Date: Wed, 7 Apr 1999 12:44:53 -0700 (PDT) From: <jfesler@gigo.com> To: Deepwell Internet <freebsd@deepwell.com> Cc: Ryan Mooney <ryan@pcslink.com>, freebsd-isp@freebsd.org Subject: Re: Apache users file (was Re: Web Based Script) Message-ID: <Pine.BSF.4.05.9904071242380.383-100000@heaven.gigo.com> In-Reply-To: <4.1.19990408123628.012aec70@mail1.dcomm.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> master.passwd and they also exist in a .db file. I wouldn't want to raise
> the permissions of httpd, and I don't want to open hte shadow file to everyone.
You'll want a cron event that makes a copy, owned by the web server, mode
700. Secondly, you'll want the web server to _not_ serve that document -
ie, using the <Files> directive. Assuming you name it .htpasswd ..
<Files .htpasswd>
Order allow,deny
Deny from all
</Files>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.9904071242380.383-100000>