Eric Pretorious
Regular Pleskian
http://httpd.apache.org/docs/2.2/mod/mod_auth_basic.html said:The most common [authentication] method is Basic, and this is the method implemented by mod_auth_basic. It is important to be aware, however, that Basic authentication sends the password from the client to the server unencrypted... Apache supports one other authentication method: AuthType Digest. This method is implemented by mod_auth_digest and is much more secure.
The mod_digest module is loaded:
Code:
[root@www ~]# apachectl -t -D DUMP_MODULES | grep auth
auth_basic_module (shared)
auth_digest_module (shared)
authn_file_module (shared)
authn_alias_module (shared)
authn_anon_module (shared)
authn_dbm_module (shared)
authn_default_module (shared)
authz_host_module (shared)
authz_user_module (shared)
authz_owner_module (shared)
authz_groupfile_module (shared)
authz_dbm_module (shared)
authz_default_module (shared)
authnz_ldap_module (shared)
However, it's not listed in the Plesk interface (i.e., Home > Tools & Settings > Apache Modules):
- php5
- asis
- auth_basic
- authn_alias
- authn_anon
- authn_dbd
- authn_dbm
- authn_default
- authnz_ldap
- authz_dbm
- authz_default
- authz_groupfile
- authz_owner
- cache
- cern_meta
- cgi
- cgid
- dbd
- deflate
- disk_cache
- dumpio
- expires
- ext_filter
- fcgid
- filter
- headers
- ident
- include
- info
- ldap
- log_forensic
- logio
- perl
- proxy
- proxy_ajp
- proxy_balancer
- proxy_connect
- proxy_ftp
- proxy_http
- proxy_scgi
- python
- reqtimeout
- rewrite
- speling
- status
- substitute
- suexec
- unique_id
- userdir
- usertrack
- version
- vhost_alias
Code:
AuthUserFile /var/www/vhosts/example.com/.htpasswd
AuthType Digest
AuthName "My Secret Folder"
Require valid-user
What do I need to do to enable digest mode authentication?[Wed Mar 20 04:47:30 2013] [error] [client 74.197.253.230] Digest: user `admin' in realm `My Secret Folder' not found: /htpasswd/Wordcamp.txt
Last edited: