diroussel

Hi, Here are some areas for improvements, in order of importance to me: 1) When I login to the hawkhost site 95% of the time it's to access my cPanel. Once logged in I'd like to see a list of sites, and a button to launch cPanel. (Although ideally the cPanel link would be bookmarkable). As it is I have to go through a couple of pages, and I can never remember if I have to click on 'My Domains' or 'Products and Services'. And stuff opens in a new window! That should only happen when I say so. I can configure Firefox to override that, but in Safari I'm powerless. So in summary, less clicks and no popups (target='_new'). 2) When I go into cPanel I always get an SSL warning. There is no need for this. Why is the URL to an IP address, just put the FQDN of the server, as specified in the cert (neptune in my case). Browsers are gettin tougher on this, and if you don't use SSL properly, then you might as well not use it at all. 3) Single signon for the various parts of the hawkhost website would be nice. I have to login separately for the main site, support area and forums. I hope you get time implement these changes. Thanks David

Ah, yes, I was trying to remove my domain name, but made a school boy error. Your remark sparked me to try changing to: AuthDigestDomain /blob/wp-admin and now it works! Yay, thanks Tony. Not sure why an absolute URL didn't work where a relative one did though.

I read the Hardening Wordpress article and thought I'd use digest authentication to protect my /blog/wp-admin area of wordpress. I created a password file using htdigest, then added the following to /blog/wp-admin/.htaccess AuthType Digest AuthName "dvae.net" AuthDigestAlgorithm MD5 AuthDigestDomain http://mydomain.net/blog/wp-admin/ AuthDigestProvider file AuthUserFile /home/dvaenet/apache-auth/auth.digest Require valid-user This kinda works, but it's not right. In Safari 3: I'm prompted for my password for every page load. If I remove the then I get prompted for every resource. In Firefox 3: I get the password prompt, but my password doesn't work. Any idea what I'm doing wrong? I've setup up basic auth and digest auth before, but on Apache on Windows. When Litespeed says it's apache compatible - what version of apache does that mean? David