On Tue, Feb 08, 2005 at 11:43:11AM -1000, Charles Lockhart wrote: > So, we have a script or something that every time you create > a directory in that secure directory, the script adds an > .htaccess file, and the .htaccess file is used to enforce > privacy, requiring a username and password to log in. I'm told > that this should be secure enough to keep people from accessing > the private area, and to prevent information from turning up on > Google + etc.
You only need to enable authentication for the top-most directory when using HTTP Basic authentication. All the subdirectories will inherit the access. It is not _secure_, but it should keep out the bots and casual lurkers. -Vince