On August 23, 2012 12:18 , Konrad Neuwirth <kon...@mailathome.or.at> wrote:
It appears, to me, that the proxy directive takes precedence over the access restrictions placed into the directory, and I do not know how to reverse that ordering.The appropriate snipped of our httpd configuration is: <Directory [USER PATH]/redaxo/include> Require all denied </Directory> <LocationMatch ^(.*\.php)$> ProxyPass fcgi://127.0.0.2:9136/[USER PATH] </LocationMatch>
No, <Location> and <LocationMatch> take precedence over <Directory>. See https://httpd.apache.org/docs/2.2/sections.html#mergin
One solution is to put the proxy configuration into the <Directory> section instead of the <LocationMatch> section. However, https://httpd.apache.org/docs/2.2/mod/mod_proxy.html#proxypass says "This directive is not supported in <Directory> or <Files> sections". So you may want to try using mod_rewrite's RewriteRule directive with the [P] flag: https://httpd.apache.org/docs/2.2/rewrite/flags.html#flag_p
A better solution, in my opinion, is to not use .htaccess files at all: they have performance, security, and management downsides. Put the access restrictions into the above <LocationMatch> block instead.
-- Mark Montague m...@catseye.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
