Found it - sorry. For anyone curious here's what I found:
You _need_ to have an Order directove for Allow, so:
the .htaccess file reads
AuthName "IPlease authenticate"
AuthType Basic
AuthUserFile /www/.htpasswd
AuthGroupFile /www/.htgroup
Require group internal
Order deny,allow
deny from all
Allow from 10.10.10.0/24
Satisfy any
At 01:01 13.11.2002, Ernest E Vogelsinger said:
--------------------[snip]--------------------
>Hi folks,
>
>sorry, no PHP or else this time, just a quick OT question (don't want to
>need to subscribe to another mailing list).
>
>I'm just messing around with our Apache config and thought someone could
>give me a quick pointer...
>
>Here we go:
>
><Directory /www/internal>
> AllowOverride AuthConfig Limit
></Directory>
>
>The .htaccess file reads
> AuthName "IPlease authenticate"
> AuthType Basic
> AuthUserFile /www/.htpasswd
> AuthGroupFile /www/.htgroup
> Require group internal
> Allow from 10.10.10.0/28
> Satisfy any
>
>If I remove the "Allow" and "Satisfy any" clause, Apache correctly
>authenticates a user. However I want to have our internal net
>(10.10.10.0/28) to get in w/o authentication.
>
>Unfortunately, adding the "Allow" and "Satisfy" clauses virtually renders
>the page unsecured, you can get in without auth from everywhere.
>
>Running Apache 1.3.23 on RHL 7.2. Any clues?
>
>Thanks, and sorry for OT
>
>
>--
> >O Ernest E. Vogelsinger
> (\) ICQ #13394035
> ^ http://www.vogelsinger.at/
>
>
>
>--
>PHP General Mailing List (http://www.php.net/)
>To unsubscribe, visit: http://www.php.net/unsub.php
--------------------[snip]--------------------
--
>O Ernest E. Vogelsinger
(\) ICQ #13394035
^ http://www.vogelsinger.at/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
