Search the Community

I am moving my store to a new server - My NEW SYSTEM operating environment Ubuntu 18.04.2 LTS PHP version: 7.2.19-0ubuntu0.18.04.1 mysql Ver 14.14 Distrib 5.7.27 OSCommerce 2.3.4 Before anyone points out that the OSC bootstrap version is better - I am simply moving the store from one server to another. My question involves the usage of .htaccess to password protect the access to the admin section ASSUME OSC admin username is CharlesDuncan OSC admin password is Duncan2345 WHY is it if those are entered in the .htpasswd file that the OSC login screen is bypassed and the user is placed on the administration screen of OSC? ANY OTHER user name and password combination for .htaccess puts the user on the login screen called by login.php?action=process To verifiy this I went to my existing production server and tested it. The production server operates with older versions of Ubuntu, php, and MySql but the same OSC version. It does the same thing. Obviously I immediately removed the new entry in .htpasswd BUT I was wondering if others have ran into this.