[wplug] Opinion: restricting access to Apache
John Harrold
jmh17 at pitt.edu
Fri Jun 4 12:39:50 EDT 2004
Sometime in June ARiley at edgarsnyder.com assaulted the keyboard and produced:
| I'm locking down an intranet web server , allowing only certain users and
| IP addresses to connect. The people that will connect will be few in
| number but scattered across the US.
|
| Is the preferred way of restricting access to Apache still through
| mod_access, mod_auth as the documentation suggests? I get the impression
| that passwords are sent in clear text. Are there any other avenues that I
| should explore?
If you do this over ssl, wouldn't that encrypt the passwords and the rest
of the traffic?
--
----------------------------------------------------------
| /"\
john harrold | \ / ASCII ribbon campaign
jmh at member.fsf.org | X against HTML mail
the most useful idiot | / \
----------------------------------------------------------
What difference does it make to the dead, the orphans,
and the homeless, whether the mad destruction is brought
under the name of totalitarianism or the holy name of
liberty and democracy?
--Gandhi
----------------------------------------------------------
gpg --keyserver keys.indymedia.org --recv-key F65A739E
----------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://penguin.wplug.org/pipermail/wplug/attachments/20040604/340cfcab/attachment-0001.bin
More information about the wplug
mailing list