��֤��Ȩ��ʿ�� Apache 2.2 ��İ�ο��ֲ�

��ģ��ָ��

��֤��Ȩ�漰��ģ�顣ͨ��Ҫ��ÿһ��ѡ��һ��ģ�顣

��֤��ģ��(�μ�AuthTypeָ��)
- mod_auth_basic
- mod_auth_digest
��֤֧��ģ��
- mod_authn_alias
- mod_authn_anon
- mod_authn_dbd
- mod_authn_dbm
- mod_authn_default
- mod_authn_file
- mod_authnz_ldap
��Ȩ֧��ģ��(�μ�Requireָ��)
- mod_authnz_ldap
- mod_authz_dbm
- mod_authz_default
- mod_authz_groupfile
- mod_authz_owner
- mod_authz_user

mod_authnz_ldapģ��Ȱ��֤��Ҳ��Ȩ��ܡ�mod_authn_aliasģ��ʵ��֤��ܣ��֤֧��ģ��Ը��ķ�ʽ��á�

mod_authz_hostģ��ṩ��IP��ַ��ķ��ʿ��ƣ��֤֧��ϵͳ��

��

��վ��Щ��Ϣ��ֻϣ��Ϊһ��СȺ��ʣ��Ĳ��ķ��ȷ��û�ֻ�ܷ��ʱ��Դ��

��ĺ��˱��վ��Դ��"��׼"��Ա��Ҫ�õ��Щ��

�Ⱦ��

��۵�ָ��Ӧ�ñ��Ž��ļ�(ͨ��<Directory>��)��Ե��Ŀ¼��ļ�(.htaccess�ļ�)�С�

��ʹ��.htaccess�ļ��÷��Щ�ļ��ʹ��ָ֤���AllowOverrideָ��ָ��Щָ��Ե��Ŀ¼��ļ��Ч��

��Ȼ��֤��Ӧ�ö�AllowOverride��ã�

AllowOverride AuthConfig

��ϣ��Щָ��ֱ��д��ļ��Ȼ��Ҫ��ж��ļ��дȨ�ޡ�

��ң��Ҫ�Է��Ŀ¼�ṹ��˽⣬��ȷ��ĳЩ�ļ��λ�á��ѣ��Ҫʱ��ǻ��ʵ��˵��

��֤

�Ƚ��ϵ�Ŀ¼��

��Ҫ��һ��ļ��ļ�Ӧ�÷��ڲ��ܱ��ʵ�λ�ã��Ա��ⱻ��ء��磬��/usr/local/apache/htdocs��Ŀռ䲻�ܱ��ʣ��ô��Կ��ǰ��ļ��/usr/local/apache/passwdĿ¼�С�

Apache��䰲װĿ¼��bin��Ŀ¼��ṩ��htpasswd��ߣ��ڽ��ļ��ʹ�ã�

htpasswd -c /usr/local/apache/passwd/passwords rbowen

htpasswd��Ҫ��룬��Ҫ��Խ��ȷ�ϣ�

# htpasswd -c /usr/local/apache/passwd/passwords rbowen New password: mypassword Re-type new password: mypassword Adding password for user rbowen

��htpasswd��·��У��ʹ��·��磺/usr/local/apache/bin/htpasswd

Ȼ��޸�httpd.conf��.htaccess�ļ��ָʾ��Щ�û��ʲ��û��ȡ��롣��Ҫ��/usr/local/apache/htdocs/secretĿ¼��Խ��ָ��д��/usr/local/apache/htdocs/secret/.htaccess��httpd.conf��<Directory /usr/local/apache/apache/htdocs/secret>�Ρ�

AuthType Basic AuthName "Restricted Files" AuthUserFile /usr/local/apache/passwd/passwords Require user rbowen

��Щָ�AuthTypeָ��ѡ��û�ʵʩ��֤�ķ���õ��mod_auth_basic�ṩ��Basic ��ʶ��ĺ��Ҫ��һ��ǣ�Basic��֤��û��룬��ˣ��Ӧ��ڸ߶��е��ݡ�Apache�л��һ�ָ��ȫ��֤��"AuthType Digest"��mod_auth_digest��ժҪ��֤��Ŀǰ��ֻ��µ��汾��֧��ժҪ��֤��

AuthNameָ��ʹ��֤��(Realm)��ã��ȣ��ʾ��û��ʶԻ��У��Σ�Ҳ��ͻ��˳��ȷ��Ӧ�÷��ĸ��롣

��ԣ��һ��û��Ѿ��"Restricted Files"��ͨ��֤��ͻ��˾Ϳ��Գ��ʹ��ͬ��ͬһ��κ��Ϊ"Restricted Files"��֣��Ӷ�ʹ��ʹ��ͬһ��룬�Ա��û��ظ��롣��Ȼ��ڰ�ȫ��ǣ��ˣ��ͻ��ʼ�ջ�Ҫ��롣

