Presentation is loading. Please wait.

Presentation is loading. Please wait.

Authentication Names and Passwords Names and Passwords Also can use Groups Also can use Groups Webmaster can “require” authentication Webmaster can “require”

Published byBertram Ross Modified over 8 years ago

Similar presentations

Presentation on theme: "Authentication Names and Passwords Names and Passwords Also can use Groups Also can use Groups Webmaster can “require” authentication Webmaster can “require”"— Presentation transcript:

1 Authentication Names and Passwords Names and Passwords Also can use Groups Also can use Groups Webmaster can “require” authentication Webmaster can “require” authentication Each username and password is valid for a particular realm Each username and password is valid for a particular realm Password is sent unencrypted Password is sent unencrypted

2 Authentication AuthType Basic AuthName Admin AuthUserFile /var/lib/apache/names AuthGroupFile /var/lib/apache/groups require valid-user </Directory>

3 Authentication Directives AuthType type AuthType type  Basic or Digest  If AuthType is used then AuthName, AuthGroupFile, and AuthUserFile must be specified AuthName auth-realm AuthName auth-realm AuthGroupFile filename AuthGroupFile filename

4 Authentication Directives (cont) AuthUserFile filename AuthUserFile filename  Contains usernames and encrypted passwords Limit method_1 method_2 … Limit method_1 method_2 …  Not normally used Require user name(s) | group name(s) | valid-user Require user name(s) | group name(s) | valid-user  Key directive that causes password checking

5 Authentication Directives (cont) Satisfy any | all Satisfy any | all  Sets access policy if allow and require are used  Only useful if access to a particular area is being restrictd by both username/password and client host address

6 Passwords Under Unix Use the htpasswd program to create the user/password file Use the htpasswd program to create the user/password file htpasswd -? htpasswd -? htpasswd –c /var/lib/apache/names admin htpasswd –c /var/lib/apache/names admin htpasswd /var/lib/apache/names teacher htpasswd /var/lib/apache/names teacher DBM Files DBM Files

7 Order, Allow, Deny You can also control access based on a specific IP address, hostnames, or groups of addresses and hostnames You can also control access based on a specific IP address, hostnames, or groups of addresses and hostnames Allow from ….. And ….. Deny from Allow from ….. And ….. Deny from Order is not set by the way you enter it in the configuration file Order is not set by the way you enter it in the configuration file Default is deny then allow Default is deny then allow

8 Allow, Order, Deny Allow from Allow from  Allow from host host  Controls access to a directory  Host can be All, domain name, IP Address, or a netmask

9 Allow, Order, Deny Allow from env Allow from env  Uses a named variable  See Page 115 Deny from Deny from  Controls access by host Deny from env Deny from env

10 Allow, Order, Deny Order ordering Order ordering  Controls the order in which directives are applied (no spaces allowed)  deny,allow  deny directives evaluated first  allow,deny  allow directives evaluated first

11 Allow, Order, Deny mutual-failure mutual-failure  Hosts that appear on the allow list and do not appear on the deny list are allowed

12 Anonymous Access Example Example  Anonymous_Authoritative off  Anonymous guest anonymous air-head Lets you login as guest, anonymous or air- head Lets you login as guest, anonymous or air- head

13 Anonymous Access Directives Anonymous userid1 userid2 … Anonymous userid1 userid2 … Anonymous_NoUserID on | off Anonymous_NoUserID on | off  Still must put something in the PW field Anonymous_LogEmail on | off Anonymous_LogEmail on | off Anonymous_VerifyEmail on | off Anonymous_VerifyEmail on | off  Userid must contain at least one @

14 Anonymous Access Directives Anonymous_Authoritative on | off Anonymous_Authoritative on | off  If user fails anonymous authorization they fail all authorization Anonymous_MustGiveEmail on | off Anonymous_MustGiveEmail on | off  User must give an email ID as a password

15 .htaccess file Directives go in separate file versus in the httpd.conf file Directives go in separate file versus in the httpd.conf file Great for controlling access to specific directories or even entire sites Great for controlling access to specific directories or even entire sites AccessFileName Directive must be in the httpd.conf file to allow this to work AccessFileName Directive must be in the httpd.conf file to allow this to work

16 Overrides AllowOverride override1 override2 AllowOverride override1 override2 Tells apache which directives in an.htaccess file can override earlier directives. Tells apache which directives in an.htaccess file can override earlier directives. See page 129 for examples See page 129 for examples

Download ppt "Authentication Names and Passwords Names and Passwords Also can use Groups Also can use Groups Webmaster can “require” authentication Webmaster can “require”"

Similar presentations

Creating a Login Process Creating a users table and a login form that denies access to unauthorized users.

