[thelist] How to protect plain html files?

Rob Smith rob.smith at THERMON.com
Wed Nov 27 14:50:01 CST 2002


If they're running IIS, then just one of the built in Security options
(Basic Authentication, Windows NT Challenge/Response) on the eCommerce
folder. Then no matter what the file the customer sought beneath that
folder, they'd have to have logged in one way or another. Basic Auth is a
little less secure than Windows NT C/R. If you go WNTC/R, have the
IUSR_<machinename> be the login for that area and control the identity of
the customer some other way via cookies/reading - writing to a temp
file/session variables/whatever

Rob.Smith

-----Original Message-----
From: Flavia Tarzwell (FayeC) [mailto:ftarzwell at fayec.com]
Sent: Wednesday, November 27, 2002 2:23 PM
To: thelist at lists.evolt.org
Subject: Re: [thelist] How to protect plain html files?


I had all pages that needed to be secure behind a login but as the
designer wants to depend less on me she wants to have the pages in html
instead of asp.
Check my reply to Wade....

FayeC

aardvark wrote:

> i'm rather curious what you did before...
>
> regardless, what's the server platform?  have you tried searching on
> .htaccess to protect a directory (using Apache)? what about just
> locking down a directory to specific users set up on the sytem
> (IIS)?
>


--
* * Please support the community that supports you.  * *
http://evolt.org/help_support_evolt/

For unsubscribe and other options, including the Tip Harvester
and archives of thelist go to: http://lists.evolt.org
Workers of the Web, evolt !



More information about the thelist mailing list