I just tried to set up apache-ssl and I'm having problems. I want to
set up a directory so that when a user tries to enter it with their web
browser they are asked for a user name and password. If they are
authenticated, they get in; if not they don't.
I compiled SSLeay 0.80 and apache-ssl. I fudged a certificate for
testing purposes. I can get an SSL encrypted link to my web browser.
When I click on the protected directory I get a window asking for my
user name password. When I enter my user name/password I get an
authentication error.
My log file says:
Access to /login failed for elvis, reason: user linest: password
mismatch.
The parts of my httpd.conf that seem relevant look like:
<Directory /export/home/login>
AuthType Basic
AuthName Experimental
AuthGroupFile /dev/null
AuthUserFile /etc/passwd
<Limit PUT GET>
allow from all
require valid-user
</Limit>
</Directory>
I'm sure that /etc/passwd is wrong. I've looked through the code enough
to believe that the file should be either dbm or db format but I'm not
sure which. Which format should the file be in? How can I build a
password file in the proper format?
I would be pleased if someone told me to RTFM and included the
information about where TFM is.
All help will be much appreciated.
-Tim