.htaccess problem?

Forum Moderators: phranque

Message Too Old, No Replies

.htaccess problem?

unknown user showing up in logs...

mivox

1:42 am on Dec 29, 2000 (gmt 0)

OK... lets see if I can explain this clearly.

I have htacess protection for a "members only" directory on my site. All the members share the same username and password (I'm not too worried about really tight security)...

Today, my logs showed an unknown username in my list of "Authenticated Users."

If the 'correct' login info is user:FOO/pass:BAR, shouldn't my logs show user FOO as the one who accessed the directory? Instead, it showed user 'nblake' as requesting a protected file.

Did some schmoe just try to access the directory unsucessfully...? Am I getting worried over nothing?

DaveAtIFG

3:32 pm on Dec 29, 2000 (gmt 0)

First thing I'd do is try to log in using a few "aliases" mivox1, mivox2, etc, and see what showed up in my logs. And if I managed to hack in, I'd take it up with my hosting company. I'm betting 'nblake' just tried access to see if it really was password protected and it's not something to worry about.

mivox

7:54 pm on Dec 29, 2000 (gmt 0)

I'll have to try that when I get home... I have my work machine blocked from displaying in my log analysis program, and I don't want to hassle with undoing it.

I think he probably failed to access it though, because I failed when I tried using his name.