ApacheCon NA 2013

Portland, Oregon

February 26th – 28th, 2013

Register Now!

Tuesday 4 p.m.–5 p.m.

Access control in Apache httpd 2.4

Rich Bowen

A Patchy Web
Audience level:


Access control, which has always been a pain in httpd, has moved into the 21st century with the 2.4 release. Come learn how to do fine-grained access control with these new tools.


The old "allow from", "deny from" syntax in httpd was confusing and limiting. 2.4 introduces access control tools that let you do what you mean, rather than making do with what you're allowed.

Topics covered include

  • Access control by host
  • Access control using the expression engine
  • Recipes to replace what you've been doing in the past
  • RequireAny, RequireAll, and RequireNone
  • Combinations of various access requirements

... and more