Posted by Kenny Austin on 04/27/05 23:23
Bret Walker wrote:
> Well, the download.php script would allow me to protect certian files,
> but is there a way to protect all files? For example, images that I
> would like to include in my php pages.
you can serve images through through download.php.. but that's just a
bad idea :)
> Could I silently pass a username and password to htaccess? Can htaccess
> be set to use a php script instead of a htpasswd file?
why are your username/passwords safer in script.php then .htpasswd?
I still think your best route would be auth_ldap. If you directory
server doesn't allow anonymous searches, have the admin create a low
privileged account that only has access to search the required attributes.
Kenny
[Back to original message]
|