[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] CGI-Bin on RAQ2
- Subject: Re: [cobalt-users] CGI-Bin on RAQ2
- From: Mike Vanecek <nospam99@xxxxxxxxxxxx>
- Date: Fri Nov 23 09:37:02 2001
- Organization: anonymous
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
On Thu, 22 Nov 2001 16:19:19 -0500, "Dan Kriwitsky"
<webhosting@xxxxxxxxx> wrote:
[snip]
:>> It seems that cgiwrap overrides htaccess authentication. E.g.,
:>>
:>> This url triggers htaccess authentication (the subdirectory /robo/info
:>> has the .htaccess file shown at the bottom of this message):
:>>
:>> http://<domain>/robo/info/who.pl
:>>
:>> This url does not trigger htaccess authentication:
:>>
:>> http://<domain>/cgiwrapDir/cgiwrap/robo/info/who.pl
:>>
:>> The Qube2 htaccess file in the robo/info directory is
:>>
:>> AddType text/x-server-parsed-html .html .shtml
:>> AuthUserFile /home/groups/home/robo/info/.htpasswd
:>> AuthGroupFile /dev/null
:>> AuthName "Robo Members"
:>> AuthType Basic
:>> <Limit GET PUT POST>
:>> require valid-user
:>> </Limit>
:>>
:>> If I understand what I am seeing ???? then it would seem that the use of
:>> cgiwrap is not providing security, but has removed it??
:>>
:>> The script is a simple read a file and write the contents to the web
:>> page (list of members of a majordomo list).
:>>
:>
:>You need to turn off AuthPAM.
:>Just add:
:>
:>AuthPAM_Enabled off
Thanks for the response.
If that line is in the .htaccess file in the protected directory I
receive a internal server error when the browser tries to open the page.
I initially had it in the script, but removed it to avoid receiving the
internal error.
Does something else need to be turned on for this to work?
Thanks, Mike.