AuthUserFileָ��ļ��λ�ã�Ҳ��Ǹղ��htpasswd��ļ��û��ܶ��֤�ٶȻ��Ϊ��ÿ��󶼱��ı��ļ��Դˣ�Apache��֧�ְ��û��Ϣ��ٵ��ݿ��ļ��mod_authn_dbmģ��ṩ��AuthDBMUserFileָ���dbmmanage��Ͳ��Щ��ݿ⡣Apacheģ��ݿ��л��ṩ��ģ��ṩ��֤ѡ�

��Requireָ��ܱ��û��һ�ڽ��Requireָ��ϸ˵��

��˷��

��ָ��ֻ��һ��(һ��rbowen��û�)��Ŀ¼��Ƕ��£��Ҫ��˷��ʣ��Ծ�Ҫ�õ�AuthGroupFileָ�

��˷��ʣ��ô�ͱ��뽨��һ��ļ��ȷ��е��û��ʽ�ܼ򵥣��ϲ��ı༭��磺

GroupName: rbowen dpitts sungo rshersey

��ֻ��ÿ��һ�е�һ��ÿո�ָ��Ա�б�

��е��ļ��һ��û��룺

htpasswd /usr/local/apache/passwd/passwords dpitts

��ʾ��һ��׷�ӵ��е��ļ��У��ǽ�һ��ļ�(�� -c ��ǿ�ƽ��µ��ļ�)��

��ڣ��Ҫ��.htaccess�ļ��޸ĳ��

AuthType Basic AuthName "By Invitation Only" AuthUserFile /usr/local/apache/passwd/passwords AuthGroupFile /usr/local/apache/passwd/groups Require group GroupName

��ڣ�GroupName��еĳ�Ա��password�ļ��һ��Ӧ�ļ�¼��Ӷ��ȷ��з��ʡ�

��˽��ļ��һ��;��˷��ʣ��ʹ��ָ�

Require valid-user

ʹ��ָ��� Require user rbowen ��ļ��е��û�ʹ��ȷ��з��ʡ�ͨ��Ϊÿ��齨��һ��ļ��оٸ��飬��ŵ��Apacheֻ��Ҫ��һ��ļ�(��)��ȱ��ǣ��ά��ڶ��ļ��Ҫȷ��AuthUserFileָ��һ��ȷ��ļ��

��ܴ��ڵ��

��ڲ��Basic��֤�ķ��ÿ��ˢ��һ��ܱ��ҳ��ͼƬʱ��У��û��룬Ϊ�ˣ��ļ��û��ˣ��Ӧ�ٶȻ��һЩӰ�죬��Ӱ��ĳ̶��ļ��Ĵ�С��ȡ�

��ԣ��ļ��е��û��һ��ʵ��ϵ��ޣ��ȡ��ض��ķ��ܣ��һ��м��ٸ��û��ͻ��Ӧ�ٶ��зǳ��Ե�Ӱ�죬��£��Կ��֤��

��֤��

��û��ֻ֤�Ƿ��֮һ��ʱ��в��Ҫ֪��˭��ֻ��Ҫ֪��

Allow��Denyָ��ܾ��ض��ַ�ķ��ʣ�ͬʱ��Orderָ��Apache��ָ��˳��Ըı��

��Щָ��÷��

Allow from address

address��һ��IP��ַ(��IP��ַ��һ��)��Ҳ��һ��(��һ��)��ͬʱָ��IP��ַ��

��磬Ҫ�ܾ��ܻ�ӭ�Ķ��վ�㣺

Deny from 205.252.46.165

��ָ��Ͻ��򽫾ܾ��Ըõ�ַ�ķ��ʡ��ָ��IP��ַ��Ҳ��ָ��磺

Deny from host.example.com

��⣬��ָ��ַ��һ��ֹһ��Ⱥ�壺

Deny from 192.101.205 Deny from cyberthugs.com moreidiots.com Deny from ke

Order��Deny��Allowָ��Ա�֤��һ��Ⱥ��ʵ�ͬʱ��е�һЩ�ּ��ƣ�

Order deny,allow Deny from all Allow from dev.example.com

ֻ�г�Allowָ���õ��Ҫ�Ľ��Ϊ��ָ��ʵ�ͬʱ��ֹ��δ�г��Ķ��ķ��ʡ��ʹ�õķ��ǣ��Ⱦܾ��κ��ˣ�Ȼ��ض��ķ��ʡ�

��Ϣ

mod_auth_basic��mod_authz_host�ĵ��и��й��ϡ�mod_authn_aliasͬ��ڼ��֤��á�

��֤����Ȩ�����ʿ���

��֤��Ȩ��ʿ��