Creating a Login Process Creating a users table and a login form that denies access to unauthorized users.
A digression The next feature of programming HTTP clients that we will consider is user authentication Before considering that, however, we will digress.

A digression The next feature of programming HTTP clients that we will consider is user authentication Before considering that, however, we will digress.
Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.

Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Protecting Documents on the Web Friday Tech Briefing Timely Info for Power Users and Stanford's Technology Support Community Mark Branom ITSS Technology.

Protecting Documents on the Web Friday Tech Briefing Timely Info for Power Users and Stanford's Technology Support Community Mark Branom ITSS Technology.
6/3/2015topic1 Web Security Qiang Yang Simon Fraser University Thanks: Francis Lau (HKU)

6/3/2015topic1 Web Security Qiang Yang Simon Fraser University Thanks: Francis Lau (HKU)
Access control and user management in Apache

Access control and user management in Apache
© Copyright 1997, The University of New Mexico C-1 Internet Service Provider Services What to do once you’re connected.

© Copyright 1997, The University of New Mexico C-1 Internet Service Provider Services What to do once you’re connected.
Apache Access Controls. Ways to control Allow/Deny access control –By IP –By domain name Password –Apache managed passwords –Realms.

Apache Access Controls. Ways to control Allow/Deny access control –By IP –By domain name Password –Apache managed passwords –Realms.
Access control and user management in Apache 1WUCM1.

Access control and user management in Apache 1WUCM1.
SSL (Secure Socket Layer) and Secure Web Pages Rob Sodders, University of Florida CIS4930 “Advanced Web Design” Spring 2004

SSL (Secure Socket Layer) and Secure Web Pages Rob Sodders, University of Florida CIS4930 “Advanced Web Design” Spring 2004
APACHE SERVER By Innovationframes.com »

APACHE SERVER By Innovationframes.com »
Setting up a Subversion repository By: Matt Krass Last Updated: 4/11/07.

Setting up a Subversion repository By: Matt Krass Last Updated: 4/11/07.
Web Technology – Web Server Setup : Chris Uriarte Meeting 4: Advanced Topics, Continued: Securing the Apache Server and Apache Performance Tuning Rutgers.

Web Technology – Web Server Setup : Chris Uriarte Meeting 4: Advanced Topics, Continued: Securing the Apache Server and Apache Performance Tuning Rutgers.
Session 5: Working with MySQL iNET Academy Open Source Web Development.

Session 5: Working with MySQL iNET Academy Open Source Web Development.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
Class 8Intro to Databases Authentication and Security Note: What we discuss in class today covers moderate to low security. Before you involve yourself.

Class 8Intro to Databases Authentication and Security Note: What we discuss in class today covers moderate to low security. Before you involve yourself.
Secure Access There are three distinct forms of secure access – authentication – verifying a user’s identity user log in via some mechanism (typically.

Secure Access There are three distinct forms of secure access – authentication – verifying a user’s identity user log in via some mechanism (typically.
An introduction to Apache. Different Types of Web Servers Apache is the default web server for may Unix servers. IIS is Microsoft’s default web server.

An introduction to Apache. Different Types of Web Servers Apache is the default web server for may Unix servers. IIS is Microsoft’s default web server.
Apache, PHP, MySQL Installation and configuration Web Programming with PHP,TITAS PROJECTIICT,BUET.

Apache, PHP, MySQL Installation and configuration Web Programming with PHP,TITAS PROJECTIICT,BUET.

Similar presentations

Ads by Google