About FakeBasicAuth

This is a multi-part message in MIME format.

------_=_NextPart_001_01C70E1B.19CE8406
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Hi, I'm trying to do the following. When users from the Intranet access
to the website nothing will be required but if the users come from the
Internet a client certificate will be required to use it with the basic
authentication using the FakeBasicAuth option. I did what the link
http://www.modssl.org/docs/2.8/ssl_howto.html#ToC10 says but if I come
from the Intranet a client certificate is required (if cancel it I get
access to the webste) and if I come from the Internet a login box pops
up.

Could you help me?


------_=_NextPart_001_01C70E1B.19CE8406
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns=3D"http://www.w3.org/TR/REC-html40"
xmlns:ns0=3D"urn:schemas-microsoft-com:office:smarttags">

<head>
<meta http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<style>
<!--
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EstiloCorreo17
{mso-style-type:personal-compose;
font-family:Arial;
color:windowtext;}
[at] page Section1
{size:595.3pt 841.9pt;
margin:70.85pt 3.0cm 70.85pt 3.0cm;}
div.Section1
{page:Section1;}
-->
</style>

</head>

<body lang=3DES link=3Dblue vlink=3Dpurple>

<div class=3DSection1>

<p class=3DMsoNormal =
style=3D'mso-margin-top-alt:auto;margin-bottom:12.0pt'><font
size=3D3 face=3D"Times New Roman"><span lang=3DEN-GB =
style=3D'font-size:12.0pt'>Hi, I’m
trying to do the following. When users from the Intranet access to the =
website
nothing will be required but if the users come from the Internet a =
client
certificate will be required to use it with the basic authentication =
using the
FakeBasicAuth option. I did what the link <a
href=3D"http://www.modssl.org/docs/2.8/ssl_howto.html#ToC10" >http://www.m=
odssl.org/docs/2.8/ssl_howto.html#ToC10</a>
says but if I come from the Intranet a client certificate is required =
(if cancel
it I get access to the webste) and if I come from the Internet a login =
box pops
up.  <o:p></o:p></span></font></p>

<p class=3DMsoNormal =
style=3D'mso-margin-top-alt:auto;margin-bottom:12.0pt'><font
size=3D3 face=3D"Times New Roman"><span lang=3DEN-GB =
style=3D'font-size:12.0pt'>Could
you help me?<o:p></o:p></span></font></p>

</div>

</body>

</html>

------_=_NextPart_001_01C70E1B.19CE8406--
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org
Luis Carlos Peinado B [ Mi, 22 November 2006 10:46 ] [ ID #1544422 ]

Re: About FakeBasicAuth

------=_Part_68375_13569158.1164428199507
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

That seems like an odd way of doing it. Seems more like an apache issue then
anything as this can be achieved with apache's included modules (like
mod_auth and mod_access).

Something like

<VirtualHost 192.168.1.1:80>
ServerName example.com
DocumentRoot /great/example/here

<Directory /great/example/here>
Order Allow, Deny
Deny from All
Allow from IP (like 192.168.1 or 192.168 etc)
AuthType Basic
AuthName "Example"
AuthUserFile /path/to/your/htpasswd/file
Satisfy Any
</Directory>

</VirtualHost>

You could easily just change the port to 443 and add the necessary SSL info
to have this work on a SSL'd host.

On 11/22/06, Luis Carlos Peinado Bravo <lcarlos.peinado [at] juntadeandalucia.es>
wrote:
>
> Hi, I'm trying to do the following. When users from the Intranet access
> to the website nothing will be required but if the users come from the
> Internet a client certificate will be required to use it with the basic
> authentication using the FakeBasicAuth option. I did what the link
> http://www.modssl.org/docs/2.8/ssl_howto.html#ToC10 says but if I come
> from the Intranet a client certificate is required (if cancel it I get
> access to the webste) and if I come from the Internet a login box pops up.
>
> Could you help me?
>

------=_Part_68375_13569158.1164428199507
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

That seems like an odd way of doing it. Seems more like an apache issue then anything as this can be achieved with apache's included modules (like mod_auth and mod_access).<br><br>Something like <br><br><VirtualHost <a href="http://192.168.1.1:80">
192.168.1.1:80</a>><br>ServerName example.com<br>DocumentRoot /great/example/here<br><br><Directory /great/example/here><br>Order Allow, Deny<br>Deny from All<br>Allow from IP (like
192.168.1 or 192.168 etc)<br>AuthType Basic<br>AuthName "Example"<br>AuthUserFile /path/to/your/htpasswd/file<br>Satisfy Any<br></Directory><br><br></VirtualHost><br><br>You could easily just change the port to 443 and add the necessary SSL info to have this work on a SSL'd host.
<br><br><div><span class="gmail_quote">On 11/22/06, <b class="gmail_sendername">Luis Carlos Peinado Bravo</b> <lcarlos.peinado [at] juntadeandalucia.es> wrote:</span>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">








<div link="blue" vlink="purple" lang="ES">

<div>

<p style="margin-bottom: 12pt;"><font face="Times New Roman" size="3"><span style="font-size: 12pt;" lang="EN-GB">Hi, I'm
trying to do the following. When users from the Intranet access to the website
nothing will be required but if the users come from the Internet a client
certificate will be required to use it with the basic authentication using the
FakeBasicAuth option. I did what the link <a href="http://www.modssl.org/docs/2.8/ssl_howto.html#ToC10" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://www.modssl.org/docs/2.8/ssl_howto.html#ToC10
</a>
says but if I come from the Intranet a client certificate is required (if cancel
it I get access to the webste) and if I come from the Internet a login box pops
up.  </span></font></p>

<p style="margin-bottom: 12pt;"><font face="Times New Roman" size="3"><span style="font-size: 12pt;" lang="EN-GB">Could
you help me?</span></font></p>

</div>

</div>



</blockquote></div><br>

------=_Part_68375_13569158.1164428199507--
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org
Yvo van Doorn [ Sa, 25 November 2006 05:16 ] [ ID #1547229 ]
Webserver » gmane.comp.apache.mod-ssl.user » About FakeBasicAuth

Vorheriges Thema: Spamed?
Nächstes Thema: modssl setp-by-step installation won't compile

[ Startseite ] [ Administrator ] [ Suche ] [ Hinweise ] [ Impressum ]

Powered by FudForum