Talk:WebDAV

In this example, /site/ would be editable by anyone, no? Usually one would want to password protect the WebDAV directory, but in this example, if /site/ were password protected, vistiors to / (the main site) will get promted for a login & password.

Is there any way to use password-protected WebDAV shares to create & edit live content (viewable by anyone) on Dreamhost?

WebDAV and Passwords
In the Dreamhost control panel 'password protect this directory' actually password protects the http directory requested by browsers. It doesn't affect the request by transfer clients. Passwords for these are set in the 'user accounts for this area' field. Hence if you try to connect without a username and password the connect will fail. Try to connect with any other username and password not specified in the 'user accounts for this area' and it will fail. The confusion arises because the user accounts for this area also generates the passwords and usernames for the password protect this directory on web browser requests.

Digest Passwords?
The current deployment employs Basic authentication -- passwords are transmitted in the clear. Is there a way to use Digest passwords with WebDAV folders to ensure passwords are not transmitted in the clear?

Note for Dreamhost's implementers: the AuthName (e.g. "Realm-name") must be passed in the call to htdigest in order for AuthType Digest to work:

htdigest -c /path-to/webdav.passwd "Realm-name" username