Michael wrote:
>
> When I reconfigured Apache to allow .htaccess files the directories with
> .htaccess files started giving Internal Server Error when accessed via
> https. Any ideas why? Thanks.
James Hastings-Trew wrote:
> I think others have asked this question as well, but I would like a portion
> of my secure site to be blocked to access unless a name and password is
> entered.
There should be no problem with running password-access under SSL.
Double-check the following points:
- Your configuration should look something like this (assuming you put
the authorisation directives in httpd.conf):
<VirtualHost your_ssl_site:443>
...SSL directives...
DocumentRoot /home/web/html/secure
<Directory /home/web/html/secure/protected>
AuthType Basic
AuthName "Protected HTTPS Area"
AuthUserFile /home/web/admin/https.pwd
require valid-user
</Directory>
</VirtualHost>
- make sure to *restart the server* after making the changes.
- exit and restart the browser and clear the cache as a precaution (some
browsers tend to cache rather a lot and might serve up a cached page).
Best regards,
owen Boyle.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
