Web Server Configuration
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
 
User Name:
Password:
Remember me
 
Go Back   Dev Articles Community ForumsWeb DesignWeb Server Configuration
Reload this Page

.htaccess question

Discuss .htaccess question in the Web Server Configuration forum on Dev Articles.
.htaccess question Web Server Configuration forum to discuss the problems and solutions of Apache and IIS Server configurations. Your web server is like the engine to your website, and if tuned badly it will make your website suffer

Record onscreen activity, your voice & webcam video. Turn everyday presentations into HD-quality videos.

For perfectly clear screencasts every time.
At the IBM® developerWorks Developer Knowledge Center you'll find resources for FREE ekits, Tutorials, Webcasts, Trial Downloads and more.


We cover the world of technology like no one else, constantly updating you with the best information available on open source software, Microsoft technologies, hardware and news from around the world.

Try Camtasia Studio today!
Visit the IBM® Developer Knowledge Center today!
Sign up today!

Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Display Modes
 
Unread Dev Articles Community Forums Sponsor:
  #1  
Old February 9th, 2006, 05:09 PM
stu19 stu19 is offline
Registered User
Dev Articles Newbie (0 - 499 posts)
  
Join Date: Feb 2006
Location: USA
Posts: 2 stu19 User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 40 m 58 sec
Reputation Power: 0
.htaccess question
Having a problem. Have a script on a server and am trying to protect a secure folder with the .htaccess file (below). It appears to work fine....blocks access from any IP except mine. However, there is one person that is able to still get in. The log shows he is coming in from an entirely different IP. He is doing unscrupulous things such as entering fake deposits, etc. I realize I'm not giving much info, but I'm not very knowlegeable about all this. The people who I lease the server from appear to be stumped.....anyone have any suggestions?...would be much appreciated.

AuthUserFile /var/www/virtual/subdomains/admin/trusted/.htpasswd
AuthGroupFile /dev/null

AuthName Members
AuthType Basic
require valid-user
order allow,deny
Allow from <my-IP-address>
Deny from any
Reply With Quote
  #2  
Old February 10th, 2006, 12:44 AM
Icon's Avatar
Icon Icon is offline
Command Line Warrior
Click here for more information. Click here for more information
 
Join Date: Sep 2005
Posts: 956 Icon User rank is Private First Class (20 - 50 Reputation Level)Icon User rank is Private First Class (20 - 50 Reputation Level) 
Time spent in forums: 1 Week 6 Days 15 h 22 m 40 sec
Reputation Power: 5
This is a longshot, since it's been awhile since I've tinkered with .htacces, but maybe 'deny from all' instead of 'any'?
Reply With Quote
  #3  
Old February 10th, 2006, 07:56 AM
MadCowDzz's Avatar
MadCowDzz MadCowDzz is offline
I'm Internet Famous
Dev Articles Frequenter (2500 - 2999 posts)
  
Join Date: Jan 2003
Location: Toronto, Canada
Posts: 2,890 MadCowDzz User rank is Lance Corporal (50 - 100 Reputation Level)MadCowDzz User rank is Lance Corporal (50 - 100 Reputation Level)MadCowDzz User rank is Lance Corporal (50 - 100 Reputation Level) 
Time spent in forums: 1 Week 16 h 14 m 9 sec
Reputation Power: 10
I agree... I would try Deny from all
__________________
Daryl's Homepage | My Blogroll | My Profile | Firefox supporter!
DevArticles Forum Moderator

"The net is a waste of time, and that's exactly what's right about it." -- William Gibson
Reply With Quote
  #4  
Old February 10th, 2006, 11:01 AM
stu19 stu19 is offline
Registered User
Dev Articles Newbie (0 - 499 posts)
  
Join Date: Feb 2006
Location: USA
Posts: 2 stu19 User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 40 m 58 sec
Reputation Power: 0
Quote:
Originally Posted by MadCowDzz
I agree... I would try Deny from all


Thanks for your replies...will try it.

I'm guessing that if "any" is incorrect and it should be "all" then it wouldn't deny any IP (?yes/no?). Right now it appears to deny all the IPs that I've tested it with (except for mine)...however, my intruder seems able to get in at will....and he doesn't always have the same IP...usually resolves back to an AOL address.

Thanks
Reply With Quote
  #5  
Old February 10th, 2006, 11:12 AM
Icon's Avatar
Icon Icon is offline
Command Line Warrior
Click here for more information. Click here for more information
 
Join Date: Sep 2005
Posts: 956 Icon User rank is Private First Class (20 - 50 Reputation Level)Icon User rank is Private First Class (20 - 50 Reputation Level) 
Time spent in forums: 1 Week 6 Days 15 h 22 m 40 sec
Reputation Power: 5
Yeah, so this will probably not work. But I guess it's worth a chance Isn't there a global hosts.allow file or something on that machine which is (I don't know how) bypassing your .htaccess? I'm grasping at straws here sorry..
Reply With Quote
Reply

Viewing: Dev Articles Community ForumsWeb DesignWeb Server Configuration > .htaccess question

« Previous Thread | Next Thread »

Thread Tools  Search this Thread 
Search this Thread:

Advanced Search
Display Modes  Rate This Thread 
Linear Mode Linear Mode
Rate This Thread:


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox
Forum Jump




 Free IT White Papers!
 
Create the Optimal Architecture for your Critical Applications
Warburton's the largest independently owned bakery in the UK faced a number of difficult challenges in providing the most robust yet efficient IT infrastructure for their organization's success. IBM's services combined with their xSeries servers created the perfect platform for their SAP environment with sufficient flexibility, and did so in very time effective fashion.
Request Your Free Technology Downloads!
 
Five Best Practices for Deploying a Successful Service-Oriented Architecture
This white paper describes the benefits you can expect with SOA, and how IBM can help take your business there.
Request Your Free Technology Downloads!
 
Gartner Magic Quadrant for Application Delivery Controllers
Gartner summarizes its view on Application Delivery Controllers, evaluates strengths and weaknesses of solutions, and provides Magic Quadrant reporting for a quick comparison across all vendors. Learn from Gartner how you can benefit from an all-in-one device like Citrix NetScaler that delivers the highest levels of availability, performance and security.
Request Your Free Technology Downloads!
 
Knowledge is Power
What you don't know can hurt you, and is likely costing you money and increasing your security risks during an era of scarce resources. This white paper proposes six key strategies that enterprise security managers can use to improve their network defense posture.
Request Your Free Technology Downloads!
 
Rationalizing the Multi-Tool Environment
The rationalized multi-tool approach is flexible, scalable and cost effective. It provides the necessary input to the IT service management business processes. It preserves prior investments in monitoring tools, empowers technologists to select the best tools with which to do their jobs, and enhances effective response to incidents.
Request Your Free Technology Downloads!
 

Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
  
 




© 2003-2010 by Developer Shed. All rights reserved. DS Cluster 9 Hosted by Hostway
For more Enterprise Application Development news, visit eWeek