[gentoo-user] *Simple* guide to implementing digest-auth combined with IP based whitelist?

[gentoo-user] *Simple* guide to implementing digest-auth combined with IP based whitelist?

[Tanstaafl]

I've never had a need to protect a site like this so am totally new to it...

I've been reading, and everything says that digest-auth is preferred to 
basic-http-auth (yes, I know that this isn't a very sophisticated level 
of protection, but it is all we need for this site), but is there also a 
way to whitelist certain static IP address so people on those don't get 
prompted for a username/password?

Thanks for any pointers to tfm...

Re: [gentoo-user] *Simple* guide to implementing digest-auth combined with IP based whitelist?

[Michael Orlitzky]

On 04/03/12 15:06, Tanstaafl wrote:
> I've never had a need to protect a site like this so am totally new to
> it...
> 
> I've been reading, and everything says that digest-auth is preferred to
> basic-http-auth (yes, I know that this isn't a very sophisticated level
> of protection, but it is all we need for this site), but is there also a
> way to whitelist certain static IP address so people on those don't get
> prompted for a username/password?
> 
> Thanks for any pointers to tfm...
> 

From http://httpd.apache.org/docs/2.2/mod/core.html#satisfy,

  For example, if you wanted to let people on your network have
  unrestricted access to a portion of your website, but require that
  people outside of your network provide a password, you could use a
  configuration similar to the following:

See also:

  http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html

for the "Allow from..." docs.