Hi..all, I added these below four lines in the document root section in /etc/apache2/sites-available/default file on ubuntu-11.04.
AuthType Basic
AuthName "Authorised Users Only"
AuthUserFile /etc/.auth_users
Require valid-user
Then I added users using "htpasswd -c /etc/.auth_users user1", "htpasswd /etc/.auth_users user2" and so on. Also changed the permission as "chmod 640 /etc/.auth_users" & "chown root.www-data /etc/.auth_users". Then restarted apache. Now the server is prompting for username & password.
Good, but I need some more security for our web server that as I need to bind each and every username(which is stored in /etc/.auth_users file) with particular IP address. Then other person will not be able to browse on other machine even the username and password get hacked. Is it possible to do so?
And is it possible to create groups and grant the permission as read only or read/write. Because we are running wiki pages and by default edit button is enabled. So anyone can edit or delete anything. I don't have much idea about pmwiki. I will be waiting for your kind response.

Regards
Roopa

http://httpd.apache.org/docs/2.2/mod...uthz_host.html
This limits group access by host or ip address.
If each valid user has a different ip address, then make each user a member of their own group.

1 members found this post helpful.

Thanks for your kind reply.
I saw the url, still I need some more explanation for below doubts.
Instead of showing all ip in the /etc/apache2/sites-available/default file as "Allow from 192.168.0.2 192.168.0.3 192.168.0.4 and so on" to allow only this particular IPs, is it possible to show as a file i.e "Allow from /etc/.auth_IPs" in which Allowed IP addresses will be stored?
I will create group file as /etc/.auth_group. In this file how to add group name, what is the command to add group name like htpasswd. or simply can I write the group name? And after how to add users to those group using htpasswd.
How to integrate particular user name with particular IP address?