Originally Posted by
HighCommander540
I'm not sure if this will help, but don't you need the Allow from to look like this to work for all your local network:
Allow from 10.1.1.*
Thanks for the advice, but this gives me the same result as before, any IP address can access the site with no login info. :\
Interestingly, I get this same result even if I take the latter httpd.conf (the one that require passwords and has no other options for authorization) and add "Satisfy Any". This happens even after I add these two lines:
Code:
Order Allow,Deny
Deny from all
Even if I alter the httpd.conf to ONLY accept connections from my local network, I can still access it from outside. What is going on here?
Right now my httpd.conf is as follows:
Code:
<Directory /var/www>
AuthName "home control"
AuthType Basic
AuthUserFile /etc/apache2/.htpasswd
Require valid-user
Order Allow,Deny
Deny from all
# Satisfy Any
# Allow from 10.1.1
</Directory>
If I uncomment both, or even just the Satisfy Any line, the password protection evaporates and anyone can access the site. This happens both with the second line reading 10.1.1 and 10.1.1.*.
Thanks again if anyone can help.
Bookmarks