My host tells me .htaccess is enabled on the server

I created a folder in my webspace called /secure and uploaded a file called

..htaccess and .htpasswd. contents below. but it does not work.

Any idea what is wrong?



htaccess
/home/website1/secure/.htpasswd AuthGroupFile /dev/null AuthName "Security
Area" AuthType Basic <Limit GET POST> require valid-user </Limit>

htpasswd
test:test

On 2006-10-04, Chris <me@privacy.net> wrote:
> I created a folder in my webspace called /secure and uploaded a file called
> .htaccess and .htpasswd.
> Any idea what is wrong?
>
> htaccess
> /home/website1/secure/.htpasswd AuthGroupFile /dev/null AuthName "Security
> Area" AuthType Basic <Limit GET POST> require valid-user </Limit>

Did you cut out a part of the file or is in this conditions? if it is,
then the file is hopelessy trashed.

> htpasswd
> test:test

The password can't be in clear text. You must create the file using
the provided tool htpasswd, that must use the same libraries of the
server, otherwise it won't be able to read the password correctly.

Read the documentation about basic authentication.

Davide

--
The memory management in Windows 95 can be used to frighten small children.

Chris wrote:
> My host tells me .htaccess is enabled on the server
>
> I created a folder in my webspace called /secure and uploaded a file called
>
> .htaccess and .htpasswd. contents below. but it does not work.
>
> Any idea what is wrong?
>
>
>
> htaccess
> /home/website1/secure/.htpasswd AuthGroupFile /dev/null AuthName "Security
> Area" AuthType Basic <Limit GET POST> require valid-user </Limit>
>
> htpasswd
> test:test

I don't know the answer to your problem, but I recently read that the
use of .htaccess is not the preferred method of doing security on a
directory. The recommendation was to define the access in the main
configuration file for Apache. By looking for .htaccess in every
directory, this slows down the performance of Apache.