Password protection

"Laurent Bugnion, GalaSoft" <galasoft-LB (AT) bluewin_NO_SPAM (DOT) ch> wrote in
message news:3f753c90_4 (AT) news (DOT) bluewin.ch...

Quote:

Hi,

Mike Painter wrote:
"Laurent Bugnion, GalaSoft" <galasoft-LB (AT) bluewin_NO_SPAM (DOT) ch> wrote in
message news:bkv7hb$jt4$1 (AT) rex (DOT) ip-plus.net...

Hi,
snip
Anything you do on the client (even your file name = password trick) can
be easily defeated.


How can it be easily defeated?

Some browsers allow seeing everything on your server. It's then pretty
easy to find all the files it contains, and to load them.

No, some servers allow seeing everything. The browser can't over ride that.

Quote:

If you have access to the server, it's very easy to set up password
protected directories for your users, and this way is much safer than
anything you can do on the client. Check htaccess in Google for details.
Of course, any security scheme can be defetaed eventually, but at least
you won't look like a fool for doing it on the client ;-)

True enough but it does not solve the problem of multiple users with

passwords gaining access to those protected directories.
..htaccess works fine if I want *a* password.

My original post asked for references to a solution which might be JS, not
a rehash of things that don't meet the criteria.

The MS Access groups offer solutions, so far I've seen nothing here but
people saying how easy it is to break code and figure things out.

But when I ask how, they all fall silent. I'll look elsewhere.