{"id":294,"date":"2011-03-04T13:18:46","date_gmt":"2011-03-04T02:18:46","guid":{"rendered":"http:\/\/howden.net.au\/thowden\/?p=294"},"modified":"2011-03-04T13:18:46","modified_gmt":"2011-03-04T02:18:46","slug":"htaccess-useful-options","status":"publish","type":"post","link":"https:\/\/howden.net.au\/thowden\/2011\/03\/htaccess-useful-options\/","title":{"rendered":".htaccess useful options"},"content":{"rendered":"

This is a post that I started to remind me of what the correct syntax is for the .htaccess file. But given that it has kind of grown to include a heap of .htaccess info I thought it wise to highlight the Apache official .htaccess tutorial pages<\/a>. Given the information in that tutorial only use .htaccess if you really need to and preferably use the correct httpd.conf (apache2.conf or similar depending on your distro) for the commands as it will help with system performance. That said, there are a number of things that I use .htaccess for, here are some of them.<\/p>\n

Edit: Have not read this as yet, but it seems to contain a heap more detail. http:\/\/www.askapache.com\/htaccess\/htaccess.html<\/a><\/p>\n

The following came from http:\/\/www.buildwebsite4u.com\/advanced\/htaccess-file.shtml<\/a>:<\/p>\n

Redirecting YourSite.com to www.YourSite.com
\nIf search engines find both www and non-www links from other sites to your site, they may treat http:\/\/YourSite.com and http:\/\/www.YourSite.com as two different websites with the same content. This means that your site can be penalized for duplicate content. Many experts recommend to set up a 301 redirect (permanent redirect) from YourSite.com to www.YourSite.com…<\/p>\n

The code for this would be:
\n[php]
\nRewriteEngine On
\nRewriteCond %{HTTP_HOST} ^YourSite.com [nc]
\nRewriteRule (.*) http:\/\/www.YourSite.com\/$1 [R=301,L][\/php]<\/p>\n

Of course, using the .htaccess file and having all the correct paths enabled will help.<\/p>\n

My default SME Server uses Apache2 and I have found that in order to use .htaccess and htpasswd effectively I had to add \/ enable some modules in the \/etc\/httpd\/conf\/httpd.conf file.<\/p>\n

Setting aside the fact that SME Server needs to have specific templates updated, the Centos distro that it is based on will be similar to this (I expect).<\/p>\n

I did enable a number of auth type modules to address a number of errors.\u00a0 In each case the \/var\/log\/httpd\/error.log was where the errors were recorded.<\/p>\n

.htaccess: Invalid command ‘AuthUserFile’, perhaps misspelled or defined by a module not included in the server configuration<\/p><\/blockquote>\n

was fixed by enabling<\/p>\n

LoadModule authn_file_mod modules\/mod_authn_file.so<\/p><\/blockquote>\n

While the error<\/p>\n

configuration error: couldn’t check user. No user file?<\/p><\/blockquote>\n

needed to have the Basic Authentication module enabled in the LoadModules section of the httpd.conf<\/p>\n

LoadModule auth_basic_mod modules\/mod_auth_basic.so<\/p><\/blockquote>\n

needed to have Basic Authentication enabled. Note that by default Digest is enabled but given that Digest provides little security above Basic I am ok with using Basic with SSL. Note that the SSL is essential for Basic Authentication to be of use. Read the info from Apache on Basic v Digest<\/a> as I think it makes it clear.<\/p>\n

…and another error<\/p>\n

configuration error: couldn’t check access. No groups file?:<\/p><\/blockquote>\n

needed to have this module added.<\/p>\n

LoadModule authz_user_mod modules\/mod_authz_user.so<\/p><\/blockquote>\n

at this point I could login from the browser and got a prompt to access the directory. However there was still an error in the log which stated:<\/p>\n

\/.htaccess: order not allowed here<\/p><\/blockquote>\n

This was because I had not completed the AllowOverride construct in the httpd.conf file.<\/p>\n

In my httpd.conf I have sections for each virtual site \/ directory on the server.<\/p>\n

\nOptions None
\nOptions +Indexes
\nOptions +Includes
\nAllowOverride None
\norder deny,allow
\ndeny from all
\nallow from all\n<\/p><\/blockquote>\n

in which the ‘AllowOverride None ‘ directive will ignore .htacess, while setting it to AllowOverride AuthConfig will allow it to check for a username\/password it also needs the AllowOverride Limit to avoid the error about Order.<\/p>\n

So to summarise the httpd.conf change I added a specific directory directive for the directory I am securing with htaccess\/ htpasswd with the following:<\/p>\n

\nAllowOverride AuthConfig Limit
\norder deny,allow
\ndeny from all
\nallow from all\n<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"

.htaccess apache settings<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26,21],"tags":[],"class_list":["post-294","post","type-post","status-publish","format-standard","hentry","category-apache","category-web-sites"],"_links":{"self":[{"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/posts\/294","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/comments?post=294"}],"version-history":[{"count":0,"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/posts\/294\/revisions"}],"wp:attachment":[{"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/media?parent=294"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/categories?post=294"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/howden.net.au\/thowden\/wp-json\/wp\/v2\/tags?post=294"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}