htaccess Problem - require valid-user & referer

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • hornycash
    Confirmed User
    • Jun 2002
    • 2336

    #1

    htaccess Problem - require valid-user & referer

    hi folks,

    a question for the tech-guys. i'll have a little content-area secured
    by htaccess and htpasswd. now i also wanna access this area with
    a valid referer (without the login-box username/password).

    .htaccess example:

    >>>>>

    SetEnvIfNoCase Referer "^http://refererdomain.com" grant_access
    SetEnvIfNoCase Referer "^http://www.refererdomain.com" grant_access

    AuthUserFile /home/web2/public/member/auth/users
    AuthGroupFile /dev/null
    AuthName "Members"
    AuthType Basic

    require valid-user
    order deny, allow
    deny from all
    allow from 213.139.93.
    allow from 202.139.152
    allow from 210.80.149
    allow from env=grant_access
    satisfy any

    <<<<<<<

    so i wanna have the "refererdomain.com" coming through the htaccess
    without username/password but every fucking time this login-box is
    popping up. does anyone have an idea? thanks in advance!
  • pubenemy
    Confirmed User
    • May 2004
    • 990

    #2
    I do not know the answer to your question, but I have a question for you. Why would you want to do this? Makes your site very insecure with a simple spoof program.
    ICQ: 22-920-445 Aim: OGpubenemy

    Comment

    • frank7799
      Confirmed User
      • Jul 2003
      • 1974

      #3
      Maybe this one works:

      SetEnvIfNoCase Referer "^http://www.your-domain-name-here.com/" locally_linked=1
      SetEnvIfNoCase Referer "^http://www.your-domain-name-here.com$" locally_linked=1
      SetEnvIfNoCase Referer "^http://your-domain-name-here.com/" locally_linked=1
      SetEnvIfNoCase Referer "^http://your-domain-name-here.com$" locally_linked=1
      SetEnvIfNoCase Referer "^$" locally_linked=1


      Allow from env=locally_linked

      But if I were you, I wouldn´t open the content directory.

      Comment

      Working...