December 2002
Intermediate to advanced
588 pages
25h 57m
English
Content preview from Apache: The Definitive Guide, 3rd EditionBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Name
Order
Synopsis
order ordering
directory, .htaccess
The
ordering argument is one word (i.e., it is
not allowed to contain a space) and controls the order in which the
foregoing directives are applied. If two order
directives apply to the same host, the last one to be evaluated
prevails:
-
deny,allow The
denydirectives are evaluated before theallowdirectives. This is the default.-
allow,deny The
allowdirectives are evaluated before thedenys, but the user will still be rejected if adenyis encountered.-
mutual-failure Hosts that appear on the
allowlist and do not appear on thedenylist are allowed access.
We could say:
allow from all
which lets everyone in and is hardly worth writing, or we could say:
allow from 123.156 deny from all
As it stands, this denies everyone except those whose IP addresses
happen to start with 123.156. In other words,
allow is applied last and carries the day. If,
however, we changed the default order by saying:
order allow,deny allow from 123.156 deny from all
we effectively close the site because deny is now
applied last. It is also possible to use domain names, so that
instead of:
deny from 123.156.3.5
you could say:
deny from badguys.com
Although this has the advantage of keeping up with the Bad Guys as they move from one IP address to another, it also allows access by people who control the reverse-DNS mapping for their IP addresses.
A URL can be contain just part of the hostname. In this case, the match is done on whole words from the right. That ...