblICZtrE= Received: by 10.78.116.19 with SMTP id o19mr824144huc; Mon, 07 Aug 2006 08:42:41 -0700 (PDT) Received: by 10.78.142.9 with HTTP; Mon, 7 Aug 2006 08:42:41 -0700 (PDT) Message-ID: Date: Mon, 7 Aug 2006 11:42:41 -0400 From: "Joshua Slive" Sender: jslive@gmail.com To: users@httpd.apache.org In-Reply-To: <000c01c6ba32$b752dcf0$0300000a@smallbusiness.local> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <000c01c6ba32$b752dcf0$0300000a@smallbusiness.local> X-Google-Sender-Auth: 62f736ee4e0d44ab X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] Several .htaccess X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N On 8/7/06, Marc MENDEZ wrote: > Hi, > > The root of our extranet site is protected by a .htaccess file. If the user > is inside our network, no identification is required. Otherwise, he must > identified. > Here is the file : > > AuthUserFile path_to_password_file > AuthGroupFile /dev/null > AuthName ":: INFORMATIONS CONFIDENTIELLES ::" > AuthType Basic > > > order deny,allow > deny from all > allow from our_network > require valid-user > satisfy any > > > It works > > However, a subdirectory must be restricted differently : if the user is > outside our network, no access ! > Here is the second .htaccess > Allow from our_network > Deny from all > > This second .htaccess worked 'till I modify the first one to prevent users > from identifying if they are in our network. > > I suppose that as the first .htaccess grants access to the whole website, > the second one is not used..... > How can I urge Apache to use the second one ? 1. Remove the lines and which are not needed and are a possible security risk. (Read the docs on for more info.) 2. Put "Satisfy all" in the .htaccess in the subdirectory. Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org