InsaneGreen

the htaccess for my members area is setup to check for a password, how can i make it allow certain domains access without prompting the user for a password? thanks in advance to anyone that can help!

__________________
SIG TOO BIG! Maximum 120x60 button and no more than 3 text lines of DEFAULT SIZE and COLOR. Unless your sig is for a GFY top banner sponsor, then you may use a 624x80 instead of a 120x60.

caspuh

put your files in distinct folders. use multiple htaccess files, one for each directory that you need password protected. for instance:

/free (dont have an htaccess)
/teen (have one)
/gay (have one)
/free-movies (dont have one)

wherever you put the htaccess will affect all subdirectories.

EZRhino

Set up a allow list for particular domains.
Read Oriley and Associates "Apache"
Good info there or do a google search for "htaccess+howto"

timboss

I think what your asking is how to allow access from a certain referring URL?

is that it? when you come from a certain URL, you would not be prompted for a password?

you need referrer type set up in your http.conf file

__________________
ICQ:
338637464

InsaneGreen

thats what i want, but if its not a url i specify i want it to prompt for a password...

__________________
SIG TOO BIG! Maximum 120x60 button and no more than 3 text lines of DEFAULT SIZE and COLOR. Unless your sig is for a GFY top banner sponsor, then you may use a 624x80 instead of a 120x60.

NetRodent

I trust you are aware that this is a massive security hole and will break most anti-password sharing scripts.

__________________
"Every normal man must be tempted, at times, to spit on his hands, hoist the black flag, and begin slitting throats."
--H.L. Mencken

InsaneGreen

netrodent,
then how does everyone else do it? i just want my members to be able to access the member area to all 7 of my sites...

__________________
SIG TOO BIG! Maximum 120x60 button and no more than 3 text lines of DEFAULT SIZE and COLOR. Unless your sig is for a GFY top banner sponsor, then you may use a 624x80 instead of a 120x60.

myneid

if you have teh setenv module loaded which most apaches do by default you can do

SetEnvIf Referer "^http://www.mydomain.com" myrefallow

order deny,allow
deny from all
allow from env=myrefallow
Satisfy Any


and leave in there your other Auth lines and do the SetEnvIf line for each refering url you want to allow

this is a security hole as anybody can fake their referring url and they do.

the best way to do waht you want to do is to get a programmer or sysadmin set up your system the way you want

__________________
Tanguy 0x7a69 inc. Programmer/President/CEO
http://www.0x7a69.com
A Leader in Programming since 1996
PHP, Ruby on Rails, MySQL, PCI DSS, and any Technical Consulting

NetRodent

There are a couple ways:
1. Use a common members area divided up so it looks ike multiple sites.
2. Use session based authentication (my personal favorite).

__________________
"Every normal man must be tempted, at times, to spit on his hands, hoist the black flag, and begin slitting throats."
--H.L. Mencken

tantalising

You can also try:


Satisfy Any
AuthType Basic
AuthName "Members Area"
AuthUserFile /path to your .htpasswdfile
AuthGroupFile /dev/null
<Limit GET POST>
require valid-user
order deny,allow
deny from all
allow from 64.62.200.131
</Limit>

In this case it would allow visitors coming from
arnoldschwarzenegger.com to visit your protected area

Still as previous poster said a security hole.


..

PbG

This is your best bet.

__________________

Uncensored-Hosting | Photography by Gus