Backports:

 * mod_ssl: Fix FakeBasicAuth for subrequests, by declining check_user_id.
   Otherwise it would run into the check that was to protect from externally
   fabricated Authorization headers, which would choke on the one added
   by mod_ssl itself.

 * mod_ssl: Add error msg for the case when FakeBasicAuth is tried to be
   tricked.  IOW, when someone tries to spoof his identity.

Reviewed by: Jeff Trawick, Greg Stein


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/APACHE_2_0_BRANCH@100942 13f79535-47bb-0310-9956-ffa450edef68