Good point about the robots.txt file...As for mod_auth_mysql...I guess I should have used mod_auth_digest as my example to be more correct..
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Vince Hoang Sent: Wednesday, February 09, 2005 11:43 PM To: LUAU Subject: Re: [LUAU] apache security question On Tue, Feb 08, 2005 at 01:34:32PM -1000, Jaymes Schooler wrote: > And Rightfully so...Being Paranoid that is... You may > want to use something a little stronger for authorization such as > mysqlauth or almost any other authentication Scheme/Module...Also you > may want to include nobots.txt in any directory you do not want a > search engine to probe. What portable authentication types are there besides HTTP authentication and cookie authentication? If you are referring to mod_auth_mysql, I thought that was HTTP Basic authentication with a DB backend instead of a flat file. A robots.txt file will only keep out good bots. Otherwise, it is fodder for the malicious ones. -Vince _______________________________________________ [email protected] mailing list http://lists.hosef.org/cgi-bin/mailman/listinfo/luau
