Password protecting web sites View previous topic :: View next topic  


NFOHump.com Forum Index - Programmers Corner
Page 1 of 1
dingo_d
VIP Member



Posts: 14555
PostPosted: Thu, 25th Jun 2009 11:41    Post subject: Password protecting web sites
I was wondering is it possible to make some part of website password protected?
I have web site on my uni server, and it has (well some of it) some "legally questionable" content Laughing It written in html and I would make only two subpages password protected. I have that robots.txt thing but I want to be safe.

"Quantum mechanics is actually, contrary to it's reputation, unbeliveably simple, once you take the physics out."
Scott Aaronson
chiv wrote:
thats true you know. newton didnt discover gravity. the apple told him about it, and then he killed it. the core was never found.

Back to top
Cohen




Posts: 7155
Location: Rapture
PostPosted: Thu, 25th Jun 2009 11:49    Post subject:
Goog'le compren'de?

http://www.htmlgoodies.com/tutorials/getting_started/article.php/3479531

troll detected by SiN
Back to top
dingo_d
VIP Member



Posts: 14555
PostPosted: Thu, 25th Jun 2009 13:01    Post subject:
I searched google but all I got is how to pw protect php sites and mine is html. Thnx for the article but my server is debian (apache), not ASP (or that lotus thing)...

"Quantum mechanics is actually, contrary to it's reputation, unbeliveably simple, once you take the physics out."
Scott Aaronson
chiv wrote:
thats true you know. newton didnt discover gravity. the apple told him about it, and then he killed it. the core was never found.

Back to top
swingman




Posts: 3602
PostPosted: Thu, 25th Jun 2009 13:55    Post subject:
http://www.build-your-website.co.uk/Password-Protect-Web-Pages.htm
Back to top
dingo_d
VIP Member



Posts: 14555
PostPosted: Thu, 25th Jun 2009 15:46    Post subject:
Thanx swingman!!!!!! I've found what I was looking for! HTML Password Lock! Very Happy Very Happy

"Quantum mechanics is actually, contrary to it's reputation, unbeliveably simple, once you take the physics out."
Scott Aaronson
chiv wrote:
thats true you know. newton didnt discover gravity. the apple told him about it, and then he killed it. the core was never found.

Back to top
[sYn]
[Moderator] Elitist



Posts: 8374
PostPosted: Thu, 25th Jun 2009 20:40    Post subject:
That is literally the least secure way of password protecting a webpage.. ever.. It could be bypassed in a second by a moron..

To protect it use .htaccess files, thousands of tutorials on google for this.

http://www.google.co.uk/search?hl=en&q=.htaccess+password+protect&btnG=Google+Search&meta=&aq=0&oq=.htaccess+password
Back to top
dingo_d
VIP Member



Posts: 14555
PostPosted: Thu, 25th Jun 2009 23:21    Post subject:
I've tried that, but I guess I did sth wrong and it didn't worked. I'll give it another try...

"Quantum mechanics is actually, contrary to it's reputation, unbeliveably simple, once you take the physics out."
Scott Aaronson
chiv wrote:
thats true you know. newton didnt discover gravity. the apple told him about it, and then he killed it. the core was never found.

Back to top
dingo_d
VIP Member



Posts: 14555
PostPosted: Fri, 26th Jun 2009 00:08    Post subject:
I'm trying with that .htaccess, but it doesn't seem to work. What am I doing wrong?

Code:
AuthUserFile /home/my_user_name/.htpasswd
AuthType Basic
AuthName "EnterPassword"

<Files blabla.html>
   Require valid-user
</Files>
<Files blabla2.html>
   Require valid-user
</Files>


I've made .htpasswd with
Code:
htpasswd -c .htpasswd USER
in my /home folder, not /public_html because it says it's safer (and I believe them Very Happy).

I upload .htaccess to my public_html folder because that's where are the sites I want to protect. And when I click on my site on those "blabla" sites it doesn't work. It should ask me username and password, but it doesn't Confused What can be wrong?

"Quantum mechanics is actually, contrary to it's reputation, unbeliveably simple, once you take the physics out."
Scott Aaronson
chiv wrote:
thats true you know. newton didnt discover gravity. the apple told him about it, and then he killed it. the core was never found.

Back to top
dingo_d
VIP Member



Posts: 14555
PostPosted: Fri, 26th Jun 2009 08:36    Post subject:
Never mind! I got it to work! Thnx!!

"Quantum mechanics is actually, contrary to it's reputation, unbeliveably simple, once you take the physics out."
Scott Aaronson
chiv wrote:
thats true you know. newton didnt discover gravity. the apple told him about it, and then he killed it. the core was never found.

Back to top
[sYn]
[Moderator] Elitist



Posts: 8374
PostPosted: Fri, 26th Jun 2009 19:53    Post subject:
Sorry for not seeing it sooner! Good job for getting it working.

When considering security always remember that server side is the only safe side. Javascript password protection seems ok on the surface as it stops people getting to the site and when viewing the page in a browser you cant see the javascript thus the password is safe. One wget later and I have your webpage/javascript and password.

The only way of be bypassing the htaccess controls is to get onto the server itself.. by which point they dont matter anyway.
Back to top
Page 1 of 1 All times are GMT + 1 Hour
NFOHump.com Forum Index - Programmers Corner
Signature/Avatar nuking: none (can be changed in your profile)  


Display posts from previous:   

Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB 2.0.8 © 2001, 2002 phpBB Group