please have a look at the following configuration excerpt:
<Directory "C:/www"> Order Allow,Deny Deny from All </Directory>
<Directory "C:/www/site"> Allow from All </Directory>
I initially thought that the directory "d:/www/site" would not be accessible since the second Directory directive inherits from the first one and the combination of Deny and Allow should result in a double match which in turn (due to the Order directive) should result in a Deny.
But I seem to be wrong (I tried it), but I don't understand why ....
I also thought it should work, but it doesn't (I tested it). It seems that all subdirs inherit access control from its parent dirs, but as soon as you start to specify some Allow or Deny directives in a subdir, they are not merged to the directives of the parent dir, but they overwrite them starting from scratch!
So at the end (since Order Deny,Allow is the default), the second directive actually seems to be interpreted as
<Directory "C:/www/site"> Order Deny,Allow Allow from All </Directory>
I carefully read the Apache docs, but I did not find any hints about this special case...