Page 1 of 1

Apache authentication against zzsys_user

PostPosted: Thu Feb 27, 2014 6:54 am
by ckurlinski
I am trying to setup apache to authenticate a directory on my server against the zzsys_user credentials.
I've gotten the connection to function by adding
<IfModule mod_dbd.c>
DBDriver mysql
DBDParams "host= port=3306 dbname=sample user=root pass=password"
DBDMin 1
DBDKeep 8
DBDMax 20
DBDExptime 300


<Directory "C:/UwAmp/www/test">
Options -FollowSymLinks Indexes MultiViews
AuthType Basic
AuthName "subscriber"
AuthBasicProvider dbd
AuthDBDUserPWQuery "SELECT sus_login_password FROM zzsys_user WHERE sus_login_name = %s"
Require valid-user
AllowOverride None
Order allow,deny
Allow from all

to the httpd.conf file actually httpd_source.conf which generates the httpd.conf.

However I continually get [error] [client] user test: authentication failure for "/test/": Password Mismatch

I have found this code in formlogin.php
sus_login_password = '" . md5('nu' . $pass) . "'";

Are you modifying the password before encrypting it?

Has anyone else authenticated against zzsys_user with apache?