Jon, Here's a working .htaccess file deny from all AuthName YourNameHere AuthType Basic AuthUserFile /path/to/userfile.txt AuthGroupFile /path/to/groupfile.txt require group groupname require user user1 user2 user3 satisfy any This also pre-supposes that your apache httpd.conf file has "allowoverride" enabled for .htaccess files enabled for the directory you are trying to protect. My guess is that the problem lies with not having the require user / require group lines and the "deny from all" in your .htaccess file, and / or with not having allowoverride set properly in your httpd.conf file. Michael -- Michael Viron Registered Linux User #81978 Senior Systems & Administration Consultant Web Spinners, University of West Florida At 09:08 PM 08/28/2001 -0400, you wrote: >Ok, I am trying to setup my webserver with webmin, ssl enabled. I have my >.htgroup and .htpasswd setup, htgroup has all the users names, .htpasswd has >the user name and password, in /var/www/ >Then I have .htaccess in /var/www/media/stuff/ so inorder to go beyond stuff >users should have to put in a password. Well they don't, it just lets them >through. Here is the .htaccess file, have it got it wrong? Obviously..lol > >AuthType Basic >AuthUserFile /var/www/.htpasswd >SSLRequireSSL >AuthGroupFile /var/www/htgroup >SSLVerifyClient none > >Any help would be apriciated. > >Want to buy your Pack or Services from MandrakeSoft? >Go to http://wwww.mandrakestore.com >
Want to buy your Pack or Services from MandrakeSoft? Go to http://wwww.mandrakestore.com
