uhmcastillo

Well, that is interesting... And those log entries are making crap requests. Try a non-standard port, just to make sure it's not something wrong with the server. See if there's a pattern among the IP addresses in the logs. Maybe it's a DDOS attack? Past that, I'm not sure, anyone else?

Wow, interesting. Are you on a home network? Router? DMZ?

Sooooooo What happened to Server1? Do you still have any access to it? Because you'd need to do something to Server1 to get a rewrite to work. Do you own the domain name of Server1? Can you move it to Server2? You see, if I own crazywebsites.com and you steal it, I can't make anything on that site go to my new site at crazywebsitestoo.com unless I have some access to the original server or atleast the original domain. Does that make sense?

I don't think so. But, why would you want to do that anyway?

If you modify the file and remove the last two fields, does it work?

You're running the web server from your home machine? It seems that your ISP (I'm going to guess you're in Finland?) seems to be blocking or rerouting requests on the HTTP port. You could try running your webserver on a non-standard port, like 8888?

In the server config file (httpd.conf) there's a section that defines file types with lines like: AddType text/html .shtml Well, your server is confused about that type that files is, as it has not extension to match to. Now, you could try something crazy like AddType text/html * but I wouldn't recommend it. I have no idea what security/stability issues that would produce. If you use the MultiViews option, it may get you the same functionality, but it has it's own issues as well.

Ah, so it ignored everything after the second colon... That's good to know! So when you type the encrypted string, it lets you in? Odd.... How did you create these .htpasswd files?

Ok, first off, this: test:192ba5b8X6Fiw:Test:test Shouldn't work. If it is, well then that's news to me, because I was under the assumption that the passwd file was formatted: username:password I think that may be why it's not working...

OMG, friggin THANK YOU! This has been driving me insane! Cheers! -m

Ok, so far... no one here seems to know what I'm talking about. Can anyone atleast confirm that their servers have a similar functionality? This is driving me insane, since I can't move forward without figuring this out...

Yes, well, if you get asp running, let me know how that worked... And don't put it in a htaccess file. Put it in the http.conf (in a <directory /> section, like I mentioned above).

Sorry, it's below the fold in that section, easy to miss. I think these are it: Accept Accept-Charset Accept-Encoding Accept-Language Authorization Expect From Host If-Match If-Modified-Since If-None-Match If-Range If-Unmodified-Since Max-Forwards Proxy-Authorization Range Referer TE User-Agent

I believe you can use the php_admin_flag engine off command in a <Directory /mydir> section. I've never tried it myself, so please let me know if it works. Cheers, -m

Can you give any additional information? What does the access_log and error_log read after you try to view the page? When you say it doesn't load, what does it show? A white page, or an error page? -m

http://www.rfc-editor.org/rfc/rfc2616.txt Do a search for "5.3 Request Header Fields" and you should find a list. cheers, -m

After the directive SetEnvIfNoCase (or SetEnvIf) you can use any of the (standard) request header fields, such as User-Agent, Host, or... you guessed it, referer! More info: http://httpd.apache.org/docs/1.3/mod/mod_setenvif.html Does that help?

This has been driving me insane, and I can find no documentation anywhere on it. I think that's mainly because I'm not entirely sure how to describe it. So here we go: Running Apache 1.3 Php 4 If you go to the URL: http://mydomain.com/admin If the file admin.html exists in the base directory, and assuming there's no admin directory..... It automatically serves you that file!! How the hell do I turn this off, or configure it? It's driving me insane! This functionality is actually what I desire. I ended up writing a complex rewrite to do it on a dev server, just to find out that this existed on the production system already. Now if I can just control it... If someone could clarify, it will prevent me from setting my server alight... Thanks! -m