Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 29282 invoked from network); 29 May 2007 21:25:17 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 29 May 2007 21:25:17 -0000 Received: (qmail 8235 invoked by uid 500); 29 May 2007 21:25:10 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 8218 invoked by uid 500); 29 May 2007 21:25:10 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 8203 invoked by uid 99); 29 May 2007 21:25:10 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 29 May 2007 14:25:10 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (herse.apache.org: domain of jslive@gmail.com designates 64.233.162.236 as permitted sender) Received: from [64.233.162.236] (HELO nz-out-0506.google.com) (64.233.162.236) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 29 May 2007 14:25:05 -0700 Received: by nz-out-0506.google.com with SMTP id v1so1688172nzb for ; Tue, 29 May 2007 14:24:44 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=aMALthPsktz+9rOQRpUlF/Dv1VCojmeG/UxHrYvmKh9G+gJTxzo1/zRSDPt5HUaJF10MWqh4KaHLPZooaZWfRTFEhucLsIgnEZVeJZHhvyLIClnlTl10akB8QhBlYzmXxOeo7s+Z/ZxYMav7Vi50UrhllI+gdSeOl7slr3+xPwo= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=fM1k3oa5wfcHOTLZM1ikEenG3xVMduZFY7SujvmNLpTghXv9ECpLp4xw3KHd3/vAQraURLVboBGTPs1odxMFGtMY+E2WfebN9yUdyxFcfhmheCqydmE0DaILPQUgbhfp1NJfib5mlaSJ3+T72Gs7k1h0sbtQDEcylQaV3bJ1PhY= Received: by 10.115.14.1 with SMTP id r1mr3607798wai.1180473884038; Tue, 29 May 2007 14:24:44 -0700 (PDT) Received: by 10.114.53.5 with HTTP; Tue, 29 May 2007 14:24:44 -0700 (PDT) Message-ID: Date: Tue, 29 May 2007 17:24:44 -0400 From: "Joshua Slive" Sender: jslive@gmail.com To: users@httpd.apache.org In-Reply-To: <100893.3835.qm@web59007.mail.re1.yahoo.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <100893.3835.qm@web59007.mail.re1.yahoo.com> X-Google-Sender-Auth: 4ea0a92314e056e1 X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] issues with control On 5/29/07, Pedro LaWrench wrote: > In my main server, I allow all with > > Order allow,deny > Allow all > > > Then in a virtual server (different port) I have > > Order deny,allow > Allow from 10.1.2.3 > Deny from all > > > Yet, it appears that all hosts can access /mydocs through the virtual server. > Even with a deny for / in a virtual server config, is it true that more > specific directory entries *outside* the virtual server config will still be in > effect and take precedence? Yes. For each directory, apache checks first for sections outside vhosts then for sections inside vhosts. It does not apply all outside sections followed by all inside sections. Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org