How about failed attempts for htaccess password protected directories

Question

How about failed attempts for htaccess password protected directories

This question is related to the previous question I asked, but it is different.

I use htaccess to control login http://somesite.com/folder.

After logging in, I have php code in folder/index.phpto check the username and password used to log in: $_SERVER['PHP_AUTH_USER']and $_SERVER['PHP_AUTH_PW']. I am logging this information in a database.

This works when the user supplies a good username and password, but when it is incorrect, nothing happens - I suppose, because it is /index.phpnever achieved.

Is there a way to login and failed login attempts?

+3

php login .htaccess

devling Jul 05 '10 at 4:54

source share

2

, , , auth Apache fail2ban. !

+1

joeynelson 05 . '10 10:55

Artefacto · Accepted Answer · 2010-07-05T04:58:01+0000

. .htaccess

ErrorDocument 401 /path/to/log.php

log.php ( , , ). , , - , . , (, , , ), , $_SERVER['PHP_AUTH_USER'] .

, , , /index.php .

, Apache PHP. , . . , . PHP, . , , PHP. PHP, include. , PHP , , .

How about failed attempts for htaccess password protected directories

More articles: