Return-Path: Delivered-To: apache-bugdb-archive@hyperreal.org Received: (qmail 8947 invoked by uid 6000); 27 May 1998 01:30:04 -0000 Received: (qmail 8925 invoked by uid 2001); 27 May 1998 01:30:01 -0000 Date: 27 May 1998 01:30:01 -0000 Message-ID: <19980527013001.8924.qmail@hyperreal.org> To: apache-bugdb@apache.org Cc: apache-bugdb@apache.org, From: Brian Behlendorf Subject: Re: os-windows/2145: .htaccess will password protect directory but not individual files if name of file is guessed Reply-To: Brian Behlendorf Sender: apache-bugdb-owner@apache.org Precedence: bulk The following reply was made to PR os-windows/2145; it has been noted by GNATS. From: Brian Behlendorf To: "Agent Zap" Cc: apbugs@Apache.Org Subject: Re: os-windows/2145: .htaccess will password protect directory but not individual files if name of file is guessed Date: Tue, 26 May 1998 18:36:41 -0700 At 06:20 PM 5/26/98 PDT, Agent Zap wrote: >>Synopsis: .htaccess will password protect directory but not individual >files if name of file is guessed >> >>State-Changed-From-To: open-analyzed >>State-Changed-By: brian >>State-Changed-When: Tue May 19 18:55:43 PDT 1998 >>State-Changed-Why: >>AgentZap is right, on Windows 95 the auth is ignored. I >>haven't tested this yet on Windows NT, I'll try that tonight. > >Did you find anything or come up with any reason as to why this is going >on? I just d/l 1.3b7 for win32 tonight and if I guess the filename it >still lets me in without prompt. I am still using win95 and netscape >4.05. (Yes just to make sure it isn't cached I clear the memory and >file cache then exit netscape and manually delete fat.db and relaunch >and try again- you can never be too safe heh). Nope, no one's had the time/resources to deal with it. If it's still there over the next week we may officially disrecommend Win95 as a supported platform. Brian --=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-- pure chewing satisfaction brian@apache.org brian@hyperreal.org