As I said this should work and AllowOverride for / should be set to none. The only explanation is that you are using Apache version 2.0 where "AllowOverride Fileinfo" doesn't apply to Rewrite statements. See the difference between 2.0 and 2.2:
http://httpd.apache.org/docs/2.0/mod/core.html#allowoverride http://httpd.apache.org/docs/2.2/mod/core.html#allowoverride Igor On Fri, Jan 20, 2012 at 7:35 AM, Darryle Steplight <dstepli...@gmail.com>wrote: > From my understanding, if you put AllowOverride None , then you are > instructing Apache to not allow any htaccess file to be respected. > This will be affected by all your .htaccess files since you have it > in the directory directive. Chance it to AllowOverride All for > .htaccess to start kicking in. Or just create a new directory > directive with the proper directory path that you want your .htaccess > files to start working. Of course don't forget to restart apache > afterwards. > > On Thu, Jan 19, 2012 at 3:19 PM, congo thomas <apa...@thva.dk> wrote: > > Hello world, > > > > am i the only one with this trouble? > > > > br > > congo thomas > > > > On Tue, January 17, 2012 13:52, congo thomas wrote: > >> I am having the <Directory /> set to None for allowoverride. > >> My problem persists in having this set: > >> > >> <VirtualHost *:80> > >> ... > >> <Directory /var/www/website/> > >> AllowOverride FileInfo > >> </Directory > >> ... > >> </VirtualHost> > >> > >> - following restart apache, and then (executed as website-user in this > >> case): > >> $ touch /var/www/website/.htaccess > >> $ chmod 644 /var/www/website/.htaccess > >> $ cat "<IfModule mod_rewrite.c> > >> RewriteEngine On > >> RewriteBase / > >> RewriteRule ^index\.php$ - [L] > >> RewriteCond %{REQUEST_FILENAME} !-f > >> RewriteCond %{REQUEST_FILENAME} !-d > >> RewriteRule . /index.php [L] > >> </IfModule>" > /var/www/website/.htaccess > >> > >> > >> For instance this should work: > >> http://website/hello-world/ - however, that gives my 404, hence the > >> htaccess file is not respected. > >> So when I go to <Directory /> and adjust setting for AllowOverride to > >> FileInfo instead of None, then http://website/hello-world/ works fine > and > >> returns 200. > >> In other cases its basic auth using htpasswd file that is not respected > >> due to this global option being set to None. Is there another flag that > i > >> should raise, to allow overriding globals, inside a vhost container? > >> > >> > >> Thomas > >> > >> > >> > >> On Tue, January 17, 2012 00:58, Igor Cicimov wrote: > >>> This should absolutely work. From the documentation: > >>> > >>> For security and performance reasons, do not set AllowOverride to > >>> anything > >>> other than None in your <Directory /> block. Instead, find (or create) > >>> the > >>> <Directory> block that refers to the directory where you're actually > >>> planning to place a .htaccess file. > >>> > >>> What is exactly not working and how are you testing? > >>> > >>> On Tue, Jan 17, 2012 at 9:42 AM, congo thomas <apa...@thva.dk> wrote: > >>> > >>>> Hello world, > >>>> > >>>> I am being bullied by the security considerations of a standard apache > >>>> installation on centos-5.6 and rhel-6 aswell - these apache are recent > >>>> flavors from the respective repos of these platforms. > >>>> > >>>> The problem is this snippet from httpd.conf > >>>> ## > >>>> <Directory /> > >>>> Options FollowSymLinks > >>>> AllowOverride None > >>>> </Directory> > >>>> ## > >>>> are causing any htaccessfile not to be respected, then one might > >>>> think, > >>>> i > >>>> will adjust that in my vhost for this particular directory where i > have > >>>> a > >>>> .htaccess file. However that just will not work, nor with > AllowOverride > >>>> FileInfo or AllowOverride All, like so: > >>>> <Directory /var/www/website/> > >>>> AllowOverride FileInfo > >>>> </Directory> > >>>> > >>>> So i thought to put it inside httpd.conf with the exact catalogue name > >>>> that is used in the vhostsfile - not event that allows respecting of > >>>> the > >>>> presence of .htaccess file in the catalogue. > >>>> > >>>> The goal is to disallow the reading of htaccessfiles (AllowOverride > >>>> None) > >>>> in all directories served, besides the one at /var/www/website, its > >>>> okay > >>>> if they are not read from /var/www/websites/congo/. > >>>> Not that i have a few vhost containers, so the generic solution would > >>>> be > >>>> appreciated to implement. > >>>> > >>>> Ive spend hours locating the problem, and hours trying various > >>>> combinations and browsing suggestions through - no solution yet... > >>>> > >>>> > >>>> > >>>> br > >>>> congo > >>>> > >>>> > >>>> --------------------------------------------------------------------- > >>>> The official User-To-User support forum of the Apache HTTP Server > >>>> Project. > >>>> See <URL:http://httpd.apache.org/userslist.html> for more info. > >>>> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > >>>> " from the digest: users-digest-unsubscr...@httpd.apache.org > >>>> For additional commands, e-mail: users-h...@httpd.apache.org > >>>> > >>>> > >>> > >> > >> > >> > >> --------------------------------------------------------------------- > >> The official User-To-User support forum of the Apache HTTP Server > Project. > >> See <URL:http://httpd.apache.org/userslist.html> for more info. > >> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > >> " from the digest: users-digest-unsubscr...@httpd.apache.org > >> For additional commands, e-mail: users-h...@httpd.apache.org > >> > >> > > > > > > > > --------------------------------------------------------------------- > > The official User-To-User support forum of the Apache HTTP Server > Project. > > See <URL:http://httpd.apache.org/userslist.html> for more info. > > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > > " from the digest: users-digest-unsubscr...@httpd.apache.org > > For additional commands, e-mail: users-h...@httpd.apache.org > > > > > > -- > ---------------------------------------------- > "May the Source be with you." > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > " from the digest: users-digest-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > >
