>Number: 3389 >Category: mod_auth-any >Synopsis: using htpasswd created file unable to authenticate httpd >returns password mismatch >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Thu Nov 12 08:50:00 PST 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3.3 >Environment: Solaris 2.6/Sparc Compiler: Sun's Visual C++ v3.0 SunOS benwhite 5.6 Generic_105181-06 sun4u sparc SUNW,Ultra-2 >Description: I have set up a .htpasswd file using htpasswd. When asked for authentification, I enter valid username/password combination. Login is rejected. Log file displays: [Thu Nov 12 11:26:10 1998] [error] [client XXX.XXX.XXX.XXX] user swoolley: password mismatch: /secdir
I know I am finding the correct .htpasswd file because if I enter a bogus usename, it displays: [Thu Nov 12 10:28:58 1998] [error] [client XXX.XXX.XXX.XXX] user foo not found: /secdir >How-To-Repeat: >Fix: >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ] [If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request ] [from a developer. ] [Reply only with text; DO NOT SEND ATTACHMENTS! ]
