On 9/22/05, Tanner Lovelace <[EMAIL PROTECTED]> wrote: > Why don't you, instead of using htpasswd files, use something > like mod_auth_pam?
I hadn't heard of this beast before. I guess that since it's using basic authentication from an apache configuration point of view, the passwords get sent in the clear, and the MD5 digest is computed in the apache process. I never thought about how secure (or actually insecure) the Apache/HTTP password protocols were until this thread got me doing a bit of googling. -- Rick DeNatale Visit the Project Mercury Wiki Site http://www.mercuryspacecraft.com/ -- TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug TriLUG Organizational FAQ : http://trilug.org/faq/ TriLUG Member Services FAQ : http://members.trilug.org/services_faq/ TriLUG PGP Keyring : http://trilug.org/~chrish/trilug.asc
