| Author |
Message |
spidermonkey
New Member
Joined: Apr 24, 2007
Posts: 11
Location: Equine Park, Malaysia
|
 Posted:
Fri Jun 08, 2007 11:52 pm |
|
Im using CGI Auth (server only permit that).
Already configured .htaccess and .staccess.
On my production server, when I tried to access http://www.anything.com/admin.php it gives me 'Internet Explorer cannot display webpage' instead of pop-up window asking for username and password. It was ok 2 weeks ago and I didnt change anyting. I redownload the .htaccess file and test locally and it was fine. I emailed to webhosting admin and they said they dont change any setting on the server and .htaccess is working fine on other customers.
I figured out when I remove <Files admin.php> and </Files> in .htaccess, I managed to get the pop-up window asking for username and password.
Please advice and thanks in advance. |
| |
|
   
  |
|
montego
Site Admin
Joined: Aug 29, 2004
Posts: 9457
Location: Arizona
|
| Posted:
Sat Jun 09, 2007 3:10 pm |
|
Well, I would imagine that you are getting the pop-up message regardless of what you try to access on your site, even index.php (with the Files tag taken out).
Did you by chance rename your admin.php to something else? I hate to ask such a question, but if this was working 2 weeks ago, either you have changed something or your host has.
BTW, hosts a notorious for saying they didn't change anything when in fact they had... |
_________________
Only registered users can see links on this board! Get registered or login!
Only registered users can see links on this board! Get registered or login! |
|
|
|
|
spidermonkey
|
| Posted:
Sat Jun 09, 2007 11:14 pm |
|
| Quote: | | Did you by chance rename your admin.php to something else? |
I didnt rename the admin.php. I leave it default from ravennuke.
| Quote: | | Well, I would imagine that you are getting the pop-up message regardless of what you try to access on your site, even index.php (with the Files tag taken out). |
You are right, if I take out <Files admin.php> and </Files>, I will be getting pop-up message regardless of what I try to access on my site (www.anything.com).
The objective of <Files admin.php> and </Files> is to secure this single file -> admin.php.
So I created test.php to display 'hello world'. I changed <Files test.php>. and the result is the same, no pop-up screen asking for username/password and just a page 'IE cannot display the webpage'. Meaning, something is wrong with the line code <Files> and </Files>.
.htaccess is ok. But I dont know why I cant secure any single file for example admin.php in .htaccess. Btw, I already checked carriage return (tab, blank space around line <Files> and </Files> etc.). |
Last edited by spidermonkey on Sun Jun 10, 2007 8:33 am; edited 1 time in total |
|
|
|
|
spidermonkey
|
| Posted:
Sat Jun 09, 2007 11:22 pm |
|
| Quote: |
but if this was working 2 weeks ago, either you have changed something or your host has.
|
I would like to add. Maybe last time it didnt caused problem because I access it using my home laptop (running both local and at the same time perform test on production-webhosting). so maybe the local cookies kept the key-access to the production.
I started to notice about this when I try login at my office (different laptop from my home) and I cant get the pop-up screen (www.anything.com/admin.php) instead I got 'IE cannot display the webpage'. I also remember when I went home and clear all cookies and offline contents of my home laptop and I got the same result. |
| |
|
|
|
|
montego
|
| Posted:
Mon Jun 11, 2007 6:28 am |
|
I hear what you are saying, but I've never experienced anything that would lead me to believe that cookies are involved with <Files>. I think you need to go back to your host and ask them why the <Files> directive is not working. There may be something in the Apache configuration that isn't quite set up right. |
| |
|
|
|
|
spidermonkey
|
| Posted:
Sun Jun 17, 2007 10:45 am |
|
Montego. You are right. After 1 week of my job idle because of this case, I reinstall ravennuke again.
Result: I managed to use HTTP Auth.
Earlier when I installed ravennuke, the HTTP Auth is not available and I dont have other option which to use only CGI Auth.
Since the HTTP Auth is already there (with CGI Auth also available), I rather use HTTP Auth rather then the complicated CGI Auth (complicated, but I learned a lot!).
The host which I registered to did made some changes on the server (since HTTP Auth is now available!), and it is true, they didnt inform their customers about it! I hate them a lot.
Thanks for your patience on answering my prob all these time. I'll keep looking into the forum and will definitely help u guys to answer any questions by other poster to ease your team's burden.  Thanks and all the best! |
| |
|
|
|
|
montego
|
| Posted:
Mon Jun 18, 2007 7:51 am |
|
spidermonkey, no worries m8. That is what we are here for. There are many here who contribute back to the community. That is what makes this site so great!
 |
| |
|
|
|
|
|
|
![[Valid RSS]](https://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
