I'd like to restrict whole my www-server (apache2) resources by radius.
Everything is OK restricting subdirectory of www-server
(http://myhost.com/info/), but things are worse restricting root-dir of
www-server (http://myhost.com).
1) entering http://myhost.com (apache ask for username&password,
entering these), I got an error-page (Authentication required!)
2) entering then http://myhost.com/index.html (no username&password
asked), I got the same error-page
But when I start vice versa:
1) entering http://myhost.com/index.html (apache ask for
username&password, entering these), I got the valid page (index.html)
2) entering then http://myhost.com (no username&password asked),
everything is OK, again. Index.html are displayed
As I said, restricting subdirectory (http://myhost.com/test/) everything
is OK. So problem occure when I restrict root-direcory and
root-directory (without exact page, e.g. index.html) are asked.
I use:
- last mod_auth_radius-2.0.c (from freeradius page)
- Redhat9.0 and apache2
httpd.conf:
LoadModule radius_auth_module modules/mod_auth_radius-2.0.so
AddRadiusAuth myradius.com mysecret
AddRadiusCookieValid 5
Options Indexes FollowSymLinks
AllowOverride All
-
/var/www/html/.htaccess:
AuthType Basic
AuthName "Radius"
AuthAuthoritative Off
AuthRadiusAuthoritative On
AuthRadiusActive On
require valid-user
Does somebody knows solution to thiskind of problem?
Tanel
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html