Peter,
I made the configuration in httpd.conf file in such way that un-authorized
IPs or un-authorized users cannot execute this script, mean need
authentication(Realm-userid/passwd) to execute this.
It is always not advicable to place the cgi script under root dirctory
(../htdocs)., As you said, it is good idea to place it in a secured admin
directory, which contains .htaccess or some other strong authentication
required to access this dir.
Thanks,
Sikkandar.
----- Original Message -----
From: "Peter J. Schoenster" <[EMAIL PROTECTED]>
To: "N Sikkandar Dulkarnai" <[EMAIL PROTECTED]>
Sent: Sunday, April 15, 2001 11:02 PM
Subject: Re: Authentication.
> On 14 Apr 2001, at 15:17, N Sikkandar Dulkarnai wrote:
>
> > I am using Apache webserver 1.3.19. I have added ".htaccess" into the
> > root directory i.e ../htdocs, so that the user required Authentication
> > to access the files under this directory. Actually one of the html
> > file calls the ../cgi-bin/test.pl script (<FORM
> > Action="/cgi-bin/test.pl" METHOD=POST>). Once the form is submitted,
> > the test.pl script will be executed and print the result into the
> > browser.
>
>
> Just put the cgi in htdocs ... or somewhere else under control of
> that .htaccess file. I usually create an admin directory for that.
>
> Of course you can always require create some hack so the cgi is
> only used by registered users; I've done that too but I find it too
> much trouble in most cases, so I just put the scripts I want to
> protect an in a protected directory.
>
> Peter
> All idioms must be learned.
> Good idioms only need to be learned once.
> --Alan Cooper
