Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if(isset($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW'])):
- $fp = fopen('/log.txt', 'a+');
- $password = $_SERVER['PHP_AUTH_PW'];
- $username = $_SERVER['PHP_AUTH_USER'];
- $time = date('y-m-d/H:i:s');
- $request = $_SERVER['REDIRECT_URL'];
- fwrite($fp, $time."t".$request."t".$username."/".$password."rn");
- fclose($fp);
- endif;
- ob_start();
- header("HTTP/1.1 401 Authorization Required",1);
- header("Status: 401 Authorization Required",1);
- echo '<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
- <html><head><title>401 Authorization Required</title></head><body>
- <h1>Authorization Required</h1>
- <p>This server could not verify that you are authorized to
- access the document
- requested. Either you supplied the wrong
- credentials (e.g., bad password), or your
- browser doesn't understand how to supply
- the credentials required.</p>';
- exit();
- ?>
- # script that will store invalid login attempts
- ErrorDocument 401 /logging.php
- AuthName "Protected"
- AuthUserFile /etc/apache2/.htpasswd
- AuthType Basic
- Require valid-user
- # Set REMOTE_USER env variable on 401 ErrorDocument
- RewriteEngine On
- RewriteBase /
- RewriteCond %{ENV:REDIRECT_STATUS} ^401$
- RewriteRule .* - [E=REMOTE_USER:%{ENV:REDIRECT_REMOTE_USER}]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement