# .htaccess file for Anyterm.
# You may need "AllowOverride All" or similar in your main Apache
# configuration to make this file effective.

# Putting <IfModule anyterm> around everything means these commands
# will be ignored if the anyterm module has not been loaded.

<IfModule anyterm>

# Use an anyterm_command directive to specify the command to run
# inside the terminal:
#
# anyterm_command /path/to/program
#
# Within the command, %h is expanded to the hostname (or IP address,
# depending on your setting for HostnameLookups) of the client.  You
# can use this with anygetty's --remotehost option.
#
# %u is expanded to the username determined by HTTP AUTH if enabled.
# If authentication has not been used it expands to an empty string.
# You can use this with anygetty's --autologin option, though be aware
# that there are permissions issues to be addressed in this case.
#
# Example:
# anyterm_command '/path/to/anygetty --remotehost "Anyterm: %h" --autologin=%u'
anyterm_command '/usr/bin/rssh'

<Files anyterm-module>
  SetHandler anyterm

  # To avoid logging Anyterm requests, which is a good idea since they 
  # will include unencrypted key information, uncomment the following 
  # line and then qualify your logging directived by appending
  # "env=!DONTLOG", e.g.
  # CustomLog /path/to/logfile combined env=!DONTLOG
  # See the Apache documentation for details.  Note "=!" not "!=" !

  # SetEnv DONTLOG
</Files>

# Additional Security Issues

# If you're just testing Anyterm on a machine that's not connected to
# the Internet you could temporarily comment-out the following
# security features.  Before deploying it for real, do check the
# Security page on the Anyterm website and think carefully about what
# you need to do to keep your machine secure.  Please don't deploy it
# unless you understand the security implications.

# The following line means that this directory can only be accessed
# using HTTPS.  You need other configuration elsewhere to set this up.

SSLRequireSSL

# The following lines protect this directory using password
# authentication.  By default you need additional directives to define
# an Apache-specific password file; see the Apache documentation for
# details.  Alternatively you can install mod_auth_pam and the main
# system password file will be consulted.

AuthType Basic
AuthName "Anyterm"
Require valid-user


</IfModule>
