[3050] in WWW Security List Archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Any known holes in .htaccess/.htpasswd directory security?

daemon@ATHENA.MIT.EDU (John Allen)
Tue Sep 24 13:36:45 1996

From: John Allen <JOHNAL@attachmate.com>
To: "'www-security@ns2.rutgers.edu'" <www-security@ns2.rutgers.edu>
Date: Tue, 24 Sep 1996 09:13:20 -0700
Errors-To: owner-www-security@ns2.rutgers.edu

-----BEGIN PGP SIGNED MESSAGE-----

As the subject says, are there any known holes in the
.htaccess/.htpasswd directory security setup? Can't think of any, but my
ISP won't implement it 'cause they're afraid of potential security
holes. Thanks!


-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBMkgImsEQ+vsH5YJtAQEd0AP+Mnruknt26D60zaCDwHX5vw4XQRKkO+TZ
VWLnUgx71/AvpXRh3/7Xf+75TwAVTv4kY55tDnavUDuJ+rV7/yJfu/iuiqnQ2bNI
hCoFr8PQ+e4qCj+2ajA3FWPORSNTsrDyu2JqDKZAWyBvjYvdw2mt6ctCRmuGVEJr
qEsOC67bWK8=
=Ry63
-----END PGP SIGNATURE-----

--  John D. Allen,  Enterprise Systems Consultant,  Attachmate
Corporation
--  EMail: Johnal@attachmate.com  PGP: Finger -l johnal@attachmate.com
--  Co-Author, Windows 3.1 Connectivity Secrets, 1994, IDG Books


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3050] in WWW Security List Archive

Any known holes in .htaccess/.htpasswd directory security?

daemon@ATHENA.MIT.EDU (John Allen)Tue Sep 24 13:36:45 1996

daemon@ATHENA.MIT.EDU (John Allen)
Tue Sep 24 13:36:45 1996