|
|
Posted by Roman Stφckl-Schmidt on 03/20/05 22:32
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
LacaK wrote on 20.03.2005 19:13:
| Hello Roman,
| yes if safe_mode=on then
| Authorization header is hidden from phpinfo() and
apache_request_headers(),
|
| but variables $_SERVER["PHP_AUTH_USER"] and "PHP_AUTH_PW"
| are set , when Basic authorization is used ! (it works in my configuration
| of Apache and PHP)
|
| Problem may be in Apache . When directory (where requested file is) is
| protected by Apache authentication, then $_SERVER variables are not set.
I have no idea what to do to deal with this. There is only one .htaccess
file, which is in the top-level directory of my account with my ISP. And
I've even put
AuthType None
in there, but it doesn't change anything.
The fact that the uid of the script is appended to the realm specified
shouldn't require any changes in the code, or should it?
I really don't have any more ideas of what to do. What is probably
important is that apparently my ISP upgraded his version of PHP to
4.3.10 which is now CGI instead of a module.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCPd3bn0kyIx7rF68RAn5/AKCQp3rI6EckIfs+XPj4/afpNQ80uwCeNqc8
mQBLBwxXqnrHfNKKktQep9E=
=wqmo
-----END PGP SIGNATURE-----
[Back to original message]
|