httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Joshua Slive" <jos...@slive.ca>
Subject Re: [users@httpd] htdigest
Date Mon, 28 Apr 2008 15:44:59 GMT
On Mon, Apr 28, 2008 at 3:28 AM, Marta Gros MarĂ­n <mgros@linceo.es> wrote:
>
> Hi,
>
> I need my web server to be secure, so I have activated SSL and also have
> different users with password, depending on the files they can see.
> For those users I'm using auth method Digest, and want to manage them from
> the web server (add/modify and delete them).
> But I can't find how to delete an user with htdigest (like htpasswd -D user)
> or add/modify an user taking the password from the command line rather than
> prompting for it (like htpasswd -b user password).
> Can anyone please help me? is that possible with htdigest? if it's not, then
> is it secure manage users having auth method basic with SSL?

I wouldn't really recommend calling htdigest or htpasswd from a CGI
script, as you appear to be doing. You should write a script that
manipulates the password file directly. There is some guidance here:
http://httpd.apache.org/docs/trunk/misc/password_encryptions.html#digest

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message