Issue: apache2 doesn't ask for password.
My understanding of the lab: I expect once done that the user [email protected] can accesss http://localhost in a browser (showing default apache index.html), but user [email protected] would be prompted for a password.
What I've tried:
1. Following the instructions directly:
# mkdir /var/www/html/secure
# vim /etc/apache2/sites-enabled/secure-dir.conf
# htpasswd -c /etc/apache2/secure.users bob
a. tried creating user first then these configurations
b. tried the opposite
c. changed line 1 of secure-dir.conf to
c1. placed /var/www/html/index.html in /var/www/html/secure
d. changed line 4 of secure-dir.conf to /etc/apache2/secure.users
e. tried keeping line 1 the same but making /secure and putting the default apache html file there
f. restarted apache daemon after each change, promise
In the end, bob was never asked for a password---not when opening anything in Nautilus, dumping the html with w3m, or opening the file in Firefox.
- Following along in http://httpd.apache.org/docs/2.4/howto/auth.html
Long story short the placement of the file with Location etc. in it and the password file changed. Still no result.
a. looked for loaded modules such as mod_auth_basic per documentation
b. no result -> lsmod -> no such modules
Do I misunderstand the lab objective? Has anyone else come across this? Am I missing something really obvious?