s/key authentication for Apache on FreeBSD?
Mark Murray
mark at grondar.org
Sun Dec 14 04:50:17 PST 2003
Hi
This is now off FreeBSD (no more PAM), and is VERY httpd/Apache
specific. I suggest you move it to the Apache lists, where no doubt
more Apache experts will be able to help you out.
Thanks!
M
Brett Glass writes:
> At 10:45 PM 12/13/2003, Matthew D. Fuller wrote:
>
> >HTTP AUTH sends the user/pass strings with every request (more precisely,
> >the browser caches what you put in, and sends it every time the server
> >returns a 401 with the same realm name.)
>
> I apologize; I wasn't being clear. My question was, does the Apache
> server then send the user name and password on to the library that
> is doing authentication every time? Or does it recognize that the
> user and password (and/or IP) are the same as before and allow
> subsequent hits?
>
> --Brett
>
>
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
--
Mark Murray
iumop ap!sdn w,I idlaH
More information about the freebsd-security
mailing list