httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Joshua Slive" <jos...@slive.ca>
Subject Re: [users@httpd] mod_access problem
Date Fri, 21 Sep 2007 13:08:32 GMT
On 9/21/07, m.a.m.vanbeek@student.utwente.nl
<m.a.m.vanbeek@student.utwente.nl> wrote:
> Hi,
>
> When I use the mod_access directives to limit access to certain files or
> commands, they just seem to be ignored. For example, to disable
> downloading of .htaccess and .htpasswd files I use the (almost) standard
> rules of:
>
> ---  example ---
> <Files ~ "^\.ht">
>     Order allow,deny
>     Deny from all
>     Satisfy all
> </Files>
> --- /example ---
>
> As far as I know this should disallow anyone (including users logging in
> through HTTP AUTH) to open the .ht* files. But if I try to download
> them, they can be opened.
> The same problem goes for any other access limiting based on IP.

Start by reading this:
http://httpd.apache.org/docs/2.2/sections.html#mergin

It may be that you have other access-control directives in a
<Location> section that are overriding your <Files> section.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message