Listmates, I was implementing simple access restrictions in apache on 10.3 trying both the .conf approach and a few simple .htaccess files. Nothing special, just following along with the apache manual. I have 2 questions. First the simple access protections being implemented are: AuthType Basic AuthName "Restricted Files" # ## file Auth # # # (Following line optional) # AuthBasicProvider file AuthUserFile /usr/local/lib/apache2/passwd AuthGroupFile /usr/local/lib/apache2/group Require group skyline # ## dbm Auth # # AuthBasicProvider dbm # AuthDBMUserFile /usr/local/lib/apache2/passwd # Require valid-user I have build both the flat file and the dbm file and they work fine. However, I still have the questions: (1) The apache2 manual states: "The directives discussed in this article will need to go either in your main server configuration file (typically in a <Directory> section), or in per-directory configuration files (.htaccess files)." Based upon that statement, I should be able to either include the access protection in the .conf file under the appropriate <Directory> designation, or place it in the .htaccess file with the same result. (of course the .htaccess requires "AllowOverride AuthConfig" in the <Directory> definition) I have tried placing them in the <Directory> section of the directories I want to add protection to and when I have done so and issued the rcapache2 restart, it is as if nothing has changed. There is no prompt for a password at all. As far as I can tell, placing the access restrictions in the .conf file doesn't work. Any thoughts on what I am missing? (2) When I place an .htaccess file in the directory I want to protect, it causes the directory to disappear from the directory list in the browser. If it was samba, it would have the same effect as setting "browsable = no". I can access it just fine typing the url directly into the browser and then I am correctly prompted for a username and password and then given access. If I then refresh the directory listing, I can see the directory just fine. But until I have authenticated, the protected directory is hidden. Is there any way I can change this behavior to make all directories visible and then when I click on the protected ones, it will bring up the password prompt? I would hate to have to remember all the directory names that are protected. Any thoughts? Thanks again. -- David C. Rankin, J.D., P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org