I have a Qube2 directory password protected with .htaccess of AddType text/x-server-parsed-html .html .shtml AuthUserFile /home/groups/home/robolist/meminfo/.htpasswd AuthGroupFile /dev/null AuthName "RoboList Members" AuthType Basic <Limit GET PUT POST> require valid-user </Limit>
It works fine for .html files in the directory. However, if I have a cgi script in the same directory and do a http://<domain>/cgiwrapDir/cgiwrap/robolist/meminfo/who.pl the script is executed without asking for userid and password. I have tried various changes to the htaccess file to include cgi types of files, but have not hit upon the correct format. Other than putting password code in who.pl, can anyone suggest changes to the htaccess file to force password checking for who.pl also. Thanks, Mike. _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
