Loading docs/manual/mod/mod_auth_digest.xml +3 −3 Original line number Diff line number Diff line Loading @@ -45,7 +45,7 @@ <p>To use MD5 Digest authentication, simply change the normal <code>AuthType Basic</code> and <directive module="mod_auth_basic">AuthBasicProvider</directive>. <directive module="mod_auth_basic">AuthBasicProvider</directive> to <code>AuthType Digest</code> and <directive module="mod_auth_digest">AuthDigestProvider</directive>, when setting up authentication, then add a Loading Loading @@ -120,7 +120,7 @@ <p>See the <directive module="mod_setenvif">BrowserMatch</directive> directive for more details on conditionally setting environment variables</p> variables.</p> </section> Loading Loading @@ -200,7 +200,7 @@ authentication</description> one-time-nonces are being used, this may lead to browsers trying to pipeline requests and receiving 401 responses for all but the first request, requiring the browser to resend the requests. Note also that the protection against reply attacks only makes sense also that the protection against replay attacks only makes sense for dynamically generated content and things like POST requests; for static content the attacker may already have the complete response, so one-time-nonces do not make sense here. --> Loading Loading
docs/manual/mod/mod_auth_digest.xml +3 −3 Original line number Diff line number Diff line Loading @@ -45,7 +45,7 @@ <p>To use MD5 Digest authentication, simply change the normal <code>AuthType Basic</code> and <directive module="mod_auth_basic">AuthBasicProvider</directive>. <directive module="mod_auth_basic">AuthBasicProvider</directive> to <code>AuthType Digest</code> and <directive module="mod_auth_digest">AuthDigestProvider</directive>, when setting up authentication, then add a Loading Loading @@ -120,7 +120,7 @@ <p>See the <directive module="mod_setenvif">BrowserMatch</directive> directive for more details on conditionally setting environment variables</p> variables.</p> </section> Loading Loading @@ -200,7 +200,7 @@ authentication</description> one-time-nonces are being used, this may lead to browsers trying to pipeline requests and receiving 401 responses for all but the first request, requiring the browser to resend the requests. Note also that the protection against reply attacks only makes sense also that the protection against replay attacks only makes sense for dynamically generated content and things like POST requests; for static content the attacker may already have the complete response, so one-time-nonces do not make sense here. --> Loading
