#
# This file limits access to the PPP remote control ppp-rc.cgi if you're
# running the Apache web server.
#
# Please note:
# for this file to take effect, you need to have "AllowOverride AuthConfig"
# or "AllowOverride All" in the configuration of the cgi-bin directory.
# If you do not wish to do that, define the access limits in the Apache
# configuration itself.  For more info please read the Apache docs.
#
# To create the passwd file, use
# htpasswd -c <AuthUserFile> <username>
# To add more users simply
# htpasswd <AuthUserFile> <username>
# where <AuthUserFile> is the filename given below.
#
# This will limit status information to the hosts on your local network
# and starting and stopping connections to authenticated users listed in
# the AuthUserFile if they are on your local network.
#
# ppp-rc.cgi itself does NOT do any authentication or user verification
# beyond what the system uses for starting and killing pppd. All of this
# will be done as user wwwrun (or whatever the web server's user ID is).
#
<Limit GET>
	order deny,allow
	deny from all
	allow from 192.168.1.0/24
</Limit>
<Limit POST>
	AuthType Basic
	AuthName "PPP Remote Control"
	AuthUserFile /usr/local/httpd/auth/ppp-users
	order deny,allow
	deny from all
	allow from 192.168.1.0/24
	require valid-user
	satisfy all
</Limit>