PS: Basic Apache authentication using cookies

Michael James michael at
Sat Mar 9 02:05:05 EST 2002

A bit of searching has found an Apache module
 that does authentication using cookies:

Everything else I saw was pre apache 1.3
 and wanted to be compiled in statically.

This compiles as a shared library.

It has the added security of including the IP address of the client,
 so cookies are not transferable.

It hashes the cookie to avoid tampering.

Cookie can be encrypted.

CGI and java servelet tools are provided to set the cookies.

Anyone used this?

A right not exercised is a privilege
a privilege not exercised is illegal.

Michael James			michael at
8 Brennan St			Phone: +61 2 6247 2556
Hackett, ACT 2602		Mobile: +61 4 1747 4065
AUSTRALIA			Fax: +61 2 6278 0011

More information about the linux mailing list