Passwd & htaccess for lighttpd

[pi0tr3k]

I need to secure my adminCP, and I'm using Lighttpd. Can anyone show/write a simple htaccess file? I've been looking around, but meh, there went always something wrong

 

[Mr.WT]

ru using VB i can help u to secure

 

[jayfella]

http://www.golivecentral.com/pages/txttut/htacc.shtml

 

[pi0tr3k]

no phpbb2

 

[pi0tr3k]

Jay, I followed the steps from that site and it's not working!!!!
I created .htaccess with this

AuthUserFile /home/.../.../.../.passwd
AuthGroupFile /dev/null
AuthName EnterPassword
AuthType Basic
Require valid-user

When accessing my ACP I got that pop up window to enter pass & user, but after TYPING it, nothing happens, and the pop up window pops up again, and asks for user & pass..

 

[pi0tr3k]

Bump. ??

 

[natsu90]

wrong password? point your .htpasswd file using

AuthUserFile /home/.../.../.../.htpasswd

http://www.tools.dynamicdrive.com/password/

 

[desiboy]

edit
/etc/lighttpd/lighttpd.conf

and make sure server.modules += ( "mod_auth" ) is loaded.

and add this to directives

auth.debug = 2
auth.backend = "plain"
auth.backend.plain.userfile = "/home/desiboy/.lighttpdpassword"

and append this

auth.require = ( "/path_to_protect/" =>
(
"method" => "basic",
"realm" => "Password protected area",
"require" => "user=user"
)
)

create password file
nano /home/desiboy/.lighttpdpassword

and put desired user name and password
usrer:mypassword

and make sure that the .lighttpdpassword is readable by lighttpd

and restart lighty ,the directory will be protected..

edit according to your needs

HTH

 

[pi0tr3k]

^Awesome, thank you.

 

[Kruno]

On a security note, chmod .lighttpdpassword to 600