CentOS - May 2009 - Where to put .htpasswd

Hi All,

Where is the proper place to put .htpasswd so I can password protect  
directories in /var/www/html?

/etc/httpd/run?

-Jason

Jason Todd Slack-Moehrle wrote:
> Hi All,
>
> Where is the proper place to put .htpasswd so I can password protect  
> directories in /var/www/html?
>
> /etc/httpd/run?
>   
probably not, as thats a world readable directory (its a symlink to 
/var/run )

I've generally stuck them in an app specific directory, if your website 
is all in /var/www, I'd probably stash them in a subdir of that.

On Wed, May 27, 2009 at 7:28 PM, Jason Todd Slack-Moehrle
<mailinglists at mailnewsrss.com> wrote:
> Hi All,
>
> Where is the proper place to put .htpasswd so I can password protect
> directories in /var/www/html?
>
> /etc/httpd/run?
In theory if you have root access to the system, you really shouldn't
use .htaccess files unless you have to. If the file isn't going to
change it should ideally go into /etc/httpd/conf.d/someconfig.conf

The httpd documentation itself recommends against using htaccess files
because they require more cycles to process and add to httpd's
overhead. Now, for 99% (yes I made that statistic up) of webservers
out there, it's academic as they likely won't see enough load out
there to notice the difference between an included config vs an
htaccess file.


-- 
During times of universal deceit, telling the truth becomes a revolutionary act.
George Orwell