Yeah. I plan to release 1.39 soon. Which has fixes, by the way, for two holes on windows version - for CGI code disclosure and directory listing. Do not use 1.38 or earlier to serve files on Internet! Or, better, do not use windows...
On 11/02/2008, Fred <[EMAIL PROTECTED]> wrote: > At 20:56 11/02/2008 +0000, Sergey Lyubka wrote: > >As I said, use either: > >1. "htpasswd.exe" utility from apache distribution, > >2. re-build shttpd yourself from CVS > >3. use http://silversoft.net/~devnull/tmp/shttpd.exe > > Thanks Sergey, I finally got it working: > 1. Download Apache 2.x for Windows > 2. From its /bin directory, use htdigest.exe (not htpasswd.exe: SHTTPD uses > the digest authentication scheme), and run eg. "htdigest.exe -c .htpasswd > localhost admin") > 3. Move the .htpasswd file in the directory you wish to protect. > > Note: Contrary to the examples I read on the web, the line must include the > "realm": > > admin:localhost:413bc7f363027891e6f4749eada79a73 > > This won't work: > > admin:413bc7f363027891e6f4749eada79a73 > > Thanks again > Fred. > > ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ shttpd-general mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shttpd-general
