Htpasswd Generator tool & it's effectiveness

[rithika]

Hi,
It's commonly known that .htaccess is the default name for apache directory. How to create two files in order to protect the password for any of the website portion?? How effective would be the Htpasswd Generator tool would be helpful in protecting your important folders??

[traq]

?? I'm not sure exactly what you're asking, so please let me know if this does not answer your question:

-- .htaccess and .htpasswd are filenames, not directories.

-- They are not accessible via the web (create one and try navigating to it).

-- If you change the filenames, Apache won't find or use them.

-- If by "Htpasswd Generator" you're referring to the tool here on DD, it simply generates a random password for you to use in your .htpasswd file. This is effective because most people don't create passwords that are complex enough to be effective (for example, "qwerty","123456", or the infamous "password" - see here (caution, there are some offensive passwords)).