On 6/20/26 07:45, void wrote:
Hello misc@,
Does anyone use an alternative to htpasswd for base httpd?
I'd like to use for example a ssh or gpg key for auth.
Is this feasible/has it been done already?
The other way I guess would be to use fail2ban for the web service.
thanks in advance for any perspective.
I think you need to tell us what task you are attempting to accomplish,
rather than what tool you are trying to avoid to accomplish it.
But ... my quick answer based on my interpretation of your
request would be that you are trying to restrict access to a web
server (but I fail to see how fail2ban helps with this). A couple
easy ways to do that without htpasswd would be authpf(8) -- log
into an account via ssh with the authpf shell and your IP address
is opened up in PF for accessing the web server, or use ssh tunnels,
and not expose httpd to the external network port at all.
For cases with a small number of skilled users, I'm fond of ssh
tunnels, as they solve the end-to-end encryption (don't need to worry
about ssl certs) and you can channel a lot of different applications
through one tunnel.
Nick.
