Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog InPrint View
.htpasswd crypt option
Posted by: sKunKbad (---.lsanca.fios.verizon.net)
Date: January 02, 2008 09:02AM

I am on a windows machine. On any host I've ever worked with, passwords are stored as encrypted with crypt() in .htpassword files. When I set the AllowOverride to enable .htaccess/.htpasswd usage for user authentication, I have noticed the passwords are stored only in their raw format. How can I tweak my installation so that the user authentication is checking for the encrypted version of the password?

Options: ReplyQuote
Re: .htpasswd crypt option
Posted by: toivo (203.19.130.---)
Date: January 02, 2008 01:19PM

Hi,

You can use the option -d with htpasswd.exe in c:\wamp\apache2\bin to generate the password and it will force the CRYPT encryption.

Regards,

toivo
Sydney, Australia

Options: ReplyQuote
Re: .htpasswd crypt option
Posted by: sKunKbad (---.dslextreme.com)
Date: January 02, 2008 07:50PM

It looks like in the Apache documentation it says that crypt is not available on Windows. I'm disappointed because I wanted to be able to replicate the server environment I am working on. Default encryption on windows is MD5


toivo Wrote:
-------------------------------------------------------
> Hi,
>
> You can use the option -d with htpasswd.exe in
> c:\wamp\apache2\bin to generate the password and
> it will force the CRYPT encryption.
>
> Regards,



Edited 2 time(s). Last edit at 01/03/2008 12:18AM by sKunKbad.

Options: ReplyQuote
Re: .htpasswd crypt option
Posted by: toivo (203.19.130.---)
Date: January 03, 2008 02:12AM

Oops, you are right: [httpd.apache.org]

Even though you may be able to generate passwords using CRYPT in htpasswd.exe, Apache under Windows does not seem to be able to do the same.

Regards,

toivo
Sydney, Australia

Options: ReplyQuote


Go to: Forum ListMessage ListSearchLog In
Sorry, only registered users may post in this forum.
Click here